$ rpki-client -vvf rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/ACFC76964A0E11EF91642A7AC4F9AE02.roa File: ACFC76964A0E11EF91642A7AC4F9AE02.roa (raw, json) Hash identifier: rIhpQ73oq5Fgm8dhXJGl90QlI4uunxwyPHzOKisnft4= Subject key identifier: 2F:36:7C:3D:78:DD:B4:10:E6:3F:20:19:94:2D:82:F2:FE:D3:23:15 Certificate issuer: /CN=A915ADC4/serialNumber=C3D893B2291B3A1E1BF5F4F041D1052E2CCBB25A Certificate serial: A9 Authority key identifier: C3:D8:93:B2:29:1B:3A:1E:1B:F5:F4:F0:41:D1:05:2E:2C:CB:B2:5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w9iTsikbOh4b9fTwQdEFLizLslo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/ACFC76964A0E11EF91642A7AC4F9AE02.roa Signing time: Wed 24 Jul 2024 22:47:16 +0000 ROA not before: Wed 24 Jul 2024 22:47:16 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152300 IP address blocks: 157.10.64.0/23 maxlen: 31 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/w9iTsikbOh4b9fTwQdEFLizLslo.crl rsync://rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/w9iTsikbOh4b9fTwQdEFLizLslo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w9iTsikbOh4b9fTwQdEFLizLslo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ADC4/serialNumber=C3D893B2291B3A1E1BF5F4F041D1052E2CCBB25A Validity Not Before: Jul 24 22:47:16 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66a18474-bf59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:c6:5c:25:ba:4f:80:77:ba:e8:22:24:fe: 11:65:3a:b1:fa:6c:a1:e8:09:68:ff:a3:11:0c:44: e5:23:d5:89:12:85:07:5f:b2:40:37:5f:24:54:4c: 11:d0:11:c3:49:b9:1e:f6:de:6c:89:9a:21:cc:56: b6:36:41:87:36:02:f9:d1:96:85:5a:83:7d:05:16: aa:91:87:15:c3:9b:f2:63:0c:0c:15:db:f9:4b:76: c2:61:39:ec:16:be:67:d7:67:76:91:16:28:83:3d: ac:3c:51:a7:c9:99:10:86:a5:1f:04:77:ba:e0:e4: aa:af:4a:f6:02:31:4f:df:e0:50:1e:5e:6d:b0:40: 57:fb:65:7e:c3:5d:c0:f2:07:aa:b8:3e:8c:31:d9: 71:b1:ea:8f:87:ee:16:94:eb:b4:66:6a:3c:ac:be: 2f:dd:ce:98:04:28:ae:b4:2f:96:f0:48:fd:c1:8c: 76:1a:02:b3:4f:67:38:36:83:29:67:47:cd:84:66: c7:80:74:78:5e:bf:f8:57:26:46:3b:a5:f9:70:8c: a0:45:c7:64:81:d7:11:5f:23:fb:6e:12:83:5d:0a: a7:95:b8:1b:d1:a4:51:52:3a:93:ff:ad:71:5c:1b: 75:7d:81:b1:51:eb:fa:c8:88:2c:4b:fe:d0:86:7c: 2a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:36:7C:3D:78:DD:B4:10:E6:3F:20:19:94:2D:82:F2:FE:D3:23:15 X509v3 Authority Key Identifier: keyid:C3:D8:93:B2:29:1B:3A:1E:1B:F5:F4:F0:41:D1:05:2E:2C:CB:B2:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/w9iTsikbOh4b9fTwQdEFLizLslo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w9iTsikbOh4b9fTwQdEFLizLslo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/2FA434CAAAA611EE963AA63AC4F9AE02/ACFC76964A0E11EF91642A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.64.0/23 