$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa File: 06F76408F7DA11EE95AA666EC4F9AE02.roa (raw, json) Hash identifier: nzd9qM2Yj4OYrCpX0Dja+5AvneuRp99pXKOu1iHdk/E= Subject key identifier: 0F:2F:42:63:36:CD:36:4B:91:51:50:53:76:E8:20:CC:84:0B:39:45 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0293 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:06 +0000 ROA not before: Thu 05 Sep 2024 03:31:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151913 IP address blocks: 157.66.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f9-7de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c5:12:11:8e:b9:41:56:76:36:3b:4c:fe:8e: 0c:87:4a:c0:33:75:ee:3b:e7:17:a1:af:80:f4:55: a6:9f:47:97:49:d5:6b:1f:15:7f:a7:a6:70:66:34: fa:0a:c6:30:bb:5f:9e:a5:f7:0a:6c:f8:68:9a:5c: 97:69:3c:15:8c:21:ab:0b:c9:47:ed:61:12:69:66: 97:36:ab:93:6b:3b:f4:fd:4f:e7:d9:d8:26:b5:9b: 79:d8:f4:33:a1:ba:07:90:81:a1:38:fa:47:b7:03: ce:47:ad:8e:54:0d:1a:79:4e:87:cd:01:bd:77:69: 6c:d1:15:6a:af:39:95:79:30:74:fb:a5:d4:29:eb: 7b:db:f3:7d:67:f6:40:0e:bd:13:b0:26:f7:ce:a2: 4f:b3:4b:ef:1f:e6:d0:c9:a3:f9:4f:8f:ea:29:79: f7:af:db:84:49:a9:bf:4a:be:30:24:43:fa:8f:36: fc:8b:15:80:98:0d:50:e9:93:7e:b4:06:ed:69:a4: e4:d2:cd:b1:a6:b8:c0:fe:94:f9:f0:66:9f:0c:66: a6:a6:4a:fe:c5:17:db:bb:7b:19:6a:e2:bb:2b:44: 26:0a:df:af:74:6e:75:c7:fd:18:93:c5:62:1b:97: 0c:2b:ca:8b:e6:ac:95:09:9f:93:0b:b8:9c:79:29: cf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2F:42:63:36:CD:36:4B:91:51:50:53:76:E8:20:CC:84:0B:39:45 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.10.0/23 Signature Algorithm: sha256WithRSAEncryption 51:fa:3a:17:3c:5b:81:80:25:84:4b:b8:67:81:c7:0d:93:e3: a0:92:9c:db:58:25:30:bd:51:31:3a:1c:d9:c0:80:e4:94:50: 3a:16:fd:5a:d1:d0:41:54:1c:2f:5f:e8:14:91:e9:9a:45:e0: e4:a6:de:3c:99:41:c5:cc:d6:d0:68:d1:78:b7:92:d6:d4:b5: 72:4d:fd:72:46:d9:2b:e7:43:af:eb:6f:a7:de:d6:2d:bd:0b: 3c:20:6d:f8:13:85:6f:22:25:23:ae:07:b7:9c:fa:02:85:bf: 0b:c8:61:c6:f1:7e:e9:b3:ce:96:6a:e9:17:f2:c1:a1:cd:bb: 34:7d:21:c7:99:be:99:eb:49:a4:b7:97:88:a6:55:84:6d:60: b9:a7:98:81:ba:37:d3:1d:ab:21:7e:65:a0:d1:e7:e1:6b:ad: 2a:06:b4:84:5f:71:15:af:bb:13:f7:28:d2:5f:a8:1e:01:0a: a6:ca:95:ef:37:b4:9b:93:5b:d0:d8:7c:ea:86:14:1e:32:2d: b7:40:bb:b1:24:90:a8:31:4a:b1:f9:9b:ab:d2:f3:5a:ca:d9: e8:33:89:9f:47:dd:cb:7a:bf:f1:b3:63:f2:57:60:18:ac:a7: eb:cf:2b:cb:2e:6b:be:e5:6a:a6:d3:08:21:6c:f0:93:c9:02: 1f:5e:32:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmOS03ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8USEY65QVZ2NjtM/o4Mh0rAM3XuO+cXoa+A9FWmn0eXSdVrHxV/p6ZwZjT6 CsYwu1+epfcKbPhomlyXaTwVjCGrC8lH7WESaWaXNquTazv0/U/n2dgmtZt52PQz oboHkIGhOPpHtwPOR62OVA0aeU6HzQG9d2ls0RVqrzmVeTB0+6XUKet72/N9Z/ZA Dr0TsCb3zqJPs0vvH+bQyaP5T4/qKXn3r9uESam/Sr4wJEP6jzb8ixWAmA1Q6ZN+ tAbtaaTk0s2xprjA/pT58GafDGampkr+xRfbu3sZauK7K0QmCt+vdG51x/0Yk8Vi G5cMK8qL5qyVCZ+TC7iceSnPIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA8vQmM2 zTZLkVFQU3boIMyECzlFMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMDZGNzY0MDhG N0RBMTFFRTk1QUE2NjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQgowDQYJKoZIhvcNAQELBQADggEBAFH6Ohc8W4GAJYRL uGeBxw2T46CSnNtYJTC9UTE6HNnAgOSUUDoW/VrR0EFUHC9f6BSR6ZpF4OSm3jyZ QcXM1tBo0Xi3ktbUtXJN/XJG2SvnQ6/rb6fe1i29CzwgbfgThW8iJSOuB7ec+gKF vwvIYcbxfumzzpZq6RfywaHNuzR9IceZvpnrSaS3l4imVYRtYLmnmIG6N9MdqyF+ ZaDR5+FrrSoGtIRfcRWvuxP3KNJfqB4BCqbKle83tJuTW9DYfOqGFB4yLbdAu7Ek kKgxSrH5m6vS81rK2egziZ9H3ct6v/GzY/JXYBisp+vPK8sua77laqbTCCFs8JPJ Ah9eMo8= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org