$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa File: CE76D260A87511EF9905FE0AC4F9AE02.roa (raw, json) Hash identifier: Qha5d3cCLrYPRq8vlOFQvyE0m9WLZNVgIKC2wgstLy8= Subject key identifier: 0A:18:15:BB:12:C8:B1:84:51:2A:5B:E3:07:21:7F:6A:32:BA:44:5A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 042F Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa Signing time: Fri 22 Nov 2024 03:02:45 +0000 ROA not before: Fri 22 Nov 2024 03:02:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150820 IP address blocks: 157.15.38.0/23 maxlen: 23 157.20.62.0/23 maxlen: 23 157.66.252.0/23 maxlen: 23 160.22.172.0/23 maxlen: 23 160.22.174.0/23 maxlen: 23 160.30.190.0/23 maxlen: 23 160.187.120.0/23 maxlen: 23 160.191.176.0/23 maxlen: 23 160.191.240.0/23 maxlen: 23 160.250.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 22 03:02:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=673ff455-39de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8b:27:f6:2d:d6:a7:bf:f1:d1:8e:90:3a:d4: ec:25:fc:27:85:51:8d:3a:78:cd:b5:9c:30:69:c0: ce:f2:19:5c:4f:0e:a5:76:da:21:87:0a:9f:c3:94: f5:06:a5:96:04:c3:c2:f2:3e:4f:10:ea:77:60:99: a2:7e:5f:7a:db:e5:52:ae:49:9f:35:99:2f:e5:7a: 39:74:9d:08:fc:72:91:c1:71:89:28:60:a0:c1:98: 91:3c:5e:8a:c5:04:59:d3:82:d7:3f:b0:89:5a:6e: 05:e1:77:ed:21:6e:98:11:0a:30:f0:a9:af:cd:81: f2:dd:25:07:3c:5f:de:7e:87:87:1a:29:68:13:49: 11:0b:f6:e3:83:fa:4e:56:8b:e0:72:42:28:7f:b4: bf:60:d1:1a:c2:06:4e:53:59:0a:f3:85:98:06:35: aa:bb:33:5b:3e:b4:3c:95:a9:ed:e2:20:32:d6:34: b1:fc:a7:5b:39:bc:2d:f8:42:6d:25:2a:4a:41:53: ee:53:b0:08:da:89:01:c2:61:03:83:04:53:41:3a: 7f:56:64:bb:3d:49:f7:54:dc:50:4e:4e:eb:cc:17: 83:9d:05:42:fd:91:66:e0:0f:dd:a9:d3:ea:36:d2: e5:2c:fb:1d:51:6a:59:43:24:cd:16:f4:ef:18:9c: 62:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:18:15:BB:12:C8:B1:84:51:2A:5B:E3:07:21:7F:6A:32:BA:44:5A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.38.0/23 157.20.62.0/23 157.66.252.0/23 160.22.172.0/22 160.30.190.0/23 160.187.120.0/23 160.191.176.0/23 160.191.240.0/23 160.250.46.0/23 Signature Algorithm: sha256WithRSAEncryption 87:43:b8:ab:19:1c:77:f6:3c:87:66:19:99:67:21:66:32:3e: 29:5d:cf:85:8a:92:83:4b:f2:4e:35:9d:5e:c4:a2:4b:ac:ca: 59:97:cc:70:64:78:e4:81:1d:a6:46:03:16:1a:71:57:9d:70: 36:94:d3:fd:bc:9e:d4:20:10:90:bc:b0:54:8e:09:36:b3:e0: 28:4e:37:11:92:ba:81:68:04:16:b8:11:78:b9:77:d0:86:96: fb:e8:c1:67:d7:9e:6c:88:2e:9a:2f:16:0f:9c:c3:ab:8e:6f: f9:a1:98:3f:75:52:ed:28:fe:f5:2f:37:f7:97:65:5b:46:c1: d5:f6:0c:62:ef:27:47:a1:3b:3e:74:f3:d2:c1:9b:99:32:eb: 07:84:62:61:3a:4b:fa:3f:55:e9:7a:ea:50:a4:37:b7:f1:59: d9:4a:8c:97:19:b6:34:4b:f6:6b:ac:e8:0a:47:58:1c:c5:0a: 66:52:c7:8d:85:35:bd:b1:c7:55:ed:8c:58:19:a3:b1:e8:2a: 84:14:3f:7d:ec:fb:ff:22:f7:67:8d:75:4d:5a:76:76:f6:e3: c5:73:9d:26:6d:66:62:42:f8:95:a0:e8:07:5e:1c:70:f2:1b: 69:93:33:46:34:6a:5f:d1:3f:2c:a0:ce:03:46:1c:c9:cf:94: 14:50:2a:8d -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMTIyMDMwMjQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNmZjQ1NS0zOWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzosn9i3Wp7/x0Y6QOtTsJfwnhVGNOnjNtZwwacDO8hlcTw6ldtohhwqfw5T1 BqWWBMPC8j5PEOp3YJmifl962+VSrkmfNZkv5Xo5dJ0I/HKRwXGJKGCgwZiRPF6K xQRZ04LXP7CJWm4F4XftIW6YEQow8KmvzYHy3SUHPF/efoeHGiloE0kRC/bjg/pO VovgckIof7S/YNEawgZOU1kK84WYBjWquzNbPrQ8lant4iAy1jSx/KdbObwt+EJt JSpKQVPuU7AI2okBwmEDgwRTQTp/VmS7PUn3VNxQTk7rzBeDnQVC/ZFm4A/dqdPq NtLlLPsdUWpZQyTNFvTvGJxiCwIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFAoYFbsS yLGEUSpb4wchf2oyukRaMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQ0U3NkQyNjBB ODc1MTFFRjk5MDVGRTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MDwEAgABMDYDBAGdDyYDBAGdFD4DBAGdQvwDBAKgFqwDBAGgHr4DBAGgu3gD BAGgv7ADBAGgv/ADBAGg+i4wDQYJKoZIhvcNAQELBQADggEBAIdDuKsZHHf2PIdm GZlnIWYyPildz4WKkoNL8k41nV7EokusylmXzHBkeOSBHaZGAxYacVedcDaU0/28 ntQgEJC8sFSOCTaz4ChONxGSuoFoBBa4EXi5d9CGlvvowWfXnmyILpovFg+cw6uO b/mhmD91Uu0o/vUvN/eXZVtGwdX2DGLvJ0ehOz5089LBm5ky6weEYmE6S/o/Vel6 6lCkN7fxWdlKjJcZtjRL9mus6ApHWBzFCmZSx42FNb2xx1XtjFgZo7HoKoQUP33s +/8i92eNdU1adnb248VznSZtZmJC+JWg6AdeHHDyG2mTM0Y0al/RPyygzgNGHMnP lBRQKo0= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:14 2024 by rpki-client on console-fra.rpki-client.org