$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa File: D3204D78E81811EEACBDBB30C4F9AE02.roa (raw, json) Hash identifier: ckyLPLCnkqKsoyMQUR47bbVfOE4A14msNgiWOAiCKvk= Subject key identifier: D0:7F:94:F5:74:5C:9B:34:3E:35:46:CF:0F:25:A6:08:27:9D:00:30 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0292 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:05 +0000 ROA not before: Thu 05 Sep 2024 03:31:05 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151911 IP address blocks: 157.20.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:05 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f8-d4c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:7f:33:6e:26:50:4f:45:d1:bf:e6:28:b2: 8b:32:0f:09:03:a0:78:ac:5c:f5:f6:8b:30:67:ef: b4:ae:0b:88:6d:2b:a9:18:76:90:e3:42:e2:ab:3d: ea:b2:66:ee:e8:10:09:fc:cb:a1:a5:a7:94:f3:72: b3:5e:62:82:aa:64:40:51:47:68:85:58:a6:ea:3d: d9:62:30:4f:1c:12:9c:24:ec:ee:01:74:48:dd:d7: 37:89:93:01:17:8d:04:ab:af:a7:7b:86:f5:0c:08: cc:c5:4c:1a:61:69:39:be:03:9a:60:f6:ce:a9:71: 91:89:d0:da:92:4d:1e:44:37:c6:eb:de:05:31:3e: 2a:da:4c:62:40:0e:45:e0:ab:02:b9:7a:29:3a:4c: f0:0a:b5:21:48:24:16:3e:c2:77:39:82:f3:60:f6: 9c:f5:9a:71:ec:5e:90:da:fc:d9:98:4d:89:44:76: 7d:59:71:3d:05:a2:2f:08:b3:eb:be:4e:8d:45:3b: b7:97:c0:77:fb:05:da:f1:3c:74:39:d9:e6:1c:94: b8:7d:5b:e2:f1:3e:62:84:37:9b:83:9d:63:60:af: 90:76:99:e1:1e:33:ef:d3:dc:1f:81:78:8e:e7:35: 9f:c6:7c:55:76:ba:bc:b7:60:41:7d:97:1c:95:06: d7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7F:94:F5:74:5C:9B:34:3E:35:46:CF:0F:25:A6:08:27:9D:00:30 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.200.0/23 Signature Algorithm: sha256WithRSAEncryption 74:15:f7:be:f0:de:68:07:b0:89:08:27:e4:80:65:dd:24:e6: 66:0d:37:12:4c:d6:77:fc:3d:cc:5b:6d:42:da:15:59:04:70: 14:ea:09:07:60:bc:41:f8:ab:43:7d:a0:02:78:9b:b1:08:5d: 91:d4:f9:fb:9b:28:d4:82:ce:92:31:e7:63:a6:ff:fd:99:94: ac:23:34:83:ab:a7:f0:1c:11:be:42:d1:fd:d4:fb:7f:30:38: 20:e5:62:74:13:cc:87:66:08:44:b0:e8:6a:e3:a4:1f:07:5d: c1:89:71:1d:27:30:11:86:b3:16:6b:ca:33:7c:13:a4:90:5c: c5:29:2b:66:46:58:ed:ed:1a:26:7a:c5:36:e4:75:f8:01:ee: 50:38:10:31:5c:ae:2d:35:04:39:29:2b:1f:ea:0f:3b:57:b6: 92:13:3d:91:2a:ee:03:90:2d:46:20:e1:5a:e8:38:d1:7e:af: 3d:83:8f:b0:9a:f8:48:cd:a9:0f:54:31:37:49:c5:2e:dd:84: 8c:e4:31:e2:fa:4a:73:ad:76:34:8b:dd:bd:f0:4a:ef:78:87: 83:0e:01:b4:7f:a1:d2:d4:98:9a:91:ae:83:f0:ea:73:16:53: ca:25:ee:46:ab:c6:8c:8c:14:bc:14:62:0f:d7:cb:37:b9:10: fb:83:ea:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTA1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmOC1kNGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i9/M24mUE9F0b/mKLKLMg8JA6B4rFz19oswZ++0rguIbSupGHaQ40Liqz3q smbu6BAJ/MuhpaeU83KzXmKCqmRAUUdohVim6j3ZYjBPHBKcJOzuAXRI3dc3iZMB F40Eq6+ne4b1DAjMxUwaYWk5vgOaYPbOqXGRidDakk0eRDfG694FMT4q2kxiQA5F 4KsCuXopOkzwCrUhSCQWPsJ3OYLzYPac9Zpx7F6Q2vzZmE2JRHZ9WXE9BaIvCLPr vk6NRTu3l8B3+wXa8Tx0OdnmHJS4fVvi8T5ihDebg51jYK+QdpnhHjPv09wfgXiO 5zWfxnxVdrq8t2BBfZcclQbXSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNB/lPV0 XJs0PjVGzw8lpggnnQAwMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDMyMDRENzhF ODE4MTFFRUFDQkRCQjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMgwDQYJKoZIhvcNAQELBQADggEBAHQV977w3mgHsIkI J+SAZd0k5mYNNxJM1nf8PcxbbULaFVkEcBTqCQdgvEH4q0N9oAJ4m7EIXZHU+fub KNSCzpIx52Om//2ZlKwjNIOrp/AcEb5C0f3U+38wOCDlYnQTzIdmCESw6GrjpB8H XcGJcR0nMBGGsxZryjN8E6SQXMUpK2ZGWO3tGiZ6xTbkdfgB7lA4EDFcri01BDkp Kx/qDztXtpITPZEq7gOQLUYg4VroONF+rz2Dj7Ca+EjNqQ9UMTdJxS7dhIzkMeL6 SnOtdjSL3b3wSu94h4MOAbR/odLUmJqRroPw6nMWU8ol7karxoyMFLwUYg/Xyze5 EPuD6oI= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org