$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa File: F149E6BE45B611EFA10B0632C4F9AE02.roa (raw, json) Hash identifier: h+vGforlKooboxWt0o/ebQfnUR6ElZUs675fxw0zqPU= Subject key identifier: 69:EC:86:F4:CE:73:C7:E6:6D:55:EA:52:5F:C9:9B:3E:89:34:CD:86 Certificate issuer: /CN=A9145B5E/serialNumber=1727ED151F4089210EC3E368A5A69EE39484E3E6 Certificate serial: 02 Authority key identifier: 17:27:ED:15:1F:40:89:21:0E:C3:E3:68:A5:A6:9E:E3:94:84:E3:E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FyftFR9AiSEOw-Nopaae45SE4-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa Signing time: Fri 19 Jul 2024 10:09:10 +0000 ROA not before: Fri 19 Jul 2024 10:09:10 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/FyftFR9AiSEOw-Nopaae45SE4-Y.crl rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/FyftFR9AiSEOw-Nopaae45SE4-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FyftFR9AiSEOw-Nopaae45SE4-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E/serialNumber=1727ED151F4089210EC3E368A5A69EE39484E3E6 Validity Not Before: Jul 19 10:09:10 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=669a3b46-8027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:18:ed:c0:38:ad:30:8f:43:c0:e6:bb:e4: 2e:54:44:68:06:8f:d9:4c:3a:f1:eb:d2:1c:26:dc: a3:5a:3c:a6:94:d1:9d:1f:0a:39:9f:85:d0:52:5c: 16:08:27:e2:b2:6b:6c:f3:c7:c6:43:16:5e:48:37: ef:e9:e8:b6:1a:61:3d:71:77:3e:e8:62:c6:99:cd: b5:1f:e5:e4:c4:6e:56:eb:b0:97:70:8c:c0:0d:48: f7:4d:9b:cd:ab:71:af:c0:75:15:5f:9d:41:a5:91: b1:d6:55:a9:3d:bd:11:3e:7b:0d:7b:90:ac:37:0a: dc:ea:b8:62:6b:7a:86:2a:7c:fe:5a:a1:0e:68:ce: de:22:0e:89:21:87:e2:85:db:08:e7:b3:81:e7:3c: 26:12:29:2b:56:31:ef:e5:15:29:fb:38:89:71:c6: 65:ea:fb:8a:39:6e:5e:f2:9b:f6:e7:eb:63:f1:9b: 93:62:54:d0:f4:53:4a:c5:c8:93:98:58:3b:ab:67: 57:9a:3d:a4:0b:c4:0b:e3:1c:96:5f:92:80:e0:e7: 97:fc:ef:1f:27:63:ff:c2:db:5b:3c:f2:cb:79:64: 88:7f:06:a2:1a:1e:f7:d9:81:79:dd:75:85:2f:c9: d4:8e:9f:3d:4d:a6:c4:23:cc:03:72:ac:82:61:b7: 89:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:EC:86:F4:CE:73:C7:E6:6D:55:EA:52:5F:C9:9B:3E:89:34:CD:86 X509v3 Authority Key Identifier: keyid:17:27:ED:15:1F:40:89:21:0E:C3:E3:68:A5:A6:9E:E3:94:84:E3:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/FyftFR9AiSEOw-Nopaae45SE4-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FyftFR9AiSEOw-Nopaae45SE4-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.142.0/23 Signature Algorithm: