$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa File: 26D098AC4B3711EF9BAECA83C4F9AE02.roa (raw, json) Hash identifier: EIzh4fXdZa/ZIRUI+RbwCpkJb5yhZUOCeOetzba811g= Subject key identifier: 8B:E1:20:77:2A:18:AD:CC:65:72:12:99:F0:58:C9:C9:A6:17:AB:50 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0291 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:03 +0000 ROA not before: Thu 05 Sep 2024 03:31:03 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151908 IP address blocks: 157.20.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:03 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f7-a0a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:97:d2:c0:77:8c:d2:24:a8:ba:6d:38:a3:a0: af:ca:d5:aa:ac:7f:0b:bb:57:a4:b5:71:fd:89:9d: 82:24:34:5e:5b:69:51:f1:c2:eb:b2:42:09:2a:7a: d2:37:db:e7:00:2d:c4:3a:47:de:5b:03:d0:85:56: 28:46:da:01:4a:d8:5f:ca:df:b4:4b:86:07:ef:d3: 89:20:11:55:e9:2e:1d:ba:bd:36:41:f2:c2:b8:c1: 08:70:af:6c:ef:6e:84:21:d3:70:ce:ae:11:a2:87: 1a:6b:b5:e1:73:63:3d:5e:80:85:8b:84:13:75:be: ca:0c:c7:77:ae:bc:08:49:95:c8:bd:8f:6a:f2:ba: 2b:2d:3f:78:6d:35:da:9c:50:17:2c:2c:fe:0a:c0: 50:f0:64:1a:1c:83:44:cf:98:54:c7:bc:3e:3b:f0: 74:11:76:ab:9b:b0:7e:38:a9:00:0b:e9:0e:26:65: 9d:b9:62:d4:c5:1e:ef:2b:8a:8e:1b:ba:96:42:24: c6:a3:dd:bc:c7:61:e4:24:52:4a:96:b9:61:06:b9: 84:0f:a6:b2:b3:80:6d:47:80:6e:31:43:31:a3:80: a3:af:39:24:3c:f0:d2:05:b1:14:0a:7b:c0:6b:45: e3:14:47:0b:24:37:24:e8:15:f7:67:91:09:a9:27: 1e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E1:20:77:2A:18:AD:CC:65:72:12:99:F0:58:C9:C9:A6:17:AB:50 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.60.0/23 Signature Algorithm: sha256WithRSAEncryption 64:3e:b8:62:1b:fc:ff:aa:dd:53:11:db:88:3f:10:8d:2a:47: cc:4c:1d:41:2f:78:2b:b3:71:9e:6e:f8:15:31:95:c7:31:06: 26:20:8a:b1:b8:81:f8:53:38:ad:d8:25:7e:87:44:59:07:60: 60:5c:da:cf:86:19:cc:a0:4f:e8:5d:da:0b:79:97:88:35:f2: 11:8c:8f:0a:29:22:c5:86:d6:c6:7f:b2:ea:5f:6b:19:49:84: 92:47:42:7f:bb:db:dd:5e:10:8c:97:b6:51:3a:76:43:55:03: bb:9d:68:f3:4b:8d:e8:4d:ef:19:01:ee:3d:d5:4e:f1:5e:73: 0f:9c:d1:e4:0f:1b:b1:e8:01:08:db:53:0a:42:1a:e5:18:0c: 94:b7:5c:7d:fa:83:c7:e6:ac:6c:a2:50:7a:ae:2e:79:9d:45: 9d:a5:1b:2e:b5:7e:7a:e6:c7:0f:50:5d:2f:13:b3:9b:8c:cf: 4a:14:1b:57:b1:59:2d:02:8b:3d:2a:7d:92:83:88:56:ca:ce: f6:43:ec:4f:27:f8:f6:95:40:14:21:61:a8:9d:95:40:9a:d3: ab:0f:52:39:b7:f8:7e:bf:57:4f:81:65:1f:54:f2:bc:65:75: 0e:c3:13:b1:a6:99:08:34:20:e9:31:78:a1:c3:a2:1a:4c:c6: 67:81:9a:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTAzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmNy1hMGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pfSwHeM0iSoum04o6CvytWqrH8Lu1ektXH9iZ2CJDReW2lR8cLrskIJKnrS N9vnAC3EOkfeWwPQhVYoRtoBSthfyt+0S4YH79OJIBFV6S4dur02QfLCuMEIcK9s 726EIdNwzq4Roocaa7Xhc2M9XoCFi4QTdb7KDMd3rrwISZXIvY9q8rorLT94bTXa nFAXLCz+CsBQ8GQaHINEz5hUx7w+O/B0EXarm7B+OKkAC+kOJmWduWLUxR7vK4qO G7qWQiTGo928x2HkJFJKlrlhBrmED6ays4BtR4BuMUMxo4CjrzkkPPDSBbEUCnvA a0XjFEcLJDck6BX3Z5EJqScewQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIvhIHcq GK3MZXISmfBYycmmF6tQMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMjZEMDk4QUM0 QjM3MTFFRjlCQUVDQTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFDwwDQYJKoZIhvcNAQELBQADggEBAGQ+uGIb/P+q3VMR 24g/EI0qR8xMHUEveCuzcZ5u+BUxlccxBiYgirG4gfhTOK3YJX6HRFkHYGBc2s+G GcygT+hd2gt5l4g18hGMjwopIsWG1sZ/supfaxlJhJJHQn+7291eEIyXtlE6dkNV A7udaPNLjehN7xkB7j3VTvFecw+c0eQPG7HoAQjbUwpCGuUYDJS3XH36g8fmrGyi UHquLnmdRZ2lGy61fnrmxw9QXS8Ts5uMz0oUG1exWS0Ciz0qfZKDiFbKzvZD7E8n +PaVQBQhYaidlUCa06sPUjm3+H6/V0+BZR9U8rxldQ7DE7GmmQg0IOkxeKHDohpM xmeBmi8= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org