$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa File: 4780B0E87FC411EFB3C21C26C4F9AE02.roa (raw, json) Hash identifier: UYq7Ev1psGbZ42F1Phb0+00nCXan80JNswO599xA+rA= Subject key identifier: BC:ED:AB:B1:8D:8B:0E:E4:C7:70:89:2E:75:B4:DE:D0:03:F1:D8:74 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0323 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa Signing time: Tue 01 Oct 2024 07:11:30 +0000 ROA not before: Tue 01 Oct 2024 07:11:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150859 IP address blocks: 157.66.12.0/24 maxlen: 24 157.66.160.0/23 maxlen: 23 160.187.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 1 07:11:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66fba0a1-9b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:28:9e:e4:ff:82:e7:3e:a8:20:6e:6f:a0:2f: 3f:45:de:e6:f6:0d:8c:84:75:a8:76:8b:32:3d:8f: e4:61:4c:d9:b5:a0:c9:10:c8:c7:22:0b:22:60:39: dd:e6:d6:63:f1:57:58:aa:0d:90:76:32:3d:dd:21: e1:48:3e:ac:6b:12:b2:7f:53:3d:6d:80:bd:1e:67: 7f:3c:6b:da:0f:da:8a:82:b3:33:ed:78:e9:99:4d: e2:15:35:40:2b:66:86:42:93:11:e2:f2:9b:f6:0d: 09:15:aa:82:0d:6e:f7:8a:ee:1e:39:92:5e:23:c0: 98:1a:f0:98:03:47:e7:9f:3d:02:6f:5d:5d:a0:d7: 1e:9b:b6:d6:4b:ae:81:7a:21:8d:f2:6b:61:93:98: 11:21:37:a2:5c:9e:6f:aa:bf:57:c8:1a:f2:51:d6: 0a:66:a2:37:19:e9:19:f4:bb:4c:28:43:c4:77:9c: c2:79:4c:1c:e6:34:9a:ea:6c:e7:1c:c7:eb:de:9f: da:ce:39:e9:8d:d8:15:fa:b3:52:8a:c3:97:ae:a9: b2:0d:64:10:39:e2:c7:1c:64:29:45:09:87:b4:ba: 4e:be:22:be:c6:0e:09:37:42:12:d0:1d:73:f8:ca: 96:a2:93:fe:19:bc:c5:a5:91:2b:b5:f1:04:b4:8d: 40:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:ED:AB:B1:8D:8B:0E:E4:C7:70:89:2E:75:B4:DE:D0:03:F1:D8:74 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.12.0/24 157.66.160.0/23 160.187.74.0/23 Signature Algorithm: sha256WithRSAEncryption 12:8c:16:b4:70:78:95:de:10:98:cf:64:48:c2:d8:1d:fe:dc: 33:9f:4d:fd:1f:cb:98:c2:95:98:b6:b3:34:59:0f:2e:98:c1: cc:05:20:3b:75:96:02:20:48:9a:1c:5c:d0:8b:2f:57:3d:21: ea:6d:bf:bc:7e:6f:ae:2b:55:b2:69:26:e0:18:60:26:32:71: 9a:6d:78:34:ca:77:20:9a:06:f1:c9:16:c2:d0:03:54:70:0b: 74:4a:15:64:d5:e3:9b:43:a0:9f:2b:45:98:00:4b:66:d7:21: 86:34:f3:c1:8d:40:01:6f:c5:33:98:8e:66:5e:c5:91:6b:81: 68:22:95:8d:cd:23:fb:f1:e7:6a:39:22:1a:e0:23:95:96:08: 84:32:6c:f7:fe:5e:27:6b:1d:7a:ca:1a:72:b5:ad:c9:e5:67: ef:c6:c3:cb:ed:aa:f2:13:7a:7a:97:d9:23:33:16:e1:40:10: 54:13:59:66:49:ea:10:a7:f7:02:bc:e4:61:03:c4:4f:dd:46: 97:f8:b7:54:73:ac:fc:40:c5:5c:22:77:03:a7:d1:c5:22:3e: 7a:64:08:c2:ba:a2:1f:93:8b:be:52:4c:2f:fb:dd:53:ec:25: 13:d2:d0:3b:be:08:f3:03:89:da:76:d6:9a:f7:78:64:81:62: 80:d1:0c:40 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMDAxMDcxMTMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiYTBhMS05YjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyie5P+C5z6oIG5voC8/Rd7m9g2MhHWodosyPY/kYUzZtaDJEMjHIgsiYDnd 5tZj8VdYqg2QdjI93SHhSD6saxKyf1M9bYC9Hmd/PGvaD9qKgrMz7XjpmU3iFTVA K2aGQpMR4vKb9g0JFaqCDW73iu4eOZJeI8CYGvCYA0fnnz0Cb11doNcem7bWS66B eiGN8mthk5gRITeiXJ5vqr9XyBryUdYKZqI3GekZ9LtMKEPEd5zCeUwc5jSa6mzn HMfr3p/azjnpjdgV+rNSisOXrqmyDWQQOeLHHGQpRQmHtLpOviK+xg4JN0IS0B1z +MqWopP+GbzFpZErtfEEtI1AKwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLztq7GN iw7kx3CJLnW03tAD8dh0MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDc4MEIwRTg3 RkM0MTFFRkIzQzIxQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACdQgwDBAGdQqADBAGgu0owDQYJKoZIhvcNAQELBQADggEB ABKMFrRweJXeEJjPZEjC2B3+3DOfTf0fy5jClZi2szRZDy6YwcwFIDt1lgIgSJoc XNCLL1c9Ieptv7x+b64rVbJpJuAYYCYycZpteDTKdyCaBvHJFsLQA1RwC3RKFWTV 45tDoJ8rRZgAS2bXIYY088GNQAFvxTOYjmZexZFrgWgilY3NI/vx52o5IhrgI5WW CIQybPf+XidrHXrKGnK1rcnlZ+/Gw8vtqvITenqX2SMzFuFAEFQTWWZJ6hCn9wK8 5GEDxE/dRpf4t1RzrPxAxVwidwOn0cUiPnpkCMK6oh+Ti75STC/73VPsJRPS0Du+ CPMDidp21pr3eGSBYoDRDEA= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:02 2024 by rpki-client on console-fra.rpki-client.org