$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/7B06DD60B6D411EF843AE965C4F9AE02.roa File: 7B06DD60B6D411EF843AE965C4F9AE02.roa (raw, json) Hash identifier: Yd5fEBeYFurB3nOCfORNkXclXy1PzlgX4xXm6mTIxZo= Subject key identifier: 5D:2D:F6:12:CE:01:CB:74:CB:62:8F:22:53:DB:45:99:2B:2D:00:88 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0493 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/7B06DD60B6D411EF843AE965C4F9AE02.roa Signing time: Tue 10 Dec 2024 08:55:19 +0000 ROA not before: Tue 10 Dec 2024 08:55:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150862 IP address blocks: 157.10.42.0/23 maxlen: 23 157.10.44.0/23 maxlen: 23 157.15.108.0/23 maxlen: 23 157.15.110.0/23 maxlen: 23 160.22.106.0/23 maxlen: 23 160.30.20.0/23 maxlen: 23 160.30.156.0/23 maxlen: 23 160.30.192.0/23 maxlen: 23 160.30.200.0/23 maxlen: 23 160.187.122.0/23 maxlen: 23 160.187.226.0/23 maxlen: 23 160.187.228.0/23 maxlen: 23 160.187.246.0/23 maxlen: 23 160.191.54.0/23 maxlen: 23 160.191.138.0/23 maxlen: 23 160.191.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Dec 10 08:55:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=675801f6-7a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3e:4d:28:63:02:5d:5f:00:33:e1:2f:8d:ce: 2c:de:29:c9:8b:46:c4:9f:e8:4b:18:52:93:aa:d7: ad:46:10:e1:89:11:f4:65:df:d8:85:39:cc:ae:85: 8d:83:8e:b5:49:ef:bd:66:bb:5c:dc:57:77:d2:83: 8a:ce:f9:1b:b0:08:30:aa:81:e6:62:63:d8:a1:40: 4c:6d:81:b7:09:a3:fb:27:cc:a0:a5:f5:0a:fe:23: 97:41:5a:48:a4:60:f5:0d:13:ed:78:aa:1b:61:fa: ee:91:f1:3a:37:88:5f:15:7b:1a:27:6a:53:b8:bd: ea:f0:44:b4:3c:f4:b2:38:b0:8c:78:0d:ed:ba:d0: f7:cc:98:ef:97:e0:75:a6:e0:61:7a:f0:27:6e:d5: 51:39:d8:4c:06:fe:4c:05:f6:a1:56:33:45:04:d6: 74:a8:34:b7:d9:09:b4:1f:65:10:ef:12:ad:b0:22: 1f:a0:6b:30:e0:56:3a:71:68:9d:dc:34:75:e3:7b: a5:60:30:fd:b5:f8:a5:48:ba:b9:f6:28:c6:ae:17: ca:b8:8d:a5:82:51:cc:88:c4:a2:89:82:7d:fe:28: a9:2f:38:5b:56:4e:3a:fb:28:ae:b8:76:86:84:89: 84:11:66:c2:64:b3:b2:c6:c3:00:ee:17:6c:f2:47: 09:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2D:F6:12:CE:01:CB:74:CB:62:8F:22:53:DB:45:99:2B:2D:00:88 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/7B06DD60B6D411EF843AE965C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.42.0-157.10.45.255 157.15.108.0/22 160.22.106.0/23 160.30.20.0/23 160.30.156.0/23 160.30.192.0/23 160.30.200.0/23 160.187.122.0/23 160.187.226.0-160.187.229.255 160.187.246.0/23 160.191.54.0/23 160.191.138.0/23 160.191.174.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:82:65:6b:b3:12:fe:41:3a:d3:86:ef:56:a7:80:9c:e4:c6: 53:2e:93:72:a4:22:29:c9:9f:af:0e:bc:79:2e:57:c2:58:ce: 4b:26:38:2f:d0:bf:aa:95:74:43:af:08:59:b6:a2:11:82:46: ac:3f:78:48:fe:62:9b:bf:24:b6:db:d8:80:8c:3b:82:b2:01: 4d:5a:1b:ed:60:ff:fe:ce:b0:46:27:01:9f:8e:7d:66:2b:b6: e1:ff:c7:ff:af:94:e9:06:70:4c:ac:de:f1:e5:78:a3:94:30: a9:f0:07:29:6f:e9:39:14:ba:cc:4d:82:c9:a5:23:e5:15:7c: 17:e8:36:28:1a:f7:58:0c:0e:de:de:25:1f:06:fd:07:48:a3: 2e:7d:06:53:7d:c3:21:de:1b:76:9c:4f:27:bc:b7:d0:d4:c5: 1e:29:da:aa:ec:4a:93:18:4c:9f:40:0b:11:55:2f:4d:16:48: a6:f3:90:e6:9b:01:00:28:7a:0a:15:2f:43:9a:74:6d:a7:6f: 8d:48:0e:e8:ce:83:f9:17:e3:81:fe:94:15:ea:f0:1c:b9:2b: ce:86:1d:16:6b:e1:8f:84:3f:8b:bf:77:92:6d:7d:fc:b5:7e: 82:bb:4d:eb:b5:3c:67:e1:9f:9b:b8:0b:3e:49:46:10:91:82: a8:19:dd:c9 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMjEwMDg1NTE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4MDFmNi03YThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmj5NKGMCXV8AM+Evjc4s3inJi0bEn+hLGFKTqtetRhDhiRH0Zd/YhTnMroWN g461Se+9Zrtc3Fd30oOKzvkbsAgwqoHmYmPYoUBMbYG3CaP7J8ygpfUK/iOXQVpI pGD1DRPteKobYfrukfE6N4hfFXsaJ2pTuL3q8ES0PPSyOLCMeA3tutD3zJjvl+B1 puBhevAnbtVROdhMBv5MBfahVjNFBNZ0qDS32Qm0H2UQ7xKtsCIfoGsw4FY6cWid 3DR143ulYDD9tfilSLq59ijGrhfKuI2lglHMiMSiiYJ9/iipLzhbVk46+yiuuHaG hImEEWbCZLOyxsMA7hds8kcJOwIDAQABo4IC7TCCAukwHQYDVR0OBBYEFF0t9hLO Act0y2KPIlPbRZkrLQCIMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvN0IwNkRENjBC NkQ0MTFFRjg0M0FFOTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwdwYIKwYBBQUHAQcBAf8E aDBmMGQEAgABMF4wDAMEAZ0KKgMEAZ0KLAMEAp0PbAMEAaAWagMEAaAeFAMEAaAe nAMEAaAewAMEAaAeyAMEAaC7ejAMAwQBoLviAwQBoLvkAwQBoLv2AwQBoL82AwQB oL+KAwQBoL+uMA0GCSqGSIb3DQEBCwUAA4IBAQBfgmVrsxL+QTrThu9Wp4Cc5MZT LpNypCIpyZ+vDrx5LlfCWM5LJjgv0L+qlXRDrwhZtqIRgkasP3hI/mKbvyS229iA jDuCsgFNWhvtYP/+zrBGJwGfjn1mK7bh/8f/r5TpBnBMrN7x5XijlDCp8Acpb+k5 FLrMTYLJpSPlFXwX6DYoGvdYDA7e3iUfBv0HSKMufQZTfcMh3ht2nE8nvLfQ1MUe Kdqq7EqTGEyfQAsRVS9NFkim85DmmwEAKHoKFS9DmnRtp2+NSA7ozoP5F+OB/pQV 6vAcuSvOhh0Wa+GPhD+Lv3eSbX38tX6Cu03rtTxn4Z+buAs+SUYQkYKoGd3J -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:43 2025 by rpki-client