$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa File: E9A9DFEAEB7F11EEB477F078C4F9AE02.roa (raw, json) Hash identifier: yHOpcb4tWzYt/0LmZSRZepRFTlUXj+mKhV+Slvc+xSk= Subject key identifier: E9:0D:92:68:54:B9:B1:E1:91:6F:70:37:02:49:50:C3:D3:6A:3E:3C Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: A0 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa Signing time: Tue 26 Mar 2024 14:48:31 +0000 ROA not before: Tue 26 Mar 2024 14:48:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151863 IP address blocks: 157.20.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Mar 26 14:48:31 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6602e03f-f336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:de:1b:bd:8b:70:8b:83:83:12:ac:8e:73:e1: 24:8f:d8:74:5f:e9:08:14:b5:a8:dc:cd:17:ce:82: 3a:1a:aa:e9:ee:0a:ba:eb:e3:13:29:6e:c3:88:17: 58:8a:36:c1:16:9c:0a:19:76:e8:62:02:88:b3:16: e0:2c:80:4a:56:2d:f4:dc:a3:78:3a:71:f0:7e:89: 71:0a:68:5b:0f:54:49:a0:6a:a1:62:ea:a1:ff:cf: bd:e6:96:75:87:6a:b5:e9:9e:c9:69:c3:07:9d:49: 67:0f:a1:1a:ad:de:ec:08:85:fc:a1:bd:45:06:15: ad:12:9c:1f:5c:86:c7:b1:31:31:11:56:89:75:eb: 25:10:59:eb:e9:0d:f0:30:06:aa:b6:b6:12:c8:11: 6b:98:03:8b:a5:8c:8b:18:11:ce:ec:7f:ab:0f:9b: d0:41:0f:3c:e2:90:78:52:ba:f8:bb:24:8d:f4:53: 4e:3e:6c:c4:ef:33:a9:6e:38:1a:a5:f5:09:6b:ff: ed:fc:07:3a:0d:e5:f9:a0:66:ab:28:9c:bf:04:20: 0a:18:52:7b:63:67:0e:5f:bc:84:bc:35:53:4b:f4: 92:75:a4:62:4a:88:cf:fe:fd:e8:f8:ae:64:64:c7: 92:e3:70:4e:cc:02:c4:40:4c:5c:a1:e9:30:ca:e5: 3c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0D:92:68:54:B9:B1:E1:91:6F:70:37:02:49:50:C3:D3:6A:3E:3C X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.58.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:bf:f3:97:71:5e:a6:8c:42:d6:06:08:9c:89:24:02:48:f0: 4e:1f:93:b3:84:00:28:f6:cb:2f:cd:62:07:42:97:40:d8:5a: ea:6d:5d:14:47:ec:fc:51:df:e1:f2:d4:e3:c7:d7:82:6f:6a: bb:9e:93:2b:72:a4:90:e2:c5:d9:a1:a8:8b:49:fc:0c:8d:c2: 4e:01:5f:4c:0c:ae:97:ed:58:a4:ac:13:d1:a3:55:9e:45:88: 30:58:37:18:aa:9a:72:ba:58:28:92:c4:0d:2d:3a:f5:39:b0: 3b:e5:05:c5:75:d2:92:9c:e1:41:93:14:de:9d:39:47:6a:6d: 3d:03:d2:49:06:41:c5:91:4d:6e:cc:b2:ea:80:dc:cc:ce:de: 4f:9c:7e:fa:84:fa:82:6d:80:9f:78:5d:28:93:ac:85:d7:5d: 92:2f:bf:42:c2:49:3d:63:14:3b:0a:66:38:f2:07:ca:dd:79: c2:0a:9b:06:70:36:52:a6:95:a6:41:cc:ee:c7:97:a0:d4:68: bc:36:27:c9:37:f9:e7:7e:70:54:22:0a:e6:51:b6:77:e7:20: f3:8a:79:17:6a:31:a4:0c:b9:8d:18:14:20:94:20:66:66:6c: 27:bf:6e:c4:31:d2:c3:f3:e3:c6:92:6a:55:60:05:8d:13:cd: 40:b3:de:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwMzI2MTQ0ODMxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAyZTAzZi1mMzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt4bvYtwi4ODEqyOc+Ekj9h0X+kIFLWo3M0XzoI6Gqrp7gq66+MTKW7DiBdY ijbBFpwKGXboYgKIsxbgLIBKVi303KN4OnHwfolxCmhbD1RJoGqhYuqh/8+95pZ1 h2q16Z7JacMHnUlnD6Eard7sCIX8ob1FBhWtEpwfXIbHsTExEVaJdeslEFnr6Q3w MAaqtrYSyBFrmAOLpYyLGBHO7H+rD5vQQQ884pB4Urr4uySN9FNOPmzE7zOpbjga pfUJa//t/Ac6DeX5oGarKJy/BCAKGFJ7Y2cOX7yEvDVTS/SSdaRiSojP/v3o+K5k ZMeS43BOzALEQExcoekwyuU8eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOkNkmhU ubHhkW9wNwJJUMPTaj48MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRTlBOURGRUFF QjdGMTFFRUI0NzdGMDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFDowDQYJKoZIhvcNAQELBQADggEBAJy/85dxXqaMQtYG CJyJJAJI8E4fk7OEACj2yy/NYgdCl0DYWuptXRRH7PxR3+Hy1OPH14Jvaruekyty pJDixdmhqItJ/AyNwk4BX0wMrpftWKSsE9GjVZ5FiDBYNxiqmnK6WCiSxA0tOvU5 sDvlBcV10pKc4UGTFN6dOUdqbT0D0kkGQcWRTW7MsuqA3MzO3k+cfvqE+oJtgJ94 XSiTrIXXXZIvv0LCST1jFDsKZjjyB8rdecIKmwZwNlKmlaZBzO7Hl6DUaLw2J8k3 +ed+cFQiCuZRtnfnIPOKeRdqMaQMuY0YFCCUIGZmbCe/bsQx0sPz48aSalVgBY0T zUCz3lc= -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org