$ rpki-client -vvf rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa File: 4687D3AAD94911EEB080041BC4F9AE02.roa (raw, json) Hash identifier: 5FEi8T2VCpmTmhbsK7DMCrzbywrJ4Tze/iIy7NAv7gM= Subject key identifier: 7D:F4:CC:64:E9:02:6B:84:91:5C:E9:D5:A6:44:9F:A9:FB:D8:BA:EF Certificate issuer: /CN=A914400E/serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Certificate serial: 04 Authority key identifier: CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa Signing time: Sun 03 Mar 2024 10:33:13 +0000 ROA not before: Sun 03 Mar 2024 10:33:13 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152319 IP address blocks: 157.10.132.0/23 maxlen: 23 157.10.132.0/24 maxlen: 24 157.10.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914400E/serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Validity Not Before: Mar 3 10:33:13 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e451e9-723f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2e:3c:ff:18:af:59:0b:2d:30:db:1b:68:bc: 69:53:a1:ba:80:73:c4:1d:b8:12:52:34:42:a4:2a: 44:58:b4:d6:7f:66:be:79:7f:a7:c3:d0:8a:75:af: ce:61:1b:bc:fc:12:f6:4e:fd:f0:3f:16:af:4d:51: 18:a6:ca:1d:c9:98:46:72:1b:a8:94:ec:60:9c:b3: 3c:f8:ef:35:7b:49:c8:fa:7e:38:63:54:4c:bc:f2: 48:d4:c9:02:06:60:96:78:d3:16:ce:8f:59:ab:7b: a7:8b:21:d8:e1:cb:03:0a:e7:7b:d8:05:e5:b0:80: 66:9e:1c:88:d0:d0:68:48:b1:c5:4b:bd:42:90:7a: ac:8c:69:15:d3:42:e6:9e:02:25:42:48:d3:da:e3: fb:0f:f7:63:44:2b:33:aa:3e:43:d9:6f:4a:6d:69: 16:be:77:91:94:db:be:a2:6a:3a:fe:87:11:d0:a4: 3c:dd:4f:97:93:45:09:33:e3:84:72:3d:43:ce:bd: 7b:23:09:09:36:b1:a6:81:f4:88:89:42:0b:3c:86: 3f:a5:5f:f0:e2:e4:3e:7f:e0:1d:e4:b2:0b:53:5d: 78:d6:07:69:f8:ff:33:77:69:5e:31:0e:5f:b4:ad: c2:81:2a:cb:69:46:4f:41:61:ba:f4:cd:42:00:08: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F4:CC:64:E9:02:6B:84:91:5C:E9:D5:A6:44:9F:A9:FB:D8:BA:EF X509v3 Authority Key Identifier: keyid:CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.132.0/23 Signature Algorithm: sha256WithRSAEncryption 99:d0:e9:19:57:dc:3b:c1:35:ad:14:65:55:ad:56:bf:1f:3c: 92:cd:44:c4:53:15:ac:60:25:ca:b4:58:c1:a7:31:8f:02:6c: e6:56:b7:a3:36:cc:74:4a:8a:27:64:3f:70:3d:05:1c:23:ad: d3:36:50:d1:e8:ec:37:92:fb:de:19:c0:7b:4e:03:9f:0b:50: ee:8a:96:fd:1a:62:21:34:18:f3:20:a2:fa:eb:f9:c2:ae:9d: a9:2c:d7:47:7c:3e:f5:37:f0:17:9f:59:ab:5e:3e:27:20:39: dc:15:85:59:83:16:3b:d1:f0:da:45:41:ec:b8:ee:fc:69:32: f0:1b:0f:38:63:2d:38:70:22:5a:c0:5f:df:f7:5b:87:79:af: f3:9c:22:58:8d:f0:d6:7c:50:48:3a:9b:b6:69:51:09:9e:b8: c6:17:ca:75:9c:04:7f:e4:b4:e4:eb:fd:5a:46:fc:44:7f:e8: 43:71:34:bf:60:08:1f:06:10:1e:d1:c6:29:05:90:40:be:c9: e2:24:dc:1c:08:1c:7d:48:ed:85:e2:0f:14:6b:5e:e3:d5:86: 44:5b:92:af:b4:88:b4:29:08:ab:ef:ea:85:2b:91:a0:22:8b: 02:34:cd:cd:a4:91:36:2b:c0:e2:b8:e2:ce:cd:d3:b7:53:d7: 21:9e:84:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDAwRTExMC8GA1UEBRMoQ0U2QzQ2RjgwMkIxNUI4Q0Y0QURBMzQ1QTgyODhBRDZF N0ZBNTM1RTAeFw0yNDAzMDMxMDMzMTNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTQ1MWU5LTcyM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZLjz/GK9ZCy0w2xtovGlTobqAc8QduBJSNEKkKkRYtNZ/Zr55f6fD0Ip1r85h G7z8EvZO/fA/Fq9NURimyh3JmEZyG6iU7GCcszz47zV7Scj6fjhjVEy88kjUyQIG YJZ40xbOj1mre6eLIdjhywMK53vYBeWwgGaeHIjQ0GhIscVLvUKQeqyMaRXTQuae AiVCSNPa4/sP92NEKzOqPkPZb0ptaRa+d5GU276iajr+hxHQpDzdT5eTRQkz44Ry PUPOvXsjCQk2saaB9IiJQgs8hj+lX/Di5D5/4B3ksgtTXXjWB2n4/zN3aV4xDl+0 rcKBKstpRk9BYbr0zUIACATfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUffTMZOkC a4SRXOnVpkSfqfvYuu8wHwYDVR0jBBgwFoAUzmxG+AKxW4z0raNFqCiK1uf6U14w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0MDBFL0M1MkIwMjY0RDk0 ODExRUVCQTM0QjQ3QkM0RjlBRTAyL3pteEctQUt4VzR6MHJhTkZxQ2lLMXVmNlUx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvem14Ry1BS3hXNHowcmFORnFDaUsxdWY2VTE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDAwRS9DNTJCMDI2NEQ5NDgxMUVFQkEzNEI0N0JDNEY5QUUwMi80Njg3RDNBQUQ5 NDkxMUVFQjA4MDA0MUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KhDANBgkqhkiG9w0BAQsFAAOCAQEAmdDpGVfcO8E1rRRl Va1Wvx88ks1ExFMVrGAlyrRYwacxjwJs5la3ozbMdEqKJ2Q/cD0FHCOt0zZQ0ejs N5L73hnAe04DnwtQ7oqW/RpiITQY8yCi+uv5wq6dqSzXR3w+9TfwF59Zq14+JyA5 3BWFWYMWO9Hw2kVB7Lju/Gky8BsPOGMtOHAiWsBf3/dbh3mv85wiWI3w1nxQSDqb tmlRCZ64xhfKdZwEf+S05Ov9Wkb8RH/oQ3E0v2AIHwYQHtHGKQWQQL7J4iTcHAgc fUjtheIPFGte49WGRFuSr7SItCkIq+/qhSuRoCKLAjTNzaSRNivA4rjizs3Tt1PX IZ6E4g== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:15 2024 by rpki-client on console-fra.rpki-client.org