$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa File: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (raw, json) Hash identifier: vCihCbD/IiwkyJf/jAh1StFRRAhfwTCEK4+ACvnlgHo= Subject key identifier: 8E:9D:A3:BF:E5:1E:9B:0E:37:32:19:EB:04:7F:0F:63:22:14:46:37 Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 02 Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa Signing time: Thu 25 Jul 2024 03:04:30 +0000 ROA not before: Thu 25 Jul 2024 03:04:30 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141153 IP address blocks: 157.15.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: Jul 25 03:04:30 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66a1c0be-24e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:63:90:43:4e:06:20:2b:96:01:bb:a8:e2:59: 43:d9:5b:b0:a3:ef:96:6d:2c:f9:1d:26:09:e7:bf: 5e:0b:50:7a:17:f5:dc:b3:e0:60:e5:55:8b:44:10: 25:47:7d:a8:a8:e1:8d:26:16:f3:b6:7d:66:0a:5d: 21:8a:63:7c:b1:f6:e1:03:dc:82:ef:a3:31:9a:c8: 63:b5:13:9a:5d:64:e6:85:56:72:a2:3a:f6:1d:50: 72:2d:72:be:09:9e:14:be:da:8e:5a:37:77:bf:c3: 17:b7:64:00:17:16:50:5f:37:88:42:ca:a0:0d:f1: a0:6f:59:7f:87:2e:4d:10:62:fd:3e:56:b5:e0:c9: c8:97:47:5f:b8:d1:51:fa:48:ce:fe:22:15:ea:93: 16:61:84:f6:28:52:5c:eb:f8:79:f6:7f:f6:9e:83: fd:10:ef:65:4e:ef:8d:d0:52:fb:f1:10:a7:26:ea: b1:81:ed:07:c2:8b:0d:90:fc:5c:58:92:d1:67:f9: 4f:3d:72:03:ca:d5:a2:e0:b3:47:2d:3c:2b:53:f0: e5:19:29:72:a2:70:bb:3d:52:dd:87:a4:fa:45:14: 1c:2a:7d:fd:b9:5d:de:ba:4f:62:c1:98:9d:10:c2: 54:e0:9d:2c:03:44:4a:3b:3b:ec:79:85:a7:e5:80: 97:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9D:A3:BF:E5:1E:9B:0E:37:32:19:EB:04:7F:0F:63:22:14:46:37 X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.224.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:e0:2e:1a:83:9e:76:98:2c:c4:f7:2c:ef:67:51:cd:39:75: b1:a1:ec:f5:00:1a:c8:e5:d7:41:ed:fa:5a:f5:6d:04:bc:44: b3:66:ec:54:d2:96:d8:60:59:df:c2:13:7e:af:ea:08:d6:96: f3:e1:22:25:44:35:fd:9f:11:16:d5:48:f6:6d:92:6d:4d:fa: 0d:76:79:26:ba:14:5f:8a:40:d4:40:d7:55:fa:1d:31:50:c5: ca:0b:1b:57:71:73:22:f4:59:8e:45:da:67:ca:6b:2c:3c:a6: 57:3a:7e:e9:d6:60:26:93:71:5d:18:11:97:81:73:06:00:55: dd:74:a9:c3:7c:30:e2:e6:50:71:ef:b1:bc:8b:c0:93:8f:af: 21:c3:9e:e2:a4:d0:a0:1a:55:0f:b5:7c:76:d3:a0:d4:11:0e: fc:0e:8a:3e:71:3e:b0:13:ed:28:93:dc:e7:7d:c8:e2:ee:89: e0:f4:49:50:11:0a:4b:ac:62:f2:96:27:f3:75:24:68:c2:5b: 0a:63:e8:e0:86:ad:b0:7b:7d:97:9b:9e:8b:4f:3a:ca:4e:0f: 2a:2c:a7:9f:d3:7d:d8:2b:d7:d8:52:45:80:5e:7b:33:92:c1: 35:0f:fc:10:a7:50:f5:41:bf:b1:d9:7c:32:b0:49:a8:1d:9b: 33:08:7d:24 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTQ5QzExMC8GA1UEBRMoNDM2MzRDNzAxQkExRjFFRkNFOEY1NkFBNkFEMURCMjk0 NUExREI5RjAeFw0yNDA3MjUwMzA0MzBaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTFjMGJlLTI0ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcY5BDTgYgK5YBu6jiWUPZW7Cj75ZtLPkdJgnnv14LUHoX9dyz4GDlVYtEECVH faio4Y0mFvO2fWYKXSGKY3yx9uED3ILvozGayGO1E5pdZOaFVnKiOvYdUHItcr4J nhS+2o5aN3e/wxe3ZAAXFlBfN4hCyqAN8aBvWX+HLk0QYv0+VrXgyciXR1+40VH6 SM7+IhXqkxZhhPYoUlzr+Hn2f/aeg/0Q72VO743QUvvxEKcm6rGB7QfCiw2Q/FxY ktFn+U89cgPK1aLgs0ctPCtT8OUZKXKicLs9Ut2HpPpFFBwqff25Xd66T2LBmJ0Q wlTgnSwDREo7O+x5haflgJeTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjp2jv+Ue mw43MhnrBH8PYyIURjcwHwYDVR0jBBgwFoAUQ2NMcBuh8e/Oj1aqatHbKUWh258w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1NDlDL0RFODcxOEM0NEEz MTExRUZCN0JCRDUxQ0M0RjlBRTAyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUTJOTWNCdWg4ZV9PajFhcWF0SGJLVVdoMjU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi85QzZGNzc3ODRB MzIxMUVGQkRCQ0VCMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0P4DANBgkqhkiG9w0BAQsFAAOCAQEAauAuGoOedpgsxPcs 72dRzTl1saHs9QAayOXXQe36WvVtBLxEs2bsVNKW2GBZ38ITfq/qCNaW8+EiJUQ1 /Z8RFtVI9m2SbU36DXZ5JroUX4pA1EDXVfodMVDFygsbV3FzIvRZjkXaZ8prLDym Vzp+6dZgJpNxXRgRl4FzBgBV3XSpw3ww4uZQce+xvIvAk4+vIcOe4qTQoBpVD7V8 dtOg1BEO/A6KPnE+sBPtKJPc533I4u6J4PRJUBEKS6xi8pYn83UkaMJbCmPo4Iat sHt9l5uei086yk4PKiynn9N92CvX2FJFgF57M5LBNQ/8EKdQ9UG/sdl8MrBJqB2b Mwh9JA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:07 2024 by rpki-client on console-ams.rpki-client.org