$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa File: BF886C00D26A11EEAF76482BC4F9AE02.roa (raw, json) Hash identifier: XKcOzakVnPRp9ouJIJxeStnG3KeM6fFZu4MKPyMThqU= Subject key identifier: 62:1F:3D:F1:1C:66:CE:74:8A:96:99:19:6E:F3:82:23:FC:05:7F:1B Certificate issuer: /CN=A91A4EF9/serialNumber=872C9368656C778357C2A5A99BECFFF677550AC8 Certificate serial: 0C Authority key identifier: 87:2C:93:68:65:6C:77:83:57:C2:A5:A9:9B:EC:FF:F6:77:55:0A:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa Signing time: Fri 23 Feb 2024 16:44:02 +0000 ROA not before: Fri 23 Feb 2024 16:44:02 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152301 IP address blocks: 157.10.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9/serialNumber=872C9368656C778357C2A5A99BECFFF677550AC8 Validity Not Before: Feb 23 16:44:02 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d8cb51-ef4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1d:54:86:6f:6f:c2:3f:10:c9:ee:26:71:f4: 7f:e7:d2:42:fd:d4:4b:d8:8f:68:79:fd:bd:82:6c: 17:fa:9d:8a:4e:e5:41:8b:f0:a4:94:14:fc:3f:2f: c8:6f:16:ce:6e:b1:76:9c:de:70:8e:08:a5:d0:92: a2:ac:f7:4c:7e:e6:15:82:3f:97:61:40:0c:7a:bc: c1:50:bf:59:82:93:f1:ee:86:ef:55:27:c6:8b:b9: bb:c5:c3:fb:cb:05:dd:76:53:bd:6b:c2:89:30:56: bf:e4:ad:18:55:d3:8f:14:9a:62:d0:16:ba:7e:0c: ff:4e:57:67:24:a1:c2:4f:23:b1:60:ba:6b:29:04: e2:4f:e4:d4:95:50:b7:c8:a2:cb:e7:84:c9:62:27: ef:8c:f5:61:1f:fa:c2:ab:d6:cc:48:28:f9:af:c6: 12:d7:ff:52:56:7f:f9:5c:84:45:ea:5f:21:59:61: 6d:b5:39:f7:8c:ec:48:b1:7d:c4:0d:a6:88:8c:e6: e6:d8:c6:5d:67:a2:0a:9b:db:48:50:4c:ac:bf:aa: 78:25:24:ff:e3:0b:59:f1:95:14:b3:cc:c8:b0:72: a4:af:26:91:15:d2:79:cb:55:b0:aa:05:2d:98:11: 8e:dd:ab:c8:6a:3c:f5:66:c2:ac:ef:34:2b:5c:33: fc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:1F:3D:F1:1C:66:CE:74:8A:96:99:19:6E:F3:82:23:FC:05:7F:1B X509v3 Authority Key Identifier: keyid:87:2C:93:68:65:6C:77:83:57:C2:A5:A9:9B:EC:FF:F6:77:55:0A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.72.0/23 Signature Algorithm: sha256WithRSAEncryption 91:ff:2b:85:8c:50:04:e2:a6:e0:19:ed:d4:33:31:e0:2d:a5: e8:72:71:67:c2:e3:87:c8:e4:da:5b:6c:ea:5e:f6:f7:f2:5e: cd:f7:fd:c0:47:3a:8d:74:50:ec:65:ca:ae:ca:3b:42:67:2e: 33:f4:3a:44:9a:67:d0:60:48:7a:47:44:a1:9f:5e:69:b2:a8: 6c:40:be:c1:bf:fa:e8:5f:af:4f:5d:e8:18:97:10:f3:31:2b: 92:9b:f5:52:2a:82:e7:19:61:22:fc:42:db:12:aa:e6:ee:75: 61:9d:a1:e2:82:0e:c5:07:dc:2c:21:74:cc:99:a3:68:04:c2: 8f:38:c1:28:a0:45:e3:03:d7:db:23:c3:ff:85:ae:f4:5f:85: f9:be:58:d6:ab:41:83:82:4c:5b:42:c8:cd:6a:54:48:6f:28: 17:36:32:4d:de:60:01:f6:c9:25:4d:f1:a5:32:ff:0d:af:c1: 91:69:85:f5:fd:6a:3f:88:5a:e0:ea:f4:aa:75:e0:46:1b:25: 58:32:68:ab:b9:c8:d9:dc:62:c3:7b:f8:73:d2:ea:67:e4:bc: 80:58:e6:08:14:7a:00:26:04:86:72:79:f9:9c:43:c5:85:d3: 2b:bc:44:0d:2f:c8:36:8b:10:89:06:b2:64:ca:c6:38:9a:82: 1e:95:6b:07 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NEVGOTExMC8GA1UEBRMoODcyQzkzNjg2NTZDNzc4MzU3QzJBNUE5OUJFQ0ZGRjY3 NzU1MEFDODAeFw0yNDAyMjMxNjQ0MDJaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDhjYjUxLWVmNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBHVSGb2/CPxDJ7iZx9H/n0kL91EvYj2h5/b2CbBf6nYpO5UGL8KSUFPw/L8hv Fs5usXac3nCOCKXQkqKs90x+5hWCP5dhQAx6vMFQv1mCk/Huhu9VJ8aLubvFw/vL Bd12U71rwokwVr/krRhV048UmmLQFrp+DP9OV2ckocJPI7FgumspBOJP5NSVULfI osvnhMliJ++M9WEf+sKr1sxIKPmvxhLX/1JWf/lchEXqXyFZYW21OfeM7EixfcQN poiM5ubYxl1nogqb20hQTKy/qnglJP/jC1nxlRSzzMiwcqSvJpEV0nnLVbCqBS2Y EY7dq8hqPPVmwqzvNCtcM/zjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYh898Rxm znSKlpkZbvOCI/wFfxswHwYDVR0jBBgwFoAUhyyTaGVsd4NXwqWpm+z/9ndVCsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0RUY5Lzc1QTBDRDE0RDEz NzExRUVBQTlGMTk4MEM0RjlBRTAyL2h5eVRhR1ZzZDROWHdxV3BtLXpfOW5kVkNz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHl5VGFHVnNkNE5Yd3FXcG0tel85bmRWQ3NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVGOS83NUEwQ0QxNEQxMzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9CRjg4NkMwMEQy NkExMUVFQUY3NjQ4MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KSDANBgkqhkiG9w0BAQsFAAOCAQEAkf8rhYxQBOKm4Bnt 1DMx4C2l6HJxZ8Ljh8jk2lts6l729/Jezff9wEc6jXRQ7GXKrso7QmcuM/Q6RJpn 0GBIekdEoZ9eabKobEC+wb/66F+vT13oGJcQ8zErkpv1UiqC5xlhIvxC2xKq5u51 YZ2h4oIOxQfcLCF0zJmjaATCjzjBKKBF4wPX2yPD/4Wu9F+F+b5Y1qtBg4JMW0LI zWpUSG8oFzYyTd5gAfbJJU3xpTL/Da/BkWmF9f1qP4ha4Or0qnXgRhslWDJoq7nI 2dxiw3v4c9LqZ+S8gFjmCBR6ACYEhnJ5+ZxDxYXTK7xEDS/INosQiQayZMrGOJqC HpVrBw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:29 2024 by rpki-client on console-ams.rpki-client.org