sha256WithRSAEncryption 13:f6:21:62:b8:f1:94:b5:c7:11:3f:73:b9:c0:4a:d3:e4:e8: 2c:19:34:15:31:98:f4:2e:9d:fd:f5:44:b7:5b:cc:1f:da:83: 1e:3a:cd:a1:0d:1a:5a:f7:64:27:70:2e:97:69:bd:d2:4d:04: 72:4f:9f:0c:43:b3:d5:28:d3:0b:b2:91:d3:7a:f3:f0:66:70: 90:ab:be:0f:4b:b4:fe:d3:ef:88:d6:2a:e0:9f:55:ac:7b:55: 91:86:eb:3f:56:89:ad:c7:8c:c2:d6:f5:ab:0d:60:5b:7b:a8: c5:cf:cb:37:18:a3:7f:69:1c:27:81:53:21:bd:55:1d:63:7a: 19:8d:44:33:53:55:a3:e5:e7:e2:aa:a8:39:2e:e2:f6:67:be: 99:38:ae:6f:37:c0:1d:5b:56:da:01:47:2c:e1:08:c6:db:15: 74:7a:56:d7:2a:d0:cd:48:66:b2:1e:7b:a1:e1:15:9d:5f:60: 4d:d1:ca:ae:b4:e7:81:cb:71:f6:3e:bd:21:2d:35:2a:3e:4e: 9b:2e:ee:1a:6a:96:4b:51:cb:e7:c7:87:44:74:bf:eb:e9:68: db:41:f9:ff:26:d3:8f:2b:e0:a0:73:b7:13:57:02:92:45:1a: 7e:3c:79:0a:3b:34:0e:b7:3d:0b:63:64:7d:b4:99:d8:61:ae: a5:9f:89:cf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUI1RTExMC8GA1UEBRMoMTcyN0VEMTUxRjQwODkyMTBFQzNFMzY4QTVBNjlFRTM5 NDg0RTNFNjAeFw0yNDA3MTkxMDA5MTBaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OWEzYjQ2LTgwMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8GxjtwDitMI9DwOa75C5URGgGj9lMOvHr0hwm3KNaPKaU0Z0fCjmfhdBSXBYI J+Kya2zzx8ZDFl5IN+/p6LYaYT1xdz7oYsaZzbUf5eTEblbrsJdwjMANSPdNm82r ca/AdRVfnUGlkbHWVak9vRE+ew17kKw3CtzquGJreoYqfP5aoQ5ozt4iDokhh+KF 2wjns4HnPCYSKStWMe/lFSn7OIlxxmXq+4o5bl7ym/bn62Pxm5NiVND0U0rFyJOY WDurZ1eaPaQLxAvjHJZfkoDg55f87x8nY//C21s88st5ZIh/BqIaHvfZgXnddYUv ydSOnz1NpsQjzANyrIJht4mJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaeyG9M5z x+ZtVepSX8mbPok0zYYwHwYDVR0jBBgwFoAUFyftFR9AiSEOw+Nopaae45SE4+Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjVFLzdERDdCQkJDNDVC NTExRUZCQTRBNjIxRUM0RjlBRTAyL0Z5ZnRGUjlBaVNFT3ctTm9wYWFlNDVTRTQt WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRnlmdEZSOUFpU0VPdy1Ob3BhYWU0NVNFNC1ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS83REQ3QkJCQzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9GMTQ5RTZCRTQ1 QjYxMUVGQTEwQjA2MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KjjANBgkqhkiG9w0BAQsFAAOCAQEAE/YhYrjxlLXHET9z ucBK0+ToLBk0FTGY9C6d/fVEt1vMH9qDHjrNoQ0aWvdkJ3Aul2m90k0Eck+fDEOz 1SjTC7KR03rz8GZwkKu+D0u0/tPviNYq4J9VrHtVkYbrP1aJrceMwtb1qw1gW3uo xc/LNxijf2kcJ4FTIb1VHWN6GY1EM1NVo+Xn4qqoOS7i9me+mTiubzfAHVtW2gFH LOEIxtsVdHpW1yrQzUhmsh57oeEVnV9gTdHKrrTngctx9j69IS01Kj5Omy7uGmqW S1HL58eHRHS/6+lo20H5/ybTjyvgoHO3E1cCkkUafjx5Cjs0Drc9C2NkfbSZ2GGu pZ+Jzw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org