$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BA8A60AEFB8911EDBF95D70FC4F9AE02.roa File: BA8A60AEFB8911EDBF95D70FC4F9AE02.roa (raw, json) Hash identifier: 1t9FETJTETRlAHZpa8n2/ay9wrVew58uqgqaUh48oRg= Subject key identifier: ED:80:14:63:AF:19:E3:48:68:EA:4C:41:72:88:4A:C5:A7:66:45:7F Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0293 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BA8A60AEFB8911EDBF95D70FC4F9AE02.roa Signing time: Sat 11 May 2024 04:10:48 +0000 ROA not before: Sat 11 May 2024 04:10:48 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138571 IP address blocks: 157.119.21.0/24 maxlen: 24 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 11 04:10:48 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663eefc7-956f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:21:80:de:87:49:76:79:c7:42:60:58:fb: 92:a9:ab:96:bb:e6:58:08:8c:12:1b:5c:00:ff:71: f9:0e:0d:2a:0d:5f:50:12:03:8d:f0:d3:eb:6e:d4: 62:76:3f:c6:f8:69:44:b6:66:f6:3e:12:d1:d0:45: 71:41:ad:ec:21:0d:5b:50:07:a0:28:f6:b6:36:03: 52:72:04:4c:98:20:c2:35:ed:a7:c0:21:a6:11:f3: 0f:f6:bf:4d:df:93:19:6a:97:2e:93:53:a9:2a:1d: dc:e5:77:b5:16:89:ae:3d:58:92:ee:3a:b6:66:fc: 92:e9:b5:6d:34:ed:97:0b:b1:9d:20:75:f5:08:50: 27:8e:2c:78:7d:67:32:0e:47:33:48:d4:41:fb:30: 46:e9:bc:7c:47:25:b2:cd:66:96:b1:bf:8b:b9:33: 0c:f3:1b:6e:03:5a:a5:9a:d5:7e:54:72:91:4d:95: e3:ed:b8:b3:aa:86:f3:59:5b:ed:8e:c0:59:19:37: d3:f7:e5:38:dd:44:28:a7:5b:53:b9:2c:af:5f:4b: 1a:49:2d:87:e5:13:d0:c0:bf:bb:81:24:c6:31:66: 26:a7:70:6e:0a:3b:6f:b6:2b:3c:3a:55:56:56:c1: fe:aa:d1:09:36:2a:7c:41:47:cd:f9:18:7b:b8:bc: ab:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:80:14:63:AF:19:E3:48:68:EA:4C:41:72:88:4A:C5:A7:66:45:7F X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BA8A60AEFB8911EDBF95D70FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.21.0-157.119.22.255 Signature Algorithm: sha256WithRSAEncryption 84:68:e8:76:02:b0:48:ba:04:9b:06:11:5e:7b:15:93:16:e1: a5:e2:37:d5:8e:ad:ab:59:46:48:93:c7:12:9b:59:f6:4d:a4: 3b:11:50:55:64:00:fb:9a:ae:a9:83:39:d8:76:3a:88:cd:14: 14:3d:c4:4b:01:9c:f2:17:11:05:c5:99:86:51:20:0a:88:26: ca:68:5b:08:ce:40:e1:1a:45:6b:0d:d3:1f:70:c8:ce:f4:ef: 92:66:65:7d:47:6f:2b:d1:db:c9:80:74:4c:c1:a9:fe:96:35: 31:e3:58:40:16:2b:51:7b:04:ee:62:5c:8a:09:a8:f3:83:2d: 4f:fd:78:7d:78:cd:20:49:af:ec:e6:03:29:4d:68:4b:cb:7c: a4:5b:47:cf:ba:f3:85:3e:0f:39:f2:68:95:2f:d0:c6:46:34: 66:3a:3a:da:e9:a6:d8:50:96:5c:2a:02:e7:e5:32:d3:77:98: 3f:44:b2:3e:22:62:18:5a:aa:14:ff:34:9a:04:91:fe:fb:21: b5:9c:e3:db:68:74:06:8e:77:4d:9e:a6:f5:69:ab:c9:50:18: aa:e9:3b:65:1a:de:78:6c:6b:9c:4c:a8:11:2f:b5:34:fb:ba: 6f:74:b3:fb:c3:80:ef:25:5b:b8:22:48:05:16:9d:08:fa:2a: a2:80:4e:a2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwNTExMDQxMDQ4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlZWZjNy05NTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv14hgN6HSXZ5x0JgWPuSqauWu+ZYCIwSG1wA/3H5Dg0qDV9QEgON8NPrbtRi dj/G+GlEtmb2PhLR0EVxQa3sIQ1bUAegKPa2NgNScgRMmCDCNe2nwCGmEfMP9r9N 35MZapcuk1OpKh3c5Xe1FomuPViS7jq2ZvyS6bVtNO2XC7GdIHX1CFAnjix4fWcy DkczSNRB+zBG6bx8RyWyzWaWsb+LuTMM8xtuA1qlmtV+VHKRTZXj7bizqobzWVvt jsBZGTfT9+U43UQop1tTuSyvX0saSS2H5RPQwL+7gSTGMWYmp3BuCjtvtis8OlVW VsH+qtEJNip8QUfN+Rh7uLyrQQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFO2AFGOv GeNIaOpMQXKISsWnZkV/MB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvQkE4QTYwQUVG Qjg5MTFFREJGOTVENzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJ13FQMEAJ13FjANBgkqhkiG9w0BAQsFAAOCAQEAhGjo dgKwSLoEmwYRXnsVkxbhpeI31Y6tq1lGSJPHEptZ9k2kOxFQVWQA+5quqYM52HY6 iM0UFD3ESwGc8hcRBcWZhlEgCogmymhbCM5A4RpFaw3TH3DIzvTvkmZlfUdvK9Hb yYB0TMGp/pY1MeNYQBYrUXsE7mJcigmo84MtT/14fXjNIEmv7OYDKU1oS8t8pFtH z7rzhT4POfJolS/QxkY0Zjo62umm2FCWXCoC5+Uy03eYP0SyPiJiGFqqFP80mgSR /vshtZzj22h0Bo53TZ6m9WmryVAYquk7ZRreeGxrnEyoES+1NPu6b3Sz+8OA7yVb uCJIBRadCPoqooBOog== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:35 2024 by rpki-client on console-ams.rpki-client.org