$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/395803C8CDD011EEB4E50681C4F9AE02.roa File: 395803C8CDD011EEB4E50681C4F9AE02.roa (raw, json) Hash identifier: KkyhhPtlZMDBkBcDrSl5ZqGZpFEMDoQwWUdeAfA1gco= Subject key identifier: F4:0A:14:47:18:73:DF:CF:45:8E:1D:BF:E1:AC:4E:EC:5E:3F:82:6C Certificate issuer: /CN=A9178C1E/serialNumber=F93EFAA6A6D054AE997C8A3CFF25F169C36F8A0C Certificate serial: 0B Authority key identifier: F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-T76pqbQVK6ZfIo8_yXxacNvigw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/395803C8CDD011EEB4E50681C4F9AE02.roa Signing time: Sat 17 Feb 2024 20:07:49 +0000 ROA not before: Sat 17 Feb 2024 20:07:49 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 63801 IP address blocks: 157.15.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.crl rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-T76pqbQVK6ZfIo8_yXxacNvigw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E/serialNumber=F93EFAA6A6D054AE997C8A3CFF25F169C36F8A0C Validity Not Before: Feb 17 20:07:49 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65d11215-1d1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ca:71:7c:bf:34:b4:b6:e9:95:ec:ae:40:c2: 1b:ea:62:83:c7:43:36:df:74:13:e5:76:93:e1:78: 65:d3:21:fa:9c:9d:51:75:2a:24:df:6d:a6:93:29: 19:90:bd:11:af:2c:4e:9d:1c:96:a8:08:ad:c2:2c: 3c:d4:da:3e:03:44:61:2e:77:7c:41:79:a0:8e:95: e5:40:23:3d:00:92:43:15:3a:d1:f4:2c:6a:b3:1f: 9e:60:a3:86:a9:c4:e7:f5:63:6e:64:4c:27:70:77: 85:f3:fb:a4:7a:fa:82:b4:84:a6:19:47:e0:6a:bf: c3:f4:39:41:c4:08:08:1f:dc:f1:a0:bb:2b:37:57: 0b:cc:d6:c0:ce:60:f4:2a:3f:a5:da:36:9d:19:b6: 35:a4:98:cb:4f:fa:f0:44:0e:64:75:d4:3a:ab:2e: ea:a0:7a:ec:a1:09:25:52:c6:b5:dc:e0:4d:bc:6e: 50:37:dd:68:c7:62:3e:73:22:36:7e:2b:4f:ff:e2: 83:54:4c:22:93:3c:12:7f:64:b3:cc:5f:e1:af:04: 07:3b:c5:01:02:6a:cc:62:fc:8c:84:22:43:7f:6e: 3a:bb:20:c9:bd:2b:d0:a9:1f:21:0e:23:e7:89:73: fa:89:65:8d:bb:f1:c0:f0:66:c5:46:06:26:a8:b6: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0A:14:47:18:73:DF:CF:45:8E:1D:BF:E1:AC:4E:EC:5E:3F:82:6C X509v3 Authority Key Identifier: keyid:F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-T76pqbQVK6ZfIo8_yXxacNvigw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/395803C8CDD011EEB4E50681C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.126.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:92:67:e4:5b:ba:da:96:52:39:dd:1a:fb:1a:5c:3c:b0:f9: 8a:b3:32:d6:0e:de:f7:6c:f6:7d:c4:81:48:91:ca:e7:a5:ee: 1e:9b:ed:79:08:6a:32:67:73:20:5d:cc:c3:13:58:f8:b2:de: 48:8f:60:b6:23:3a:42:ab:17:69:c6:18:7c:c3:0d:2c:93:d1: 76:11:d3:aa:ae:64:95:e6:de:55:ff:ec:b8:b7:ee:10:dd:b4: d6:22:59:a6:d2:bc:81:44:84:d5:66:41:62:10:f6:0f:70:cd: 1e:c0:a4:21:1e:72:27:f6:46:68:6d:dc:e0:eb:7d:41:00:c1: 6f:5a:80:40:6b:17:6c:1f:0c:95:1b:13:81:ee:61:c1:3a:f6: 89:c6:d1:10:cf:28:54:0c:7b:79:2b:fb:db:25:c6:f1:f8:00: d0:59:ea:50:81:a7:1b:d4:ec:59:d8:d3:82:05:1f:17:7d:31: 03:e9:5b:5f:11:5c:e0:e1:30:cd:76:bb:65:54:a4:82:c8:79: cb:f8:53:47:6f:cb:80:b2:6b:3d:31:8f:66:9c:33:70:97:e8: c3:31:2a:33:57:af:81:1e:39:f8:23:4e:a2:f9:b4:4c:84:5e: e2:2f:36:a0:d8:1a:e7:ae:ec:64:fd:7f:2e:66:40:2a:b3:51: 78:38:31:1c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEMxRTExMC8GA1UEBRMoRjkzRUZBQTZBNkQwNTRBRTk5N0M4QTNDRkYyNUYxNjlD MzZGOEEwQzAeFw0yNDAyMTcyMDA3NDlaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDExMjE1LTFkMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuynF8vzS0tumV7K5AwhvqYoPHQzbfdBPldpPheGXTIfqcnVF1KiTfbaaTKRmQ vRGvLE6dHJaoCK3CLDzU2j4DRGEud3xBeaCOleVAIz0AkkMVOtH0LGqzH55go4ap xOf1Y25kTCdwd4Xz+6R6+oK0hKYZR+Bqv8P0OUHECAgf3PGguys3VwvM1sDOYPQq P6XaNp0ZtjWkmMtP+vBEDmR11DqrLuqgeuyhCSVSxrXc4E28blA33WjHYj5zIjZ+ K0//4oNUTCKTPBJ/ZLPMX+GvBAc7xQECasxi/IyEIkN/bjq7IMm9K9CpHyEOI+eJ c/qJZY278cDwZsVGBiaotmTZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9AoURxhz 389Fjh2/4axO7F4/gmwwHwYDVR0jBBgwFoAU+T76pqbQVK6ZfIo8/yXxacNvigww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4QzFFL0I5ODlGOEEyQzY0 NzExRUU5RDY4RUI3RkM0RjlBRTAyLy1UNzZwcWJRVks2WmZJbzhfeVh4YWNOdmln dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLVQ3NnBxYlFWSzZaZklvOF95WHhhY052aWd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9COTg5RjhBMkM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi8zOTU4MDNDOENE RDAxMUVFQjRFNTA2ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PfjANBgkqhkiG9w0BAQsFAAOCAQEAW5Jn5Fu62pZSOd0a +xpcPLD5irMy1g7e92z2fcSBSJHK56XuHpvteQhqMmdzIF3MwxNY+LLeSI9gtiM6 QqsXacYYfMMNLJPRdhHTqq5klebeVf/suLfuEN201iJZptK8gUSE1WZBYhD2D3DN HsCkIR5yJ/ZGaG3c4Ot9QQDBb1qAQGsXbB8MlRsTge5hwTr2icbREM8oVAx7eSv7 2yXG8fgA0FnqUIGnG9TsWdjTggUfF30xA+lbXxFc4OEwzXa7ZVSkgsh5y/hTR2/L gLJrPTGPZpwzcJfowzEqM1evgR45+CNOovm0TIRe4i82oNga567sZP1/LmZAKrNR eDgxHA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org