$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B979C7CCF6D811EE99425F2EC4F9AE02.roa File: B979C7CCF6D811EE99425F2EC4F9AE02.roa (raw, json) Hash identifier: qnd/uNDggR56oLYl9kkXsvM7g8yFhK736MV88PiiH9c= Subject key identifier: DB:E6:E7:2D:C6:E2:DD:E9:22:C2:42:3F:DE:C9:B6:37:BC:96:41:0F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0290 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B979C7CCF6D811EE99425F2EC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:01 +0000 ROA not before: Thu 05 Sep 2024 03:31:01 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151903 IP address blocks: 157.15.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:01 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f5-40f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:69:1e:bd:08:6f:d1:70:9b:78:05:c5:4b:72: 24:f1:0e:2a:db:24:d0:2e:cb:e8:52:d4:b1:ea:90: 1a:18:8f:5b:02:72:e5:21:b9:62:61:f0:ef:d5:54: 62:14:b4:66:f3:d2:71:f5:2f:46:ca:86:27:f2:f1: 9e:8d:c7:7c:72:9a:dd:43:01:15:c2:4f:3f:b9:ff: d6:45:bf:66:5c:17:de:97:7d:94:43:74:d5:42:09: c7:76:34:33:7a:de:ba:1b:19:9e:16:5b:8f:2a:ce: bf:36:ac:6d:00:88:6d:16:d8:64:18:94:a5:94:9b: ae:18:e1:9b:4f:19:57:81:e4:ef:fc:84:d5:01:84: fe:33:b5:35:c9:4e:2b:69:5b:ef:7e:a1:c5:86:89: 83:73:5b:c2:78:81:89:32:1d:1b:93:da:b3:e7:2c: 26:16:1a:3b:db:52:7b:cb:98:36:4c:63:5b:c8:d4: 44:6a:c1:ee:82:c0:0d:9f:c6:51:88:75:9b:64:92: ce:43:cb:cc:42:83:d6:85:d7:35:50:fb:6b:53:60: ce:72:96:74:46:c1:0f:43:d0:d2:19:16:f6:5d:b3: 9a:e1:7c:01:cc:aa:20:a8:a7:3c:02:56:af:37:f7: f2:e3:97:fc:9a:59:b0:28:83:c8:96:ef:3e:f0:f1: 55:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E6:E7:2D:C6:E2:DD:E9:22:C2:42:3F:DE:C9:B6:37:BC:96:41:0F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B979C7CCF6D811EE99425F2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.14.0/23 Signature Algorithm: sha256WithRSAEncryption 44:35:31:c5:fb:69:cd:e8:33:5c:78:1d:bf:a1:c5:ec:c0:bf: ab:b8:30:a8:9a:d7:93:43:dd:c3:53:64:33:5a:a7:04:58:0a: b4:ba:39:be:25:6c:d7:b1:90:8d:28:5e:da:38:a4:2a:c8:65: d8:ab:b5:b3:9c:e4:61:c4:d2:18:8f:95:02:1e:c3:81:4a:ae: 2e:0a:3d:75:f6:c7:ce:7a:cf:fb:47:ef:22:7c:04:c8:2e:f9: 49:49:7d:fc:fc:26:77:ab:97:18:e5:85:31:b5:d4:b7:1b:9d: 46:1f:87:13:02:5c:cf:85:42:fa:6b:07:d7:a5:79:09:24:57: e9:f8:77:82:a9:bb:3f:14:1f:33:2f:d1:3d:f9:d0:f6:c2:dd: 8f:84:b3:18:2a:ba:3d:46:18:b0:88:d3:52:77:dd:db:a7:58: 54:8e:52:51:61:20:c3:0b:ec:27:85:34:aa:0e:0a:e0:4b:34: 5d:33:0e:07:02:30:8b:80:e7:6a:c3:83:e0:21:c1:d2:30:12: 1b:d1:cd:1b:27:d5:6d:6e:06:0e:43:0c:43:d5:d5:d0:78:21: 30:cf:bb:4a:75:4b:1a:84:c8:42:c5:7f:54:d5:23:6a:ef:00: 62:b8:99:af:2e:fe:7c:ff:7c:4e:4f:70:a1:9a:e3:fd:cf:84: fb:3a:5a:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTAxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmNS00MGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymkevQhv0XCbeAXFS3Ik8Q4q2yTQLsvoUtSx6pAaGI9bAnLlIbliYfDv1VRi FLRm89Jx9S9GyoYn8vGejcd8cprdQwEVwk8/uf/WRb9mXBfel32UQ3TVQgnHdjQz et66GxmeFluPKs6/NqxtAIhtFthkGJSllJuuGOGbTxlXgeTv/ITVAYT+M7U1yU4r aVvvfqHFhomDc1vCeIGJMh0bk9qz5ywmFho721J7y5g2TGNbyNREasHugsANn8ZR iHWbZJLOQ8vMQoPWhdc1UPtrU2DOcpZ0RsEPQ9DSGRb2XbOa4XwBzKogqKc8Alav N/fy45f8mlmwKIPIlu8+8PFViwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNvm5y3G 4t3pIsJCP97Jtje8lkEPMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQjk3OUM3Q0NG NkQ4MTFFRTk5NDI1RjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdDw4wDQYJKoZIhvcNAQELBQADggEBAEQ1McX7ac3oM1x4 Hb+hxezAv6u4MKia15ND3cNTZDNapwRYCrS6Ob4lbNexkI0oXto4pCrIZdirtbOc 5GHE0hiPlQIew4FKri4KPXX2x856z/tH7yJ8BMgu+UlJffz8JnerlxjlhTG11Lcb nUYfhxMCXM+FQvprB9eleQkkV+n4d4Kpuz8UHzMv0T350PbC3Y+Esxgquj1GGLCI 01J33dunWFSOUlFhIMML7CeFNKoOCuBLNF0zDgcCMIuA52rDg+AhwdIwEhvRzRsn 1W1uBg5DDEPV1dB4ITDPu0p1SxqEyELFf1TVI2rvAGK4ma8u/nz/fE5PcKGa4/3P hPs6WtI= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org