$ rpki-client -vvf rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/1AD9E28ECA9411EE9062590AC4F9AE02.roa File: 1AD9E28ECA9411EE9062590AC4F9AE02.roa (raw, json) Hash identifier: 3xbk8prUiE4V60hWvzsYryQ5GjciCDAMJa5YdhGD9Uo= Subject key identifier: C8:D9:D7:F5:B6:4C:76:0B:C9:FF:00:5F:1B:63:DE:D7:8B:C0:6B:E1 Certificate issuer: /CN=A915B3AE/serialNumber=83AA58897A151F4ACB7384F0B55F11ED9D7AE17F Certificate serial: 87 Authority key identifier: 83:AA:58:89:7A:15:1F:4A:CB:73:84:F0:B5:5F:11:ED:9D:7A:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/1AD9E28ECA9411EE9062590AC4F9AE02.roa Signing time: Wed 30 Oct 2024 08:26:10 +0000 ROA not before: Wed 30 Oct 2024 08:26:10 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152466 IP address blocks: 157.15.190.0/24 maxlen: 24 160.30.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.crl rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B3AE/serialNumber=83AA58897A151F4ACB7384F0B55F11ED9D7AE17F Validity Not Before: Oct 30 08:26:10 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6721eda1-7e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f2:a1:2b:08:0f:d6:91:4b:1d:5d:6a:46:45: fd:d1:2e:af:49:3a:36:36:bd:45:3d:35:9b:f1:0c: 38:01:a7:57:11:b0:73:28:b6:58:93:1e:47:ab:f0: 55:68:e0:f7:bd:76:c5:7b:4a:9c:54:cd:14:7f:d8: b0:02:6c:9e:62:15:a3:10:99:28:d7:95:50:ed:7a: 13:76:ac:8b:fc:46:af:ff:6e:94:77:4f:5f:39:a3: dd:8a:aa:9e:31:1b:2e:9c:b8:d7:3e:c3:69:ac:83: f4:99:39:d0:a2:cb:4c:c0:ef:24:55:d6:03:c9:49: 76:07:63:b7:ad:f9:85:6b:b5:f7:30:b2:be:12:68: 3f:de:40:58:70:cc:7f:1b:ee:de:85:9a:c0:3a:3d: f5:10:12:ef:b2:c6:64:ef:3e:c7:10:00:4e:e1:af: 74:eb:96:f8:a4:fa:11:16:4b:cf:e6:d7:14:01:ea: 2e:d9:4e:4f:0e:d1:1f:2f:c4:94:42:f4:0d:3e:00: b4:65:e2:59:3a:c4:fa:9b:dc:6d:33:89:a1:7b:7f: 34:91:a1:ec:8d:27:e8:81:06:8f:a5:39:b4:70:1c: f4:79:23:23:82:5d:95:b7:18:bb:6a:74:4a:43:b6: 6f:b9:b9:61:6c:4f:e7:69:3e:d1:7a:1e:fd:3f:bd: 42:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D9:D7:F5:B6:4C:76:0B:C9:FF:00:5F:1B:63:DE:D7:8B:C0:6B:E1 X509v3 Authority Key Identifier: keyid:83:AA:58:89:7A:15:1F:4A:CB:73:84:F0:B5:5F:11:ED:9D:7A:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/1AD9E28ECA9411EE9062590AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.190.0/24 160.30.133.0/24 Signature Algorithm: sha256WithRSAEncryption e2:ca:37:81:f3:9f:ab:dc:57:00:dc:b6:40:00:9a:3c:db:04: cc:c6:3e:d5:30:ad:95:c9:9d:c7:21:57:b4:e3:7a:62:e6:53: a3:d1:14:3a:77:20:fe:0d:33:d3:b2:64:8b:23:be:35:1b:92: 86:d4:db:88:0d:af:4e:5e:0c:79:af:8c:a3:c7:e7:72:cd:f6: 83:d6:c1:b1:85:d2:c1:01:bd:b2:1c:b2:60:5f:a6:04:de:4d: 58:3e:e9:75:5b:64:df:0a:20:37:22:85:4f:59:53:fa:da:54: 0c:b4:fd:74:ec:b2:3e:b6:3b:c5:c2:43:7e:64:aa:c5:1a:14: 35:8c:0b:ff:75:03:7f:79:01:46:27:f5:af:9b:e2:40:5e:1e: dd:74:85:61:8a:19:51:1d:ab:89:c0:62:9e:bb:70:af:1f:88: 0f:09:88:dd:f4:fb:d1:4d:dd:e9:dd:9a:9e:da:1d:85:79:0c: f1:11:9d:52:d9:b5:e6:95:11:88:bd:8e:af:8f:d4:e6:b1:f7: 75:13:1f:00:c3:4a:4c:ca:18:7f:84:e6:23:23:bd:92:c7:4d: e0:01:b9:23:1a:fb:dc:7f:b4:ab:3d:eb:fb:89:51:92:7f:44: 61:fb:0b:f7:2a:12:2d:db:7e:08:47:88:bf:b4:d1:12:fc:38: 1e:1e:7f:2c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzQUUxMTAvBgNVBAUTKDgzQUE1ODg5N0ExNTFGNEFDQjczODRGMEI1NUYxMUVE OUQ3QUUxN0YwHhcNMjQxMDMwMDgyNjEwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzIxZWRhMS03ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfKhKwgP1pFLHV1qRkX90S6vSTo2Nr1FPTWb8Qw4AadXEbBzKLZYkx5Hq/BV aOD3vXbFe0qcVM0Uf9iwAmyeYhWjEJko15VQ7XoTdqyL/Eav/26Ud09fOaPdiqqe MRsunLjXPsNprIP0mTnQostMwO8kVdYDyUl2B2O3rfmFa7X3MLK+Emg/3kBYcMx/ G+7ehZrAOj31EBLvssZk7z7HEABO4a9065b4pPoRFkvP5tcUAeou2U5PDtEfL8SU QvQNPgC0ZeJZOsT6m9xtM4mhe380kaHsjSfogQaPpTm0cBz0eSMjgl2Vtxi7anRK Q7ZvublhbE/naT7Reh79P71C7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMjZ1/W2 THYLyf8AXxtj3teLwGvhMB8GA1UdIwQYMBaAFIOqWIl6FR9Ky3OE8LVfEe2deuF/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjNBRS9DMkQwNTRGNkNB OTMxMUVFQTcyNkNDMDlDNEY5QUUwMi9nNnBZaVhvVkgwckxjNFR3dFY4UjdaMTY0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2cFlpWG9WSDByTGM0VHd0VjhSN1oxNjRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUIzQUUvQzJEMDU0RjZDQTkzMTFFRUE3MjZDQzA5QzRGOUFFMDIvMUFEOUUyOEVD QTk0MTFFRTkwNjI1OTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACdD74DBACgHoUwDQYJKoZIhvcNAQELBQADggEBAOLKN4Hz n6vcVwDctkAAmjzbBMzGPtUwrZXJncchV7TjemLmU6PRFDp3IP4NM9OyZIsjvjUb kobU24gNr05eDHmvjKPH53LN9oPWwbGF0sEBvbIcsmBfpgTeTVg+6XVbZN8KIDci hU9ZU/raVAy0/XTssj62O8XCQ35kqsUaFDWMC/91A395AUYn9a+b4kBeHt10hWGK GVEdq4nAYp67cK8fiA8JiN30+9FN3endmp7aHYV5DPERnVLZteaVEYi9jq+P1Oax 93UTHwDDSkzKGH+E5iMjvZLHTeABuSMa+9x/tKs96/uJUZJ/RGH7C/cqEi3bfghH iL+00RL8OB4efyw= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org