$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/49A2605CCED411EE9537E682C4F9AE02.roa File: 49A2605CCED411EE9537E682C4F9AE02.roa (raw, json) Hash identifier: 2hBFTAggc5V7Z5j0l2akOlgYVLB2ataNEOqTUq8SHYE= Subject key identifier: D7:94:2F:77:FE:A1:12:18:64:41:5C:B9:A4:7E:85:02:87:24:3F:60 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 028C Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/49A2605CCED411EE9537E682C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:58 +0000 ROA not before: Thu 05 Sep 2024 03:30:58 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151858 IP address blocks: 157.15.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:58 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f2-305b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:48:98:69:46:05:1a:9d:45:e5:26:37:ee:ce: b5:6c:42:08:8e:53:1e:97:9a:f0:df:0d:a3:42:79: 05:a7:3d:bb:14:b7:3a:e1:88:43:f2:49:5f:46:73: bf:f6:89:14:b1:fc:dc:49:71:86:5c:3f:d1:9a:81: 8a:bb:21:80:61:7d:94:b6:3d:f4:a6:2e:7e:3d:37: 4d:e3:44:12:9e:28:d1:9f:10:a6:b8:d1:e1:9d:4e: bc:cc:0a:d3:4a:fb:6e:20:0d:3c:7a:e0:63:c4:56: 4f:b2:ed:e4:cc:55:51:ec:69:b6:e2:77:d9:9e:6f: fa:9a:88:a5:ed:62:8b:49:57:1e:99:3f:12:13:bb: e3:ac:93:1b:10:a4:90:a0:a0:83:1f:88:0c:eb:5a: c2:ce:f3:84:23:97:64:4a:c3:4e:36:35:9e:d8:e7: ca:78:8f:65:ee:23:7a:2f:b8:2c:b9:3e:f2:3d:1f: 05:1c:7c:e9:ae:1e:52:53:6e:e5:7b:5c:2a:a3:56: dd:34:74:b9:a9:d7:84:9e:a0:0c:2c:92:51:fb:dd: f4:e9:8b:5f:53:58:41:35:c9:f0:be:18:f5:07:c3: 79:bd:f2:00:bf:38:de:e4:af:62:49:70:4b:88:8e: 20:3b:d1:c7:05:9f:05:58:81:4f:1f:b1:db:a1:0c: 39:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:2F:77:FE:A1:12:18:64:41:5C:B9:A4:7E:85:02:87:24:3F:60 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/49A2605CCED411EE9537E682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.84.0/23 Signature Algorithm: sha256WithRSAEncryption a9:66:9a:ce:4e:3a:61:86:27:ab:75:de:03:f8:e2:2f:90:a7: 64:29:6b:66:58:ac:a4:f3:43:33:67:f2:b9:5c:07:bc:95:0f: d1:f1:d1:ac:48:92:d4:84:4d:55:9b:73:d1:8b:bd:b3:65:41: 89:3d:5f:99:8e:95:60:e6:ae:e4:78:75:a5:00:60:63:71:37: 86:ef:d1:4f:4c:f5:5d:1f:f4:08:b8:5f:87:a4:57:d8:98:5b: 49:d0:62:cc:1c:ee:ad:c6:4f:b4:01:ce:7e:e1:71:5c:f7:46: e4:e6:42:d2:74:c1:cb:07:40:33:b8:d8:89:c4:88:a0:bb:a2: 11:c2:d5:bc:2c:5c:08:59:70:76:f6:ae:78:e2:ca:f9:f8:92: f8:72:09:89:f1:96:61:18:05:e5:12:f4:d0:c0:e6:04:7a:09: fe:84:37:0a:f8:2c:a4:d5:9c:40:4e:8e:5e:81:52:78:55:31: ba:95:66:38:c4:07:b8:88:8c:60:3b:cb:14:f3:17:f7:66:70: 46:3d:2a:27:83:6c:76:16:cf:3b:c0:a0:cd:e7:f3:e7:61:39: b1:b6:1a:0d:a8:6e:e3:84:e8:19:22:e5:f3:01:0a:9b:ee:c8: 81:5d:fa:5d:f9:ce:b8:61:d6:96:2b:49:2d:aa:9a:5c:4b:74: 0c:3f:88:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDU4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmMi0zMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkiYaUYFGp1F5SY37s61bEIIjlMel5rw3w2jQnkFpz27FLc64YhD8klfRnO/ 9okUsfzcSXGGXD/RmoGKuyGAYX2Utj30pi5+PTdN40QSnijRnxCmuNHhnU68zArT SvtuIA08euBjxFZPsu3kzFVR7Gm24nfZnm/6moil7WKLSVcemT8SE7vjrJMbEKSQ oKCDH4gM61rCzvOEI5dkSsNONjWe2OfKeI9l7iN6L7gsuT7yPR8FHHzprh5SU27l e1wqo1bdNHS5qdeEnqAMLJJR+9306YtfU1hBNcnwvhj1B8N5vfIAvzje5K9iSXBL iI4gO9HHBZ8FWIFPH7HboQw5twIDAQABo4IClTCCApEwHQYDVR0OBBYEFNeUL3f+ oRIYZEFcuaR+hQKHJD9gMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDlBMjYwNUND RUQ0MTFFRTk1MzdFNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD1QwDQYJKoZIhvcNAQELBQADggEBAKlmms5OOmGGJ6t1 3gP44i+Qp2Qpa2ZYrKTzQzNn8rlcB7yVD9Hx0axIktSETVWbc9GLvbNlQYk9X5mO lWDmruR4daUAYGNxN4bv0U9M9V0f9Ai4X4ekV9iYW0nQYswc7q3GT7QBzn7hcVz3 RuTmQtJ0wcsHQDO42InEiKC7ohHC1bwsXAhZcHb2rnjiyvn4kvhyCYnxlmEYBeUS 9NDA5gR6Cf6ENwr4LKTVnEBOjl6BUnhVMbqVZjjEB7iIjGA7yxTzF/dmcEY9KieD bHYWzzvAoM3n8+dhObG2Gg2obuOE6Bki5fMBCpvuyIFd+l35zrhh1pYrSS2qmlxL dAw/iBY= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org