$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa File: 48233A50B41511EE96538481C4F9AE02.roa (raw, json) Hash identifier: 4xN/DTbP54Z4IeXNXB2cm+DQVnrs0SDxoL3FfJGwWQs= Subject key identifier: 67:1B:DF:88:68:8F:BB:7C:23:A8:13:1F:07:CC:9F:19:53:AD:5D:E8 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0289 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:55 +0000 ROA not before: Thu 05 Sep 2024 03:30:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150698 IP address blocks: 157.10.46.0/23 maxlen: 23 157.10.194.0/24 maxlen: 24 157.10.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925ef-fbf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:57:36:33:01:51:01:62:62:50:4d:c2:2b:1d: 4d:14:ec:b5:e0:f5:bc:87:75:ba:32:4a:b4:87:c7: dd:6e:52:4f:27:d7:8f:8b:3a:42:eb:41:bf:22:f4: 3d:20:10:a7:ff:5c:a5:78:c8:4b:70:a6:84:ff:f4: ee:bd:61:78:81:cb:cc:b1:3e:59:2a:af:69:f0:2f: dc:68:38:2d:c3:a7:2f:be:7a:93:fe:8a:33:86:06: b9:16:24:df:7d:25:45:0f:97:2e:bd:b0:72:63:41: 1e:f7:d9:c5:42:d3:bd:77:97:ca:76:24:39:b3:7c: d9:03:85:c9:3b:e7:01:8e:1c:6a:c5:45:d5:90:00: 2d:11:af:09:2b:53:03:d1:67:d4:da:70:86:7c:c4: b1:e2:70:a8:12:91:97:1a:53:8d:31:91:f7:58:81: f8:ef:d6:19:2c:f6:03:1f:e3:83:d0:bb:1b:99:fe: dc:4f:a7:05:9e:fc:d2:cc:8e:fb:59:82:00:e8:5b: ea:4e:32:56:2a:ab:50:af:95:2e:08:28:e3:2d:48: 3f:f5:50:d2:40:ba:08:0e:0d:b4:a5:bf:5b:39:7c: b0:d8:10:84:2c:44:b1:7d:a7:fb:75:56:2d:af:1f: ad:01:66:ea:f9:42:bf:04:f3:30:ad:30:5e:ea:c2: b6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1B:DF:88:68:8F:BB:7C:23:A8:13:1F:07:CC:9F:19:53:AD:5D:E8 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.46.0/23 157.10.194.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:45:69:98:f3:fa:1a:6c:16:94:1a:a9:b7:cf:21:5c:e6:67: b7:a9:87:ea:44:d8:2e:67:75:c8:1b:be:6a:ce:61:b7:89:d7: 2b:f1:3b:5c:ba:3a:6b:9e:a9:9e:23:f0:f1:3e:06:72:a4:98: 15:fa:54:75:f0:1f:5b:0b:93:05:f3:46:11:4e:72:e2:bb:74: 7f:e1:49:b4:78:c3:17:0c:45:45:75:4e:fd:1f:f4:c5:38:c4: 6b:67:cc:e8:c5:46:22:3b:a7:a0:36:64:97:aa:ba:a8:1f:77: 01:13:1d:81:09:1f:a2:4f:4f:e3:59:b2:2c:5b:c2:d9:1f:91: e9:f6:3c:76:31:7b:83:41:e3:83:0e:8b:74:75:47:dc:b1:f4: 9e:7a:63:6a:f5:01:01:1e:82:f2:df:ab:53:a3:e0:5a:5f:d5: f5:f4:7f:ed:1f:94:56:f8:13:f0:52:ff:e5:c0:fe:96:60:f5: 31:ac:7a:6a:0b:8f:d7:8f:84:9d:06:fe:d3:13:41:27:c0:db: 7f:b9:60:16:62:2a:1e:58:b7:72:c7:05:63:78:cb:d0:d8:75: 7b:8c:f3:d1:3a:5d:44:6b:b5:1c:22:2a:bd:4c:49:14:89:89: 9a:4e:52:79:2b:82:a5:af:53:a5:6b:54:98:64:45:7b:b1:01: af:54:fa:7e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVlZi1mYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVc2MwFRAWJiUE3CKx1NFOy14PW8h3W6Mkq0h8fdblJPJ9ePizpC60G/IvQ9 IBCn/1yleMhLcKaE//TuvWF4gcvMsT5ZKq9p8C/caDgtw6cvvnqT/oozhga5FiTf fSVFD5cuvbByY0Ee99nFQtO9d5fKdiQ5s3zZA4XJO+cBjhxqxUXVkAAtEa8JK1MD 0WfU2nCGfMSx4nCoEpGXGlONMZH3WIH479YZLPYDH+OD0Lsbmf7cT6cFnvzSzI77 WYIA6FvqTjJWKqtQr5UuCCjjLUg/9VDSQLoIDg20pb9bOXyw2BCELESxfaf7dVYt rx+tAWbq+UK/BPMwrTBe6sK2yQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGcb34ho j7t8I6gTHwfMnxlTrV3oMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDgyMzNBNTBC NDE1MTFFRTk2NTM4NDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGdCi4DBAGdCsIwDQYJKoZIhvcNAQELBQADggEBAE5FaZjz +hpsFpQaqbfPIVzmZ7eph+pE2C5ndcgbvmrOYbeJ1yvxO1y6OmueqZ4j8PE+BnKk mBX6VHXwH1sLkwXzRhFOcuK7dH/hSbR4wxcMRUV1Tv0f9MU4xGtnzOjFRiI7p6A2 ZJequqgfdwETHYEJH6JPT+NZsixbwtkfken2PHYxe4NB44MOi3R1R9yx9J56Y2r1 AQEegvLfq1Oj4Fpf1fX0f+0flFb4E/BS/+XA/pZg9TGsemoLj9ePhJ0G/tMTQSfA 23+5YBZiKh5Yt3LHBWN4y9DYdXuM89E6XURrtRwiKr1MSRSJiZpOUnkrgqWvU6Vr VJhkRXuxAa9U+n4= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org