$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa File: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (raw, json) Hash identifier: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0= Subject key identifier: 21:8C:03:59:C7:09:ED:35:B4:BE:C7:4A:63:E7:A0:C3:C8:A9:74:03 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 61 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa Signing time: Sat 17 Aug 2024 07:08:19 +0000 ROA not before: Sat 17 Aug 2024 07:08:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140549 IP address blocks: 157.15.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Aug 17 07:08:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c04c63-047c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f2:1d:26:c3:83:4f:cb:fe:11:c7:c3:42:f7: fe:58:3d:13:86:a3:4e:5d:df:e8:2e:c3:00:60:8c: d5:35:25:b2:d6:e3:4f:85:04:28:52:62:0c:1f:51: 8d:29:6a:d8:9c:4e:5b:a7:3c:40:2a:95:ad:82:23: e1:a6:be:fc:c5:27:5a:fb:44:49:25:ff:08:a8:89: 12:76:54:9e:8e:de:8a:7e:3f:92:0a:37:17:e9:52: e2:02:e0:e0:b4:dc:61:a4:3e:d0:72:8b:8a:89:d8: 43:1b:8c:2a:24:b5:ce:a0:96:1a:3d:f5:e9:6e:fa: 1b:ed:7b:a5:0f:e5:2e:ba:6e:e6:d6:43:6b:22:4f: 05:ea:c9:4a:f1:bc:2c:af:13:ea:3b:78:b2:8a:04: cc:f9:20:c5:e3:39:26:9e:6c:cd:15:6d:64:68:7d: 05:8f:d9:66:f1:d7:37:1f:3b:67:04:15:59:f2:ff: 83:ee:7d:91:5b:95:41:2a:1e:7e:7b:9f:4d:89:f3: d1:78:30:b4:66:84:b2:de:c5:24:68:ff:30:48:ef: 86:bd:2a:e8:e9:a4:c0:8e:1a:72:6b:7b:ce:39:e1: 01:5d:70:d6:1e:8b:6d:c0:63:31:18:00:ae:6b:a0: f9:10:9d:43:f3:47:e5:7d:c7:42:1e:00:33:8a:74: 2b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8C:03:59:C7:09:ED:35:B4:BE:C7:4A:63:E7:A0:C3:C8:A9:74:03 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.213.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:c4:34:0e:9b:c0:a3:74:29:91:73:0a:70:77:3e:18:a5:a6: 61:f2:af:5a:d1:76:c4:c5:40:11:d0:3a:70:51:08:f3:40:a9: 45:e5:ef:1f:c5:66:5d:28:b7:76:16:da:b5:dd:cc:b6:7d:42: 55:a3:4b:93:30:10:07:7e:d7:59:f8:6e:9d:f7:39:b2:15:b6: ad:f7:de:cd:20:9e:41:dc:2b:71:d5:32:d0:0d:32:fa:94:ae: c0:9c:9b:bc:1b:5a:d1:60:ab:b4:0b:c6:5d:8c:02:a9:ba:4b: f6:1b:c7:9e:31:79:08:22:d6:26:97:17:6b:4c:3e:59:76:a9: 14:04:db:d9:37:2e:ac:be:f8:b2:f6:b7:ff:b7:94:de:c4:7b: 56:75:5a:08:ce:1f:7e:d7:dc:3f:79:e5:9a:24:51:56:a7:f0: da:ae:f1:f1:c1:48:6c:4b:bf:9b:db:6f:1f:46:a5:c2:09:65: 25:37:ba:e0:2e:61:73:3e:fb:a1:2a:e0:cb:72:7e:32:a4:3f: 2f:d2:32:2b:3e:9d:9f:c4:ee:e2:19:f5:ed:90:03:de:b8:99: 7a:bd:ba:28:40:11:40:8c:a3:e8:fd:3d:5f:b7:b8:f2:af:49: 6f:f3:72:6f:9d:25:d7:d0:c6:6e:83:d6:c7:c6:a7:7f:b7:9d: 1a:6b:0d:9d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTg4NTExMC8GA1UEBRMoODcwMTg2QjY1N0QxMUIyOThBODRCMDI0MjBFRTc0RTFG QkI1QzI4MjAeFw0yNDA4MTcwNzA4MTlaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzA0YzYzLTA0N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj8h0mw4NPy/4Rx8NC9/5YPROGo05d3+guwwBgjNU1JbLW40+FBChSYgwfUY0p aticTlunPEAqla2CI+GmvvzFJ1r7REkl/wioiRJ2VJ6O3op+P5IKNxfpUuIC4OC0 3GGkPtByi4qJ2EMbjCoktc6glho99elu+hvte6UP5S66bubWQ2siTwXqyUrxvCyv E+o7eLKKBMz5IMXjOSaebM0VbWRofQWP2Wbx1zcfO2cEFVny/4PufZFblUEqHn57 n02J89F4MLRmhLLexSRo/zBI74a9KujppMCOGnJre8454QFdcNYei23AYzEYAK5r oPkQnUPzR+V9x0IeADOKdCs1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIYwDWccJ 7TW0vsdKY+egw8ipdAMwHwYDVR0jBBgwFoAUhwGGtlfRGymKhLAkIO504fu1woIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxODg1L0Q1RkVBM0RFQzlG RDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHdHR3RsZlJHeW1LaExBa0lPNTA0ZnUxd29JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi84RTMxNjU2Q0M5 RkYxMUVFQTUzQ0EyNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0P1TANBgkqhkiG9w0BAQsFAAOCAQEAK8Q0DpvAo3QpkXMK cHc+GKWmYfKvWtF2xMVAEdA6cFEI80CpReXvH8VmXSi3dhbatd3Mtn1CVaNLkzAQ B37XWfhunfc5shW2rffezSCeQdwrcdUy0A0y+pSuwJybvBta0WCrtAvGXYwCqbpL 9hvHnjF5CCLWJpcXa0w+WXapFATb2TcurL74sva3/7eU3sR7VnVaCM4fftfcP3nl miRRVqfw2q7x8cFIbEu/m9tvH0alwgllJTe64C5hcz77oSrgy3J+MqQ/L9IyKz6d n8Tu4hn17ZAD3riZer26KEARQIyj6P09X7e48q9Jb/Nyb50l19DGboPWx8anf7ed GmsNnQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:46 2024 by rpki-client on console-fra.rpki-client.org