$ rpki-client -vvf rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa File: A023DD56B12F11EEB1221E32C4F9AE02.roa (raw, json) Hash identifier: x5azBosM9EHPsWN/VOXvZy7zGkO/o7dz9NxYeAnrXbw= Subject key identifier: 90:54:5A:29:07:6E:27:81:32:8B:CD:F5:BE:DE:C0:05:B9:A4:18:8F Certificate issuer: /CN=A9161322/serialNumber=9873889783F7530EB44BE0097AA3618B07168F3B Certificate serial: 02 Authority key identifier: 98:73:88:97:83:F7:53:0E:B4:4B:E0:09:7A:A3:61:8B:07:16:8F:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa Signing time: Fri 12 Jan 2024 09:47:40 +0000 ROA not before: Fri 12 Jan 2024 09:47:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152328 IP address blocks: 157.10.172.0/23 maxlen: 23 157.10.172.0/24 maxlen: 24 157.10.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.crl rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161322/serialNumber=9873889783F7530EB44BE0097AA3618B07168F3B Validity Not Before: Jan 12 09:47:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65a10abc-e194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:a9:41:ae:53:5f:9f:ca:bc:4d:6b:c1:8d: ae:bd:ef:b6:8e:2a:77:36:99:fd:63:2a:f2:35:4c: 35:23:55:19:71:e1:cc:44:35:7b:25:60:71:df:29: ee:6f:83:82:47:4c:00:d8:b0:f3:01:7a:08:f3:db: dd:23:0b:7c:88:37:3b:2c:78:19:f8:c2:c2:59:64: 70:97:b2:95:29:19:1a:0c:d3:b0:b2:fd:fc:0c:cb: 2d:31:5f:d3:c5:8e:d7:2d:58:e6:d3:2f:83:5b:5b: 38:e8:96:a1:00:80:89:66:34:9a:ad:48:ea:a4:aa: 19:6d:80:f3:4f:6a:e5:d9:ae:2a:e5:26:c8:9b:b6: 05:fc:3f:26:9b:11:75:d6:c8:ff:80:9b:d3:c5:fc: 6b:7f:f6:a1:65:f2:4c:3c:ac:dc:52:d4:d9:82:3b: 7b:19:90:d5:65:23:37:59:b6:8f:b1:76:7b:1a:8d: 51:75:a3:02:78:8c:a7:ab:be:ad:c6:6d:0f:8e:d4: 71:9f:1c:d6:dd:f1:49:01:d9:e2:4f:6d:ec:c1:ee: 2e:9a:d6:e3:4b:41:b8:b7:08:b3:f7:65:11:47:0b: 6c:d4:f4:af:33:2e:9a:a6:0b:50:93:0f:6f:ca:1b: 39:63:dd:08:4a:e7:1e:5c:37:06:d3:f8:35:fc:a6: 15:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:54:5A:29:07:6E:27:81:32:8B:CD:F5:BE:DE:C0:05:B9:A4:18:8F X509v3 Authority Key Identifier: keyid:98:73:88:97:83:F7:53:0E:B4:4B:E0:09:7A:A3:61:8B:07:16:8F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.172.0/23 Signature Algorithm: sha256WithRSAEncryption ba:a6:00:5f:65:31:73:67:f9:78:6c:fb:82:62:c5:98:34:b8: 86:b8:9f:5f:18:72:7d:b9:4c:2c:cb:fb:c5:7e:97:d1:c5:6e: 25:10:9b:d8:03:02:f3:0d:9a:ae:54:c1:9f:76:a8:ee:76:8c: b5:ee:c1:c6:fd:b3:24:ff:2e:e9:ec:d3:6f:72:a2:c8:50:7d: ca:d1:93:32:20:e5:c8:a9:46:e2:c6:c7:f4:0e:04:e4:30:bb: 5d:bd:ee:be:10:53:da:6d:ec:9e:45:16:20:16:7a:75:85:82: c4:78:c7:9a:bc:7d:69:49:06:7f:22:45:35:c2:6e:a7:16:cf: 76:45:3d:e6:70:db:82:8b:e2:bd:db:39:a5:93:0d:65:6f:54: a7:b8:38:b1:ec:a2:1d:8b:31:3e:95:94:53:4c:28:a0:72:09: 19:03:c6:4b:ce:e6:ea:37:19:e0:87:fa:3d:b1:8b:16:1c:99: ba:62:2f:14:de:ea:70:16:bd:2b:e1:f5:b5:ad:0e:bd:8e:23: 50:a0:a3:b4:fa:b1:2b:fb:ca:b0:43:89:13:37:b6:17:14:06: ec:00:bc:ff:40:31:28:dc:ef:af:c6:4a:a2:73:ce:5d:b0:8d: a6:ce:ea:db:04:0f:4e:73:af:29:c5:99:10:4a:bd:d5:f6:6c: 7e:55:c4:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTMyMjExMC8GA1UEBRMoOTg3Mzg4OTc4M0Y3NTMwRUI0NEJFMDA5N0FBMzYxOEIw NzE2OEYzQjAeFw0yNDAxMTIwOTQ3NDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YTEwYWJjLWUxOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt3alBrlNfn8q8TWvBja6977aOKnc2mf1jKvI1TDUjVRlx4cxENXslYHHfKe5v g4JHTADYsPMBegjz290jC3yINzsseBn4wsJZZHCXspUpGRoM07Cy/fwMyy0xX9PF jtctWObTL4NbWzjolqEAgIlmNJqtSOqkqhltgPNPauXZrirlJsibtgX8PyabEXXW yP+Am9PF/Gt/9qFl8kw8rNxS1NmCO3sZkNVlIzdZto+xdnsajVF1owJ4jKervq3G bQ+O1HGfHNbd8UkB2eJPbezB7i6a1uNLQbi3CLP3ZRFHC2zU9K8zLpqmC1CTD2/K Gzlj3QhK5x5cNwbT+DX8phVbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkFRaKQdu J4Eyi831vt7ABbmkGI8wHwYDVR0jBBgwFoAUmHOIl4P3Uw60S+AJeqNhiwcWjzsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMzIyLzQ5RTRCMDA4QjBF QjExRUVCNjk4OUY1NEM0RjlBRTAyL21IT0lsNFAzVXc2MFMtQUplcU5oaXdjV2p6 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbUhPSWw0UDNVdzYwUy1BSmVxTmhpd2NXanpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTMyMi80OUU0QjAwOEIwRUIxMUVFQjY5ODlGNTRDNEY5QUUwMi9BMDIzREQ1NkIx MkYxMUVFQjEyMjFFMzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KrDANBgkqhkiG9w0BAQsFAAOCAQEAuqYAX2Uxc2f5eGz7 gmLFmDS4hrifXxhyfblMLMv7xX6X0cVuJRCb2AMC8w2arlTBn3ao7naMte7Bxv2z JP8u6ezTb3KiyFB9ytGTMiDlyKlG4sbH9A4E5DC7Xb3uvhBT2m3snkUWIBZ6dYWC xHjHmrx9aUkGfyJFNcJupxbPdkU95nDbgovivds5pZMNZW9Up7g4seyiHYsxPpWU U0wooHIJGQPGS87m6jcZ4If6PbGLFhyZumIvFN7qcBa9K+H1ta0OvY4jUKCjtPqx K/vKsEOJEze2FxQG7AC8/0AxKNzvr8ZKonPOXbCNps7q2wQPTnOvKcWZEEq91fZs flXEgA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:06 2024 by rpki-client on console-ams.rpki-client.org