$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa File: 45FFCD9AD6E511EE9E963F62C4F9AE02.roa (raw, json) Hash identifier: 8TZNGHo56wRKhD09RcG0pFoORYka8WBDRTvzXBC7CqA= Subject key identifier: E5:F3:81:99:CF:C0:B4:BF:F3:79:BA:A5:20:57:FC:09:1F:2F:22:06 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0404 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa Signing time: Sat 16 Nov 2024 14:24:06 +0000 ROA not before: Sat 16 Nov 2024 14:24:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135905 IP address blocks: 157.20.88.0/23 maxlen: 24 160.22.102.0/23 maxlen: 24 160.191.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 16 14:24:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6738ab05-9c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:73:1a:0e:7f:27:e0:9d:aa:d4:aa:b1:6e:19: 62:89:0f:c6:a4:71:1f:e9:91:41:9e:13:bc:7c:2c: 62:e3:d9:0f:70:f1:b6:1d:05:0a:31:5a:54:82:c5: 19:33:b1:ba:87:64:ee:fd:d2:01:2f:be:5e:f8:94: d8:ce:08:de:5b:5a:ad:89:24:c3:62:fe:6a:d5:fb: b4:db:ec:fb:d5:1b:e9:40:82:a1:34:aa:ba:a9:20: e0:e9:21:be:cf:ca:82:47:7d:57:05:4e:e1:f1:5b: b5:58:6a:a3:f2:38:fe:df:21:b0:ed:b8:10:64:d6: f9:20:57:5c:b5:c3:09:92:07:01:6c:75:5a:ab:16: d4:b7:b4:6a:31:58:2f:f5:d2:87:31:61:53:cf:60: 8e:66:23:f5:f6:28:3c:c2:ca:6f:d4:79:af:06:ea: 31:15:00:b8:f1:1d:e1:68:bf:41:e6:2e:2e:4a:d3: e9:d1:73:4d:ec:4d:f9:5e:4e:09:f1:10:88:7c:5d: 78:8d:04:8d:76:c8:70:bd:50:52:57:5e:0a:47:da: e8:61:f9:3e:6c:26:4f:08:eb:ce:5e:34:6f:5e:db: b4:7c:06:f1:c8:72:29:bd:73:8a:92:88:ea:61:2b: 51:aa:32:27:32:5c:7b:2b:a9:a2:c1:ba:06:f2:18: 5d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F3:81:99:CF:C0:B4:BF:F3:79:BA:A5:20:57:FC:09:1F:2F:22:06 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.88.0/23 160.22.102.0/23 160.191.100.0/23 Signature Algorithm: sha256WithRSAEncryption 81:3b:fd:2d:75:e9:59:45:8f:fa:d3:8f:26:e0:31:1b:3f:c3: 8f:13:e2:b7:cb:65:c4:17:ba:df:b2:fa:cc:13:e7:6d:48:e5: 46:89:b0:b0:26:4a:99:67:67:f7:29:4a:c6:d6:16:a6:08:4b: 2d:51:32:73:b9:57:fa:d9:9c:88:f4:54:12:84:63:07:5a:af: 4a:ef:fc:dd:47:50:bd:57:08:93:95:31:0b:69:aa:12:90:37: 9a:bc:7f:45:c6:27:81:fb:3a:c0:5e:8a:3d:6b:12:c9:50:68: 33:77:3e:9b:59:8e:34:05:88:ac:db:77:13:25:19:45:3e:89: b0:20:c2:67:4c:e6:89:eb:4d:b4:43:32:6e:99:a0:89:53:2b: f0:bb:ef:a4:36:56:ca:58:30:6a:6d:cd:07:11:95:b3:7a:77: ed:1a:f3:7b:b1:f3:bf:77:33:49:83:e6:ef:75:ab:c2:0f:3b: ca:8a:1e:0e:d0:86:d9:44:93:8d:10:fd:02:9d:60:db:c4:a5: 46:f9:fc:67:32:f0:a5:8c:6d:d1:10:8d:96:7f:49:b0:b1:d4: 66:c5:92:12:ab:1a:76:bb:98:77:88:de:cc:a5:8f:a1:ea:78: 15:f0:bb:c7:e7:b3:bb:81:c5:d9:1a:9d:1a:d8:6f:6a:af:9d: e4:c5:df:9c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMTE2MTQyNDA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4YWIwNS05YzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XMaDn8n4J2q1KqxbhliiQ/GpHEf6ZFBnhO8fCxi49kPcPG2HQUKMVpUgsUZ M7G6h2Tu/dIBL75e+JTYzgjeW1qtiSTDYv5q1fu02+z71RvpQIKhNKq6qSDg6SG+ z8qCR31XBU7h8Vu1WGqj8jj+3yGw7bgQZNb5IFdctcMJkgcBbHVaqxbUt7RqMVgv 9dKHMWFTz2COZiP19ig8wspv1HmvBuoxFQC48R3haL9B5i4uStPp0XNN7E35Xk4J 8RCIfF14jQSNdshwvVBSV14KR9roYfk+bCZPCOvOXjRvXtu0fAbxyHIpvXOKkojq YStRqjInMlx7K6miwboG8hhdGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOXzgZnP wLS/83m6pSBX/AkfLyIGMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDVGRkNEOUFE NkU1MTFFRTlFOTYzRjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAGdFFgDBAGgFmYDBAGgv2QwDQYJKoZIhvcNAQELBQADggEB AIE7/S116VlFj/rTjybgMRs/w48T4rfLZcQXut+y+swT521I5UaJsLAmSplnZ/cp SsbWFqYISy1RMnO5V/rZnIj0VBKEYwdar0rv/N1HUL1XCJOVMQtpqhKQN5q8f0XG J4H7OsBeij1rEslQaDN3PptZjjQFiKzbdxMlGUU+ibAgwmdM5onrTbRDMm6ZoIlT K/C776Q2VspYMGptzQcRlbN6d+0a83ux8793M0mD5u91q8IPO8qKHg7QhtlEk40Q /QKdYNvEpUb5/Gcy8KWMbdEQjZZ/SbCx1GbFkhKrGna7mHeI3sylj6HqeBXwu8fn s7uBxdkanRrYb2qvneTF35w= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org