$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3C2596F6EB4911EEB2A62E50C4F9AE02.roa File: 3C2596F6EB4911EEB2A62E50C4F9AE02.roa (raw, json) Hash identifier: Hep6qedzJRohAWYOwB+ATjkCzQwu305exRVuHp6o/Kw= Subject key identifier: 5D:98:45:75:80:5D:05:01:C7:A7:34:73:26:B4:5F:FC:42:A8:36:7D Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0129 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3C2596F6EB4911EEB2A62E50C4F9AE02.roa Signing time: Fri 24 May 2024 07:04:33 +0000 ROA not before: Fri 24 May 2024 07:04:33 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45538 IP address blocks: 157.10.198.0/23 maxlen: 24 157.66.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: May 24 07:04:33 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66503c01-f2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:17:a4:6c:54:25:43:c8:2c:16:63:3d:d6:bc: 2a:05:0d:4d:79:d7:9f:68:c7:55:1a:b4:d5:ec:d9: 4b:77:1e:0a:2b:b2:8f:24:f4:1e:52:f1:43:9b:ef: 60:36:8f:1b:9c:30:ce:cc:3b:50:ff:81:a6:6f:a4: 65:18:cf:ef:c9:05:23:5d:57:ce:a3:c0:ba:0d:42: c2:e6:2f:b2:f1:63:17:9f:67:6c:8a:5d:e6:01:bd: 4c:45:e4:1e:89:5b:65:37:4f:f1:22:13:63:4d:f3: 49:17:24:9b:c1:39:a0:d5:bc:94:b9:d6:57:9b:aa: 51:e8:d1:7d:99:ac:60:df:43:bf:d5:d8:8b:db:10: a4:3e:3e:e3:de:ed:3e:ac:21:4b:24:4c:55:ea:97: 34:b0:02:e2:c1:0b:09:c6:1d:ed:e9:4b:b2:50:80: da:ff:2e:98:80:7d:b0:e8:fb:bd:2d:14:2d:85:4e: 52:e7:d1:bc:21:f5:d8:12:ec:cc:74:7e:35:9a:10: b8:39:2b:cf:7b:d3:74:7a:ee:4c:70:4e:c4:09:cd: 04:38:56:b5:5b:dd:01:14:39:28:2e:98:7c:f5:d9: 6d:4f:df:3c:52:5a:9e:18:4e:95:13:4b:8c:94:e7: 90:47:fa:ea:56:e4:90:46:67:c2:87:f0:15:24:1b: af:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:45:75:80:5D:05:01:C7:A7:34:73:26:B4:5F:FC:42:A8:36:7D X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3C2596F6EB4911EEB2A62E50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.198.0/23 157.66.81.0/24 Signature Algorithm: sha256WithRSAEncryption 11:d1:a9:0f:66:69:cb:0b:43:dc:3e:60:31:01:04:56:e4:07: 50:92:a7:3c:90:b8:f5:d7:81:4c:af:62:62:2b:ba:fe:24:11: bb:74:b2:68:b1:fd:f9:4b:f9:7c:a4:4c:c8:6d:6d:73:94:b7: 43:2a:ef:dc:5a:19:0f:83:48:07:b8:1f:76:59:9f:3c:08:7f: 63:6a:4c:17:e2:15:d9:cf:4c:a1:9b:8e:d6:8d:60:38:99:3c: 19:af:5d:65:99:96:48:80:dc:80:dd:4f:9d:66:3c:60:dd:90: 18:0f:3c:a0:7f:d1:48:05:91:dc:3d:46:1a:14:d5:cb:d4:a5: 0f:f8:d2:8c:92:9d:59:fc:cd:fb:14:ac:5a:72:3f:3a:8b:69: 7e:2a:d4:08:93:a9:d9:76:fb:9a:ca:ae:42:5c:11:09:ae:6d: 9c:cb:7c:24:2e:88:fa:86:39:73:f1:30:6c:9b:a8:df:95:d1: 7a:56:30:df:c9:0e:bf:0d:50:d1:71:1a:6c:73:9b:73:05:3c: 8e:8d:d3:4a:cd:3c:cd:45:a9:80:59:00:b9:d6:90:66:ba:17: cb:be:f4:2c:4a:e6:70:43:0e:4f:ad:ca:d1:e4:1b:d9:b2:60: 20:28:20:10:96:d3:db:b2:e7:b4:72:27:7c:16:80:14:74:ac: 3d:1e:00:57 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwNTI0MDcwNDMzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUwM2MwMS1mMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhekbFQlQ8gsFmM91rwqBQ1NedefaMdVGrTV7NlLdx4KK7KPJPQeUvFDm+9g No8bnDDOzDtQ/4Gmb6RlGM/vyQUjXVfOo8C6DULC5i+y8WMXn2dsil3mAb1MReQe iVtlN0/xIhNjTfNJFySbwTmg1byUudZXm6pR6NF9maxg30O/1diL2xCkPj7j3u0+ rCFLJExV6pc0sALiwQsJxh3t6UuyUIDa/y6YgH2w6Pu9LRQthU5S59G8IfXYEuzM dH41mhC4OSvPe9N0eu5McE7ECc0EOFa1W90BFDkoLph89dltT988UlqeGE6VE0uM lOeQR/rqVuSQRmfCh/AVJBuvFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF2YRXWA XQUBx6c0cya0X/xCqDZ9MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvM0MyNTk2RjZF QjQ5MTFFRUIyQTYyRTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGdCsYDBACdQlEwDQYJKoZIhvcNAQELBQADggEBABHRqQ9m acsLQ9w+YDEBBFbkB1CSpzyQuPXXgUyvYmIruv4kEbt0smix/flL+XykTMhtbXOU t0Mq79xaGQ+DSAe4H3ZZnzwIf2NqTBfiFdnPTKGbjtaNYDiZPBmvXWWZlkiA3IDd T51mPGDdkBgPPKB/0UgFkdw9RhoU1cvUpQ/40oySnVn8zfsUrFpyPzqLaX4q1AiT qdl2+5rKrkJcEQmubZzLfCQuiPqGOXPxMGybqN+V0XpWMN/JDr8NUNFxGmxzm3MF PI6N00rNPM1FqYBZALnWkGa6F8u+9CxK5nBDDk+tytHkG9myYCAoIBCW09uy57Ry J3wWgBR0rD0eAFc= -----END CERTIFICATE-----Generated at Fri May 31 16:41:39 2024 by rpki-client on console-ams.rpki-client.org