$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa File: EED3285ADDB011EE9A15F138C4F9AE02.roa (raw, json) Hash identifier: kHdJxCDOvRcYhHCbNNzBEobslAcyLcK8dQ/jMopkj0E= Subject key identifier: 11:07:F0:01:F6:14:59:07:F6:95:F1:AD:C3:62:17:34:2D:F1:21:32 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0281 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:48 +0000 ROA not before: Thu 05 Sep 2024 03:30:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135983 IP address blocks: 157.15.86.0/23 maxlen: 23 157.66.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925e8-2d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:a5:47:13:c1:4f:4b:88:4a:fc:12:60:d8: 03:61:46:a2:ca:bf:a0:22:b5:ca:f3:25:5a:59:7d: 92:8e:e5:b2:e7:d2:52:13:87:59:5b:df:62:14:2a: ae:af:86:15:15:63:f0:65:bd:25:eb:c3:89:a7:c0: 2f:95:73:13:0f:6b:93:26:98:e0:90:1f:07:3a:6e: 3b:10:b4:c9:01:ce:c5:42:ee:46:65:29:86:5a:91: 31:b8:c4:50:48:62:a2:30:3b:bd:56:7c:46:07:03: 9c:6b:ac:ce:a5:ba:24:c3:48:be:64:cb:9d:a0:fc: 9d:27:e1:b6:ca:56:a6:13:37:82:90:a5:78:46:5f: 88:fd:aa:00:42:8a:33:45:60:a7:04:26:70:82:5c: 10:43:1c:b6:e8:3a:f9:f5:ea:d8:c2:51:05:f7:d9: 64:08:62:5e:4f:2d:30:bd:f5:4b:08:23:8c:9d:3a: 45:8b:5a:7a:c8:cf:87:1b:76:2e:6d:72:60:10:a8: af:37:65:73:a7:6c:ac:b2:6f:1d:b9:50:90:67:d7: 6b:66:11:d3:c8:93:52:ca:9c:1d:60:5e:20:e3:d9: 65:fa:65:c4:a8:06:71:d8:f1:30:2c:4e:86:b3:bf: 6c:ca:2a:16:bc:62:fd:98:af:f9:10:6e:bf:04:7e: 2d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:07:F0:01:F6:14:59:07:F6:95:F1:AD:C3:62:17:34:2D:F1:21:32 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.86.0/23 157.66.80.0/23 Signature Algorithm: sha256WithRSAEncryption 84:24:eb:54:ef:01:6c:d3:de:99:49:c4:c3:39:ab:c9:2c:b7: 5d:68:b4:c2:64:3a:26:ba:5d:74:23:94:9c:20:4b:47:14:35: ef:8c:df:60:f8:eb:90:8f:26:01:4d:20:22:c2:f8:cd:a1:f5: 67:52:ce:49:9b:87:e4:70:23:ec:9a:90:fa:3c:1e:71:63:44: a2:a6:77:24:8c:3b:d5:01:22:a6:82:49:db:9a:0b:c7:7d:99: 7b:b4:37:98:7b:89:20:ce:65:39:5c:64:0d:4a:de:c7:9f:c9: db:0a:dd:bd:d9:e8:e0:63:95:50:c4:d4:8e:22:19:ca:a6:aa: de:ff:1a:d5:31:84:95:77:f3:84:e7:06:4f:58:61:21:ca:b5: 08:2e:46:be:f5:68:ae:4b:42:1f:e9:dc:37:fb:80:12:c2:ea: 83:8c:c7:5f:7c:41:ea:32:63:51:46:a8:12:46:18:3d:b7:30: 85:44:0b:08:70:06:92:97:f2:ea:b0:6e:e6:7f:ae:03:2c:c9: 0e:79:26:f4:d2:7b:6b:e3:c6:04:c7:53:78:d7:04:bf:67:6d: 88:37:53:69:c2:b9:84:59:92:64:0f:e9:ed:ef:14:68:5f:f2: 0c:d1:99:e1:8d:4e:10:f2:ac:e4:1a:38:39:b8:80:95:c6:77: 79:fc:e7:72 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDQ4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVlOC0yZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eelRxPBT0uISvwSYNgDYUaiyr+gIrXK8yVaWX2SjuWy59JSE4dZW99iFCqu r4YVFWPwZb0l68OJp8AvlXMTD2uTJpjgkB8HOm47ELTJAc7FQu5GZSmGWpExuMRQ SGKiMDu9VnxGBwOca6zOpbokw0i+ZMudoPydJ+G2ylamEzeCkKV4Rl+I/aoAQooz RWCnBCZwglwQQxy26Dr59erYwlEF99lkCGJeTy0wvfVLCCOMnTpFi1p6yM+HG3Yu bXJgEKivN2Vzp2yssm8duVCQZ9drZhHTyJNSypwdYF4g49ll+mXEqAZx2PEwLE6G s79syioWvGL9mK/5EG6/BH4t6wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBEH8AH2 FFkH9pXxrcNiFzQt8SEyMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRUVEMzI4NUFE REIwMTFFRTlBMTVGMTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGdD1YDBAGdQlAwDQYJKoZIhvcNAQELBQADggEBAIQk61Tv AWzT3plJxMM5q8kst11otMJkOia6XXQjlJwgS0cUNe+M32D465CPJgFNICLC+M2h 9WdSzkmbh+RwI+yakPo8HnFjRKKmdySMO9UBIqaCSduaC8d9mXu0N5h7iSDOZTlc ZA1K3sefydsK3b3Z6OBjlVDE1I4iGcqmqt7/GtUxhJV384TnBk9YYSHKtQguRr71 aK5LQh/p3Df7gBLC6oOMx198QeoyY1FGqBJGGD23MIVECwhwBpKX8uqwbuZ/rgMs yQ55JvTSe2vjxgTHU3jXBL9nbYg3U2nCuYRZkmQP6e3vFGhf8gzRmeGNThDyrOQa ODm4gJXGd3n853I= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org