$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa File: 1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa (raw, json) Hash identifier: CtMkyWtl8FiR9nL10rmG6QNw/jJAqIJhJ3xlNKUOt8E= Subject key identifier: A7:D5:21:48:02:2F:A4:5D:6F:43:3A:C1:B7:56:04:9D:B8:78:97:4E Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: CA Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa Signing time: Tue 16 Apr 2024 02:36:23 +0000 ROA not before: Tue 16 Apr 2024 02:36:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45899 IP address blocks: 157.66.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Apr 16 02:36:23 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=661de426-a481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b3:12:ac:82:69:15:18:31:dd:5b:cc:79:71: 73:72:aa:d2:89:7a:4b:ee:de:84:ef:91:e2:4c:fe: ee:27:cf:a1:ad:0a:76:d1:7c:01:a3:a5:24:8d:62: b0:7c:20:6f:2f:cf:3f:ad:73:29:c7:be:ce:27:cc: e7:38:09:e0:50:0e:b0:60:50:d6:24:21:5d:a1:51: 3d:bb:00:47:89:0a:4f:e0:f8:cf:3c:c1:47:2e:92: 72:62:2b:dd:45:bb:27:d0:e7:5a:d7:73:39:12:da: e7:b4:f6:39:e5:1d:22:a5:ae:5a:0e:ae:67:54:c5: de:70:19:da:d5:4b:2a:36:00:13:ad:1e:fc:c3:83: 51:fb:aa:86:ca:23:45:23:bc:2d:fc:e1:ec:ee:59: 41:ae:1d:70:40:d8:cd:3b:ab:e6:49:1e:b7:eb:01: 95:17:19:7d:f8:a1:40:5d:6f:5a:00:58:e5:1a:bd: 78:28:84:67:8e:fd:21:18:b8:ec:45:a7:f0:cf:9f: 4d:17:03:a2:f6:b0:2d:82:a1:d1:4d:03:d5:5f:6a: c6:82:c3:5d:37:a0:e8:8b:93:75:04:71:e5:1c:1b: 8c:6a:6c:e4:5f:cb:25:43:ba:77:a0:93:4c:08:cb: 09:43:3c:21:57:07:6d:c8:4e:b3:3b:6d:d1:d3:bc: 49:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D5:21:48:02:2F:A4:5D:6F:43:3A:C1:B7:56:04:9D:B8:78:97:4E X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:ea:4d:9b:ae:8e:72:96:66:ea:2c:af:03:a3:a7:29:74:ba: 50:04:bc:a2:de:b3:8c:0d:f0:64:a9:37:c1:2a:ea:c2:54:b4: 61:86:3b:d6:cf:ab:48:6c:b4:ee:38:8a:ed:76:60:a7:67:00: c6:f9:df:a5:f4:00:d3:13:ce:73:fd:a0:0b:e6:73:d1:19:7a: 15:44:be:cc:51:0b:8c:5c:9c:a9:38:22:c0:5a:3a:6b:e2:ba: ed:20:51:93:76:01:aa:cc:0c:ba:72:8f:35:cb:b9:6a:02:19: b2:e4:3e:77:ef:e5:4a:2f:57:2a:01:eb:a9:7e:ec:c1:26:a0: fb:0d:40:a4:f7:73:c7:91:b8:3d:20:3d:16:71:79:24:ef:7a: 0c:63:34:9c:2e:9b:b4:38:e9:c8:eb:76:d6:f7:23:a5:42:1c: 2c:ed:16:a5:79:2f:04:0c:67:38:ba:54:82:1a:c7:26:00:fc: 72:a2:7d:58:3f:85:1b:2e:48:8e:f5:4d:bc:e6:56:7f:bb:92: f3:a0:a2:e1:99:82:51:1d:06:20:c1:5c:53:c2:ca:fc:c0:4f: 95:34:64:4c:f8:2a:70:1b:53:fb:d6:7d:68:19:3d:20:3b:59: e1:36:05:b0:89:fd:6f:26:a0:c7:63:d6:5d:27:af:49:34:97: 37:ab:2b:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwNDE2MDIzNjIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFkZTQyNi1hNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7MSrIJpFRgx3VvMeXFzcqrSiXpL7t6E75HiTP7uJ8+hrQp20XwBo6UkjWKw fCBvL88/rXMpx77OJ8znOAngUA6wYFDWJCFdoVE9uwBHiQpP4PjPPMFHLpJyYivd Rbsn0Oda13M5EtrntPY55R0ipa5aDq5nVMXecBna1UsqNgATrR78w4NR+6qGyiNF I7wt/OHs7llBrh1wQNjNO6vmSR636wGVFxl9+KFAXW9aAFjlGr14KIRnjv0hGLjs Rafwz59NFwOi9rAtgqHRTQPVX2rGgsNdN6Doi5N1BHHlHBuMamzkX8slQ7p3oJNM CMsJQzwhVwdtyE6zO23R07xJiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKfVIUgC L6Rdb0M6wbdWBJ24eJdOMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMUQxQzkzM0VG QjlBMTFFRUJGNUMzQzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQg0wDQYJKoZIhvcNAQELBQADggEBADvqTZuujnKWZuos rwOjpyl0ulAEvKLes4wN8GSpN8Eq6sJUtGGGO9bPq0hstO44iu12YKdnAMb536X0 ANMTznP9oAvmc9EZehVEvsxRC4xcnKk4IsBaOmviuu0gUZN2AarMDLpyjzXLuWoC GbLkPnfv5UovVyoB66l+7MEmoPsNQKT3c8eRuD0gPRZxeSTvegxjNJwum7Q46cjr dtb3I6VCHCztFqV5LwQMZzi6VIIaxyYA/HKifVg/hRsuSI71TbzmVn+7kvOgouGZ glEdBiDBXFPCyvzAT5U0ZEz4KnAbU/vWfWgZPSA7WeE2BbCJ/W8moMdj1l0nr0k0 lzerK1w= -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org