$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa File: E9A9DFEAEB7F11EEB477F078C4F9AE02.roa (raw, json) Hash identifier: ff8DeY2yCdJy9t1CHwavzJWE5QJgGM8tpYuaOIiZlCo= Subject key identifier: 54:3E:02:46:C2:0B:DD:10:D3:D8:60:A7:4C:35:E9:51:3B:EA:02:97 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 028D Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:59 +0000 ROA not before: Thu 05 Sep 2024 03:30:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151863 IP address blocks: 157.20.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925f2-d8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:be:eb:ee:6e:ba:2c:04:4c:20:56:ae:76: 6c:b6:71:6a:92:57:83:5a:44:a4:86:f3:1f:54:ca: 62:ca:3f:8f:3b:84:3b:77:c1:1f:80:40:88:68:ae: 86:10:43:d5:32:ca:5e:3f:bb:4b:80:7c:2e:9d:20: 77:dd:eb:12:ce:7d:e9:10:19:f8:f0:2d:02:46:58: 2f:06:2f:72:1e:69:fb:40:2d:cd:ff:e5:b5:2f:a0: 3c:df:69:2b:15:3f:0a:cf:cd:86:e5:b2:89:10:c4: 89:e9:88:09:46:3e:a4:dd:ad:3c:03:8b:40:59:dd: f7:c4:a6:20:45:a6:96:70:24:41:1a:59:0c:f3:c3: d3:a8:a2:70:71:83:c5:87:47:a8:6f:75:ec:9c:de: a3:e6:f0:fa:a7:81:60:54:a0:c6:fb:fc:f6:c5:c9: a3:ab:ef:77:ff:6c:0e:e3:82:2e:52:9c:9f:de:a1: b7:1c:03:7a:f3:15:db:44:05:f8:6c:ed:0e:1d:c9: 47:54:44:06:09:9d:98:0f:1c:7b:29:16:d0:de:78: 62:39:2f:0a:4f:6b:d2:4b:51:ff:ad:29:63:bb:b0: be:62:39:58:b7:47:43:0f:ad:53:0e:b5:33:c6:0a: 29:f8:5a:06:81:17:ff:86:fc:09:32:76:fc:40:56: 17:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3E:02:46:C2:0B:DD:10:D3:D8:60:A7:4C:35:E9:51:3B:EA:02:97 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.58.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:cb:b1:04:73:d0:8e:ff:4a:a0:f6:68:20:6d:4b:5c:cf:d0: 3d:cc:e4:f6:f9:36:f2:d9:32:35:63:34:9b:12:ac:15:0e:34: 55:f2:42:e5:17:23:36:30:3a:c4:bc:ec:c5:c6:2a:5b:2f:1a: 7d:45:a7:92:ca:fb:a3:38:6c:28:be:78:b8:14:aa:2d:de:97: ba:d1:16:79:d8:55:28:35:58:32:5c:f3:b6:93:d6:e4:e4:44: 6f:1b:2a:2e:5b:17:e5:fd:5f:b3:26:18:1a:7a:85:23:2b:a8: 5f:d5:ca:bb:19:ec:3f:54:03:13:63:36:ae:bf:06:99:f1:ed: 39:81:91:ac:10:31:42:f0:0f:8a:1f:47:a6:11:ff:0c:42:be: 0d:87:f5:72:be:d7:e4:f9:1a:f2:15:ee:95:df:72:ee:1f:e7: de:c1:10:2b:ee:e6:55:3c:55:f7:2a:39:c5:99:02:15:9b:a2: 32:fd:80:83:28:00:a0:eb:e6:88:ad:ad:63:77:4c:a3:04:b2: c4:16:cb:68:db:45:c4:60:a7:7c:8c:b0:81:69:6b:d7:88:d5: b8:8b:10:a3:95:9e:fd:2f:91:e5:a2:96:23:38:40:de:b5:f7: b8:fc:cf:1a:d9:58:51:7c:1f:bf:a2:ec:5d:86:61:24:0a:00: e3:02:f2:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVmMi1kOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAG+6+5uuiwETCBWrnZstnFqkleDWkSkhvMfVMpiyj+PO4Q7d8EfgECIaK6G EEPVMspeP7tLgHwunSB33esSzn3pEBn48C0CRlgvBi9yHmn7QC3N/+W1L6A832kr FT8Kz82G5bKJEMSJ6YgJRj6k3a08A4tAWd33xKYgRaaWcCRBGlkM88PTqKJwcYPF h0eob3XsnN6j5vD6p4FgVKDG+/z2xcmjq+93/2wO44IuUpyf3qG3HAN68xXbRAX4 bO0OHclHVEQGCZ2YDxx7KRbQ3nhiOS8KT2vSS1H/rSlju7C+YjlYt0dDD61TDrUz xgop+FoGgRf/hvwJMnb8QFYXrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQ+AkbC C90Q09hgp0w16VE76gKXMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRTlBOURGRUFF QjdGMTFFRUI0NzdGMDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFDowDQYJKoZIhvcNAQELBQADggEBAJ7LsQRz0I7/SqD2 aCBtS1zP0D3M5Pb5NvLZMjVjNJsSrBUONFXyQuUXIzYwOsS87MXGKlsvGn1Fp5LK +6M4bCi+eLgUqi3el7rRFnnYVSg1WDJc87aT1uTkRG8bKi5bF+X9X7MmGBp6hSMr qF/VyrsZ7D9UAxNjNq6/Bpnx7TmBkawQMULwD4ofR6YR/wxCvg2H9XK+1+T5GvIV 7pXfcu4f597BECvu5lU8VfcqOcWZAhWbojL9gIMoAKDr5oitrWN3TKMEssQWy2jb RcRgp3yMsIFpa9eI1biLEKOVnv0vkeWiliM4QN6197j8zxrZWFF8H7+i7F2GYSQK AOMC8k0= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org