$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa File: 357AE578ACFB11EDA84F9711C4F9AE02.roa (raw, json) Hash identifier: yuB48ztij3OBdx+GOen23whE/mCBxtVIWwhGvDX7z6I= Subject key identifier: CB:0F:33:5C:0F:E7:4B:86:3F:A1:EA:BB:B4:82:B7:CF:DC:FB:F0:15 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: CA Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa Signing time: Tue 05 Sep 2023 04:34:51 +0000 ROA not before: Tue 05 Sep 2023 04:34:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 6718 IP address blocks: 150.107.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:34:51 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f6afeb-f624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ec:33:cc:9d:2f:db:ee:33:3e:ed:e3:bb:5c: 87:23:46:ac:0a:46:bc:32:b6:a2:1a:7a:b2:7a:88: 6e:2f:d6:7d:57:0d:f7:d0:82:1d:03:e5:da:82:f2: 86:8d:a9:0d:5c:2c:30:a3:09:3a:8c:48:9b:87:c0: 52:63:d3:b6:f5:3b:e1:66:4a:a0:5b:d3:50:be:4e: d8:df:ca:d8:37:06:4d:a2:71:f2:0f:a3:dd:4a:36: 2c:73:a9:12:b8:df:e3:23:88:18:fd:ed:ca:a7:03: ed:17:86:77:6b:02:80:8a:a