Signature Algorithm: sha256WithRSAEncryption 68:33:03:80:4c:eb:37:b3:67:40:bf:ef:01:c3:21:c2:d1:8e: 52:0f:5d:52:47:54:0a:48:97:b1:b3:97:ac:51:9f:76:31:9d: 42:30:18:23:62:3d:3f:13:49:85:13:a7:c4:cf:36:59:44:ff: 77:a3:66:b2:9b:f8:ea:08:2a:87:ec:fa:96:17:26:94:1c:d3: 8d:83:f5:8b:30:dc:99:74:5a:4b:8a:0c:1b:b1:60:93:4c:c4: 36:b3:2b:1b:c1:01:78:07:94:37:d1:4c:3d:6a:ef:2b:1a:2e: b3:f0:da:97:87:7f:4f:44:57:48:87:df:db:29:9b:23:cf:06: 16:41:e0:cd:cd:bd:f8:57:1d:0a:6f:32:7d:3b:c9:b9:79:4e: f2:48:bc:66:84:bb:52:a6:86:f7:2d:16:a5:c5:33:4c:8e:f3: c6:3b:68:a8:f6:05:4b:a0:56:41:14:02:b2:cc:64:6f:eb:74: 22:68:52:b8:9f:63:2d:74:f3:3d:c8:86:a8:3e:b0:5e:b9:b2: e5:9f:90:21:66:95:69:52:61:7a:f9:e6:df:34:4d:17:b3:e5: c6:88:9c:e8:96:2e:12:a5:59:6c:46:8f:1b:6a:10:ce:7c:b6: fd:a0:e2:9a:1f:a0:bf:ad:6a:aa:db:1d:9f:46:42:2c:41:e6: 72:46:8f:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFEQzQxMTAvBgNVBAUTKEMzRDg5M0IyMjkxQjNBMUUxQkY1RjRGMDQxRDEwNTJF MkNDQkIyNUEwHhcNMjQwNzI0MjI0NzE2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExODQ3NC1iZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHjGXCW6T4B3uugiJP4RZTqx+myh6Alo/6MRDETlI9WJEoUHX7JAN18kVEwR 0BHDSbke9t5siZohzFa2NkGHNgL50ZaFWoN9BRaqkYcVw5vyYwwMFdv5S3bCYTns Fr5n12d2kRYogz2sPFGnyZkQhqUfBHe64OSqr0r2AjFP3+BQHl5tsEBX+2V+w13A 8gequD6MMdlxseqPh+4WlOu0Zmo8rL4v3c6YBCiutC+W8Ej9wYx2GgKzT2c4NoMp Z0fNhGbHgHR4Xr/4VyZGO6X5cIygRcdkgdcRXyP7bhKDXQqnlbgb0aRRUjqT/61x XBt1fYGxUev6yIgsS/7QhnwqPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC82fD14 3bQQ5j8gGZQtgvL+0yMVMB8GA1UdIwQYMBaAFMPYk7IpGzoeG/X08EHRBS4sy7Ja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QURDNC8yRkE0MzRDQUFB QTYxMUVFOTYzQUE2M0FDNEY5QUUwMi93OWlUc2lrYk9oNGI5ZlR3UWRFRkxpekxz bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3c5aVRzaWtiT2g0YjlmVHdRZEVGTGl6THNsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFEQzQvMkZBNDM0Q0FBQUE2MTFFRTk2M0FBNjNBQzRGOUFFMDIvQUNGQzc2OTY0 QTBFMTFFRjkxNjQyQTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCkAwDQYJKoZIhvcNAQELBQADggEBAGgzA4BM6zezZ0C/ 7wHDIcLRjlIPXVJHVApIl7Gzl6xRn3YxnUIwGCNiPT8TSYUTp8TPNllE/3ejZrKb +OoIKofs+pYXJpQc042D9Ysw3Jl0WkuKDBuxYJNMxDazKxvBAXgHlDfRTD1q7ysa LrPw2peHf09EV0iH39spmyPPBhZB4M3NvfhXHQpvMn07ybl5TvJIvGaEu1Kmhvct FqXFM0yO88Y7aKj2BUugVkEUArLMZG/rdCJoUrifYy108z3Ihqg+sF65suWfkCFm lWlSYXr55t80TRez5caInOiWLhKlWWxGjxtqEM58tv2g4pofoL+taqrbHZ9GQixB 5nJGj40= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org