$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa File: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (raw, json) Hash identifier: /BUQB8qGUnnEaeFS+7LTUsKBi8s51tzJ6SaFjKd8eFc= Subject key identifier: 90:0C:7E:16:6B:A6:A3:F1:EB:E3:E7:AF:B1:7A:8D:CD:D8:7F:92:73 Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 02 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa Signing time: Wed 07 Feb 2024 20:43:26 +0000 ROA not before: Wed 07 Feb 2024 20:43:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152297 IP address blocks: 157.10.32.0/24 maxlen: 24 157.10.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Feb 7 20:43:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c3eb6e-cffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:77:4c:71:d9:da:f8:7e:7a:d8:99:2b:21:ff: 7d:77:9c:9c:a5:be:f4:af:2b:db:ac:b8:f5:16:2d: 19:a8:fb:88:2e:d5:c2:af:5d:52:b7:79:ad:f8:85: a4:2a:71:4d:49:c5:0c:3f:a7:91:3a:7a:88:98:70: b9:4d:8d:b4:46:5b:30:46:21:90:45:ef:33:c0:3a: 44:eb:19:d1:48:7c:3b:25:94:e3:8c:03:44:77:24: 76:34:ef:f3:8d:75:60:1d:14:86:dd:96:64:5d:11: 4d:7f:92:4e:b5:9e:79:98:d5:88:bb:fc:b3:23:70: 1d:7f:14:f4:dd:87:f7:3c:80:c1:eb:48:77:f8:20: 24:27:83:fd:f9:d1:9d:e3:dd:b6:9a:d0:ad:96:57: 8f:6a:9a:b8:ac:eb:5b:f0:0f:ba:4e:7f:fd:40:3d: 33:6e:68:d5:f3:ca:0a:5f:8d:6a:6e:b3:d8:64:9e: bb:1e:2c:40:0f:5a:d0:55:71:de:9c:6e:c4:9e:96: de:04:81:e4:96:fb:70:96:9c:77:98:c7:c2:b4:52: 31:9d:b4:0f:82:00:7d:bc:8a:00:5a:63:bd:d2:03: f5:2e:5f:62:67:36:21:e2:17:c3:96:4e:43:be:8f: 6b:cc:4e:2b:d6:59:12:c6:0e:90:f7:7e:a9:5c:0e: a5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0C:7E:16:6B:A6:A3:F1:EB:E3:E7:AF:B1:7A:8D:CD:D8:7F:92:73 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.32.0/23 Signature Algorithm: sha256WithRSAEncryption 06:33:d9:5a:01:77:f1:5e:d7:85:28:21:9f:ee:5e:0f:a6:18: 73:4a:3d:94:d3:5c:45:1a:20:1b:08:25:e8:7c:f5:a9:66:39: b8:6b:aa:d5:53:a3:ff:3c:4f:11:51:2c:51:e0:e2:5b:f2:21: df:e0:12:ea:50:6d:9e:2d:6b:c2:c3:13:a0:7b:a3:f5:74:fd: 59:ea:8f:c5:76:35:43:91:5c:65:6e:d9:a1:dd:28:2c:b7:11: 66:6d:fb:28:2c:2f:93:8f:e5:37:2c:61:f4:83:45:e7:c9:70: cf:1f:8a:2e:d3:b7:c4:e7:4c:de:1b:9e:b4:97:11:fb:1e:91: 9a:f8:a6:a2:46:e4:00:f2:7b:4a:fb:c0:0e:a7:36:3a:e3:7a: b0:8d:79:91:24:9b:58:63:26:2a:76:ec:2d:df:86:ab:19:52: aa:34:58:2c:a6:44:bc:94:cc:52:e9:a3:f5:89:7b:d1:01:3f: ff:ad:43:c8:c9:c0:5a:d6:ea:6c:96:64:79:7e:b6:9f:3d:7b: b6:52:85:8a:f7:ac:79:bf:e1:91:87:be:ef:56:1f:be:3e:20: d4:df:cd:ab:ce:c2:78:71:02:55:ab:5e:e5:1d:48:61:0c:51: ce:3d:e5:87:f6:98:0e:83:74:91:a0:c5:04:82:40:c0:40:f2: 23:a3:89:4f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjAxODExMC8GA1UEBRMoQjNFOTQxQTFDNTVEMTQ4M0FCNTc5MUQ5NDk4NzUwRTNE REFERURDQzAeFw0yNDAyMDcyMDQzMjZaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzNlYjZlLWNmZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDud0xx2dr4fnrYmSsh/313nJylvvSvK9usuPUWLRmo+4gu1cKvXVK3ea34haQq cU1JxQw/p5E6eoiYcLlNjbRGWzBGIZBF7zPAOkTrGdFIfDsllOOMA0R3JHY07/ON dWAdFIbdlmRdEU1/kk61nnmY1Yi7/LMjcB1/FPTdh/c8gMHrSHf4ICQng/350Z3j 3baa0K2WV49qmris61vwD7pOf/1APTNuaNXzygpfjWpus9hknrseLEAPWtBVcd6c bsSelt4EgeSW+3CWnHeYx8K0UjGdtA+CAH28igBaY73SA/UuX2JnNiHiF8OWTkO+ j2vMTivWWRLGDpD3fqlcDqV7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkAx+Fmum o/Hr4+evsXqNzdh/knMwHwYDVR0jBBgwFoAUs+lBocVdFIOrV5HZSYdQ492t7cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCMDE4LzMwNzlEODEyQzVG NjExRUVCRTBCNzk2MEM0RjlBRTAyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcy1sQm9jVmRGSU9yVjVIWlNZZFE0OTJ0N2N3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi84QjA5NzI3NkM1 RjkxMUVFOEQwRkRGODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KIDANBgkqhkiG9w0BAQsFAAOCAQEABjPZWgF38V7XhSgh n+5eD6YYc0o9lNNcRRogGwgl6Hz1qWY5uGuq1VOj/zxPEVEsUeDiW/Ih3+AS6lBt ni1rwsMToHuj9XT9WeqPxXY1Q5FcZW7Zod0oLLcRZm37KCwvk4/lNyxh9INF58lw zx+KLtO3xOdM3huetJcR+x6RmvimokbkAPJ7SvvADqc2OuN6sI15kSSbWGMmKnbs Ld+GqxlSqjRYLKZEvJTMUumj9Yl70QE//61DyMnAWtbqbJZkeX62nz17tlKFives eb/hkYe+71Yfvj4g1N/Nq87CeHECVate5R1IYQxRzj3lh/aYDoN0kaDFBIJAwEDy I6OJTw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org