$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/A3144CBC2EE911EE9A805D4FC4F9AE02.roa File: A3144CBC2EE911EE9A805D4FC4F9AE02.roa (raw, json) Hash identifier: pEdiw2TJUsfSqs5fnGmN59a6QGJIm2E/I2cp7lE+icw= Subject key identifier: B5:F1:C3:6D:C3:89:11:87:76:9F:42:A9:7A:63:5C:B8:77:64:5E:46 Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 028E Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/A3144CBC2EE911EE9A805D4FC4F9AE02.roa Signing time: Sat 11 May 2024 04:10:43 +0000 ROA not before: Sat 11 May 2024 04:10:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134687 IP address blocks: 157.119.21.0/24 maxlen: 24 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 11 04:10:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663eefc3-7019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:47:f1:17:c1:bf:54:0e:4b:69:b4:c5:c2: c4:c0:67:b9:35:ee:0c:bf:a7:42:99:ef:8e:aa:1d: c3:0d:d0:66:e0:ec:44:90:55:51:3b:e4:59:c4:6f: f1:94:b4:88:20:a1:fd:e9:33:a4:36:21:a1:d8:8f: 97:83:b4:d6:f7:4e:54:d6:5d:82:f9:b0:53:01:08: cf:be:87:80:41:b2:c7:0c:96:f6:26:de:30:90:ae: 3c:2d:9f:40:40:2d:a2:9d:e4:dc:8f:38:14:b9:fc: a1:b2:6b:60:80:0f:45:23:11:b5:14:44:15:2b:79: 82:bc:31:bf:5b:c0:35:24:42:44:44:c1:ae:8b:83: a0:f6:45:e7:b3:9e:d9:ee:6f:ae:92:de:41:ce:70: 2f:a7:b3:8a:ee:ce:3a:50:51:33:0f:9a:ac:d0:97: ef:71:bc:5b:b7:f4:ee:44:06:29:1c:9a:5f:d3:c9: 3e:d0:a8:5d:c9:d3:da:48:fa:d9:45:7a:c8:ae:2d: 61:8e:4e:1a:43:e2:2f:b5:8a:93:17:85:8a:bc:27: 45:7e:02:29:a2:ab:82:48:c9:26:4b:0b:17:26:4e: 42:74:1c:5c:57:cf:ac:03:b7:19:99:c8:1c:6f:4f: 87:eb:78:94:60:55:c1:6f:d7:ad:80:33:e1:9e:01: 6e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F1:C3:6D:C3:89:11:87:76:9F:42:A9:7A:63:5C:B8:77:64:5E:46 X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/A3144CBC2EE911EE9A805D4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.21.0-157.119.22.255 Signature Algorithm: sha256WithRSAEncryption 39:27:79:f6:eb:88:e2:e5:f3:bc:9c:5f:75:1e:33:57:90:4d: 0d:75:7f:b0:d3:96:f1:d6:0f:6d:a0:04:77:3e:fb:59:54:d9: 4f:ab:3e:e5:0b:4f:ff:1c:1e:94:eb:db:b0:6f:85:f0:94:0d: 2a:b8:29:d1:d1:03:d6:61:3e:7d:52:8c:04:17:ca:8e:33:8b: b0:1a:25:e0:d9:b0:6f:77:cb:b2:2b:cf:79:b0:68:24:64:0e: b7:6a:b7:0b:ef:30:ef:76:c3:93:bb:1d:51:07:31:42:30:ae: 70:cc:4c:3e:32:d7:19:10:7d:c7:ac:aa:63:6d:d3:b8:c7:00: bf:41:47:33:36:fc:2c:90:8d:35:9a:e9:56:4c:fe:c4:47:61: 02:52:46:db:ed:64:c2:03:ea:ab:0d:3a:79:88:28:85:0d:d9: b5:d4:70:b5:b1:34:01:4d:7e:d1:2f:42:96:4a:31:39:3f:f8: 27:83:7a:e5:31:ac:b0:72:54:16:17:55:ca:de:5a:87:07:95: 8a:5a:19:80:5d:1d:d7:b9:bf:0d:b9:13:4a:11:7b:e7:6f:42: 3d:98:a6:24:62:13:93:ad:e6:60:05:3d:65:da:48:90:1b:e0: fe:c7:15:1e:f6:23:32:ec:ca:07:34:99:c0:ff:59:f9:e0:32: e3:95:db:b1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwNTExMDQxMDQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlZWZjMy03MDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ihH8RfBv1QOS2m0xcLEwGe5Ne4Mv6dCme+Oqh3DDdBm4OxEkFVRO+RZxG/x lLSIIKH96TOkNiGh2I+Xg7TW905U1l2C+bBTAQjPvoeAQbLHDJb2Jt4wkK48LZ9A QC2ineTcjzgUufyhsmtggA9FIxG1FEQVK3mCvDG/W8A1JEJERMGui4Og9kXns57Z 7m+ukt5BznAvp7OK7s46UFEzD5qs0Jfvcbxbt/TuRAYpHJpf08k+0KhdydPaSPrZ RXrIri1hjk4aQ+IvtYqTF4WKvCdFfgIpoquCSMkmSwsXJk5CdBxcV8+sA7cZmcgc b0+H63iUYFXBb9etgDPhngFutQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLXxw23D iRGHdp9CqXpjXLh3ZF5GMB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvQTMxNDRDQkMy RUU5MTFFRTlBODA1RDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJ13FQMEAJ13FjANBgkqhkiG9w0BAQsFAAOCAQEAOSd5 9uuI4uXzvJxfdR4zV5BNDXV/sNOW8dYPbaAEdz77WVTZT6s+5QtP/xwelOvbsG+F 8JQNKrgp0dED1mE+fVKMBBfKjjOLsBol4Nmwb3fLsivPebBoJGQOt2q3C+8w73bD k7sdUQcxQjCucMxMPjLXGRB9x6yqY23TuMcAv0FHMzb8LJCNNZrpVkz+xEdhAlJG 2+1kwgPqqw06eYgohQ3ZtdRwtbE0AU1+0S9ClkoxOT/4J4N65TGssHJUFhdVyt5a hweViloZgF0d17m/DbkTShF7529CPZimJGITk63mYAU9ZdpIkBvg/scVHvYjMuzK BzSZwP9Z+eAy45XbsQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:35 2024 by rpki-client on console-ams.rpki-client.org