$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa File: 1FFCF508ADF211EE93DC0A12C4F9AE02.roa (raw, json) Hash identifier: 8//d7/RdOnFmwlpCrp0Cvzccfj5fKjb0YYKURUPqYow= Subject key identifier: 4E:9C:2C:24:F7:EC:5D:18:F8:14:BC:CB:48:6A:D9:BF:7C:90:08:4B Certificate issuer: /CN=A91A7F56/serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Certificate serial: 06 Authority key identifier: 9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa Signing time: Tue 09 Jan 2024 07:52:03 +0000 ROA not before: Tue 09 Jan 2024 07:52:03 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140133 IP address blocks: 157.10.78.0/23 maxlen: 23 157.10.78.0/24 maxlen: 24 157.10.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56/serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Validity Not Before: Jan 9 07:52:03 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=659cfb23-0ff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:9a:59:53:9a:6a:88:4b:6f:35:da:0f:15: ee:55:05:f7:52:4d:37:99:ca:c4:06:54:73:d5:29: 2a:75:0a:6b:f8:53:1f:47:0a:21:54:21:17:4b:0b: 06:9d:a8:f1:66:e6:ed:ce:99:e0:41:54:64:df:2d: d2:c8:56:4c:1b:5c:4f:71:95:34:84:b7:09:4b:7c: 22:f1:b8:7e:c7:38:78:9f:33:17:d4:6e:f3:b6:93: 4b:db:9a:85:2d:c1:18:df:e1:3e:6c:65:82:09:af: 7b:83:4e:40:93:62:69:46:4d:bf:2b:0a:6e:ee:08: ab:b3:45:fe:1f:d1:bd:87:56:21:3e:d4:1f:91:ab: 63:58:f9:1d:7b:e8:bb:33:9b:e8:00:c7:a4:15:59: 9c:06:18:01:44:32:ff:58:33:7e:39:8b:a8:2b:80: 67:82:7a:87:a8:db:d4:e4:90:1e:0e:2f:c8:b4:c6: 14:9e:f6:02:c8:cd:a2:e6:e7:f9:6c:8d:df:c7:f4: f8:6c:30:57:21:af:aa:f8:7d:35:84:19:e2:38:f5: f1:a8:6d:fc:39:8c:e0:ed:a9:7b:e3:47:0e:f9:98: 4f:fb:d5:85:7a:7d:28:e9:4c:c0:e4:2a:a2:7b:8f: d2:14:e7:ec:23:1c:5d:22:34:b6:3f:dc:85:b6:23: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9C:2C:24:F7:EC:5D:18:F8:14:BC:CB:48:6A:D9:BF:7C:90:08:4B X509v3 Authority Key Identifier: keyid:9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.78.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:c8:4f:8f:3b:9c:8d:4f:90:4f:b9:d4:2e:ae:d3:ed:93:ce: 28:4c:fc:9d:1d:d0:bd:7c:3f:24:ac:1e:f8:b2:43:10:f4:95: dc:a2:00:f4:ba:63:fd:46:c0:90:b0:84:40:9c:9c:f7:d4:b6: 5c:3e:20:2c:3a:f3:b8:85:0b:50:1b:bf:93:1a:e0:33:83:f8: af:fa:26:fb:e9:e4:45:e7:2a:06:5c:79:25:61:65:e9:bf:4a: 80:05:3c:44:6d:54:8d:fe:b7:8d:00:8a:c7:a4:e6:6a:03:f3: e9:37:0c:42:06:95:7c:34:db:b5:1e:d8:cd:ff:b0:28:4a:5d: 8c:42:46:23:1c:45:41:5d:fd:5d:e1:b1:e0:c0:8a:15:ed:e9: 17:0a:f5:1b:c5:d6:a5:32:e9:7e:76:51:d8:45:5c:31:3c:f1: 54:2a:38:62:91:d9:0d:75:50:8d:37:9a:68:fa:4e:88:a4:4b: 8b:9a:20:94:04:86:a4:d1:7d:cb:e2:c7:4b:97:04:4f:b1:c9: be:46:a6:7e:88:70:55:6b:bb:f5:93:0c:cd:03:ee:64:f0:30: 24:bb:ea:e3:89:b3:9a:1c:f3:9b:81:7e:28:aa:ed:ce:91:99: 1d:22:aa:c6:e2:7a:5a:cf:c8:de:6e:eb:ed:0c:05:72:e6:be: b2:44:c0:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y1NjExMC8GA1UEBRMoOUZCNzQxQjcyOTgwM0M2QjQzMjlCQzNCNDBFNzZFNTJB QkQ4QjlGODAeFw0yNDAxMDkwNzUyMDNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWNmYjIzLTBmZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4vJpZU5pqiEtvNdoPFe5VBfdSTTeZysQGVHPVKSp1Cmv4Ux9HCiFUIRdLCwad qPFm5u3OmeBBVGTfLdLIVkwbXE9xlTSEtwlLfCLxuH7HOHifMxfUbvO2k0vbmoUt wRjf4T5sZYIJr3uDTkCTYmlGTb8rCm7uCKuzRf4f0b2HViE+1B+Rq2NY+R176Lsz m+gAx6QVWZwGGAFEMv9YM345i6grgGeCeoeo29TkkB4OL8i0xhSe9gLIzaLm5/ls jd/H9PhsMFchr6r4fTWEGeI49fGobfw5jODtqXvjRw75mE/71YV6fSjpTMDkKqJ7 j9IU5+wjHF0iNLY/3IW2I2oRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTpwsJPfs XRj4FLzLSGrZv3yQCEswHwYDVR0jBBgwFoAUn7dBtymAPGtDKbw7QOduUqvYufgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjU2Lzk0RDU3MjM2QUND RDExRUU4MTA2OTA1MEM0RjlBRTAyL243ZEJ0eW1BUEd0REtidzdRT2R1VXF2WXVm Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbjdkQnR5bUFQR3RES2J3N1FPZHVVcXZZdWZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85NEQ1NzIzNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi8xRkZDRjUwOEFE RjIxMUVFOTNEQzBBMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KTjANBgkqhkiG9w0BAQsFAAOCAQEAnchPjzucjU+QT7nU Lq7T7ZPOKEz8nR3QvXw/JKwe+LJDEPSV3KIA9Lpj/UbAkLCEQJyc99S2XD4gLDrz uIULUBu/kxrgM4P4r/om++nkRecqBlx5JWFl6b9KgAU8RG1Ujf63jQCKx6TmagPz 6TcMQgaVfDTbtR7Yzf+wKEpdjEJGIxxFQV39XeGx4MCKFe3pFwr1G8XWpTLpfnZR 2EVcMTzxVCo4YpHZDXVQjTeaaPpOiKRLi5oglASGpNF9y+LHS5cET7HJvkamfohw VWu79ZMMzQPuZPAwJLvq44mzmhzzm4F+KKrtzpGZHSKqxuJ6Ws/I3m7r7QwFcua+ skTA6Q== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:03 2024 by rpki-client on console-fra.rpki-client.org