$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa File: 85EE8F1E10FF11EFB863D551C4F9AE02.roa (raw, json) Hash identifier: HVxX2avWyDv9WrLZIO6SU1DecEcLt4j1ry/AqgL6bTM= Subject key identifier: 6A:EA:4C:3B:0B:07:27:46:0C:C7:B3:3C:BC:CB:A2:56:6C:4B:AD:11 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0298 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:10 +0000 ROA not before: Thu 05 Sep 2024 03:31:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151933 IP address blocks: 157.66.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925fe-1c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:92:fd:a5:32:b2:66:7f:2d:92:ea:b5:5a:ed: e2:3b:11:77:17:32:ef:5e:4c:54:5e:e4:06:af:05: ba:b6:17:67:79:01:72:21:86:6f:58:78:07:ac:d5: 6e:85:56:f4:b9:3e:6e:1f:b3:f4:c9:7f:71:f2:ed: b7:4b:c9:68:82:99:f7:e8:ed:34:c8:87:ac:74:20: 0b:76:d7:09:2d:29:b0:45:06:20:01:d9:ba:1f:db: 91:30:18:4c:0c:bd:7e:db:7e:24:e0:72:f7:7e:21: 96:82:18:5b:97:45:3c:eb:60:e1:79:b1:76:1d:05: 63:c4:5e:33:6a:fe:b2:1d:f0:67:a4:06:04:2f:b6: 54:94:54:c7:86:2c:0c:39:b4:c0:0d:fd:96:3f:5f: f1:af:3f:ac:52:0f:80:8c:59:3d:e2:68:63:48:d8: 60:f4:a1:3a:d7:f8:a0:a2:a7:3e:a2:bd:60:cd:63: 87:f8:2d:00:e0:43:7b:8b:c7:91:c6:34:7c:6c:3f: 82:57:50:d1:9e:88:71:ad:cc:9b:b0:28:80:c8:3b: a3:f7:bf:44:3c:95:c3:1e:bb:16:7e:32:b7:34:2a: 98:09:46:44:0d:19:c2:f1:b0:73:06:5b:56:0c:4e: d3:cf:12:55:75:68:88:ba:02:e6:27:f1:05:f1:e6: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EA:4C:3B:0B:07:27:46:0C:C7:B3:3C:BC:CB:A2:56:6C:4B:AD:11 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.224.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:e0:70:0b:9d:c4:40:bc:b1:90:ed:b0:ee:29:8c:8a:c1:55: 06:58:13:1a:bc:f0:c1:dc:1d:8c:9a:51:dd:19:5b:22:49:90: dd:37:56:9e:80:b8:93:87:8c:a9:1b:86:bb:a8:53:be:d2:46: 84:9b:3b:98:c1:cb:c7:7a:fb:51:74:a1:34:28:55:c5:e9:63: 01:a5:30:c9:f2:e7:07:e9:61:28:f2:01:04:78:b8:fb:d0:1f: ce:42:e0:72:55:90:00:4b:71:b3:c2:47:72:30:8e:44:f1:79: 9c:15:5a:8f:51:42:41:a4:7f:40:11:68:33:0f:0a:03:92:ae: b5:3b:a4:67:3c:b4:34:2b:33:89:b2:05:73:fe:a5:5f:ef:f6: 3c:ec:83:15:1e:a1:82:ff:a8:63:ff:c4:76:2c:0d:82:f1:c5: ec:0e:33:44:53:50:b0:66:12:98:07:f1:bc:60:58:9e:c6:15: 21:af:48:55:5e:63:95:b0:ee:fb:75:c0:ad:5a:b1:eb:9a:4f: 01:bf:91:8d:e8:3e:2c:98:5d:5c:a3:05:6f:c8:15:59:64:04: f9:9e:c3:74:7d:46:42:15:9f:63:56:e9:02:7c:84:41:df:1c: 54:0d:b0:6f:fb:f6:f2:79:32:3b:79:a6:54:13:76:28:94:25: 28:73:3d:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmZS0xYzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JL9pTKyZn8tkuq1Wu3iOxF3FzLvXkxUXuQGrwW6thdneQFyIYZvWHgHrNVu hVb0uT5uH7P0yX9x8u23S8logpn36O00yIesdCALdtcJLSmwRQYgAdm6H9uRMBhM DL1+234k4HL3fiGWghhbl0U862DhebF2HQVjxF4zav6yHfBnpAYEL7ZUlFTHhiwM ObTADf2WP1/xrz+sUg+AjFk94mhjSNhg9KE61/igoqc+or1gzWOH+C0A4EN7i8eR xjR8bD+CV1DRnohxrcybsCiAyDuj979EPJXDHrsWfjK3NCqYCUZEDRnC8bBzBltW DE7TzxJVdWiIugLmJ/EF8eZ4YQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGrqTDsL BydGDMezPLzLolZsS60RMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvODVFRThGMUUx MEZGMTFFRkI4NjNENTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQuAwDQYJKoZIhvcNAQELBQADggEBAIzgcAudxEC8sZDt sO4pjIrBVQZYExq88MHcHYyaUd0ZWyJJkN03Vp6AuJOHjKkbhruoU77SRoSbO5jB y8d6+1F0oTQoVcXpYwGlMMny5wfpYSjyAQR4uPvQH85C4HJVkABLcbPCR3IwjkTx eZwVWo9RQkGkf0ARaDMPCgOSrrU7pGc8tDQrM4myBXP+pV/v9jzsgxUeoYL/qGP/ xHYsDYLxxewOM0RTULBmEpgH8bxgWJ7GFSGvSFVeY5Ww7vt1wK1aseuaTwG/kY3o PiyYXVyjBW/IFVlkBPmew3R9RkIVn2NW6QJ8hEHfHFQNsG/79vJ5Mjt5plQTdiiU JShzPYQ= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:02 2024 by rpki-client on console-fra.rpki-client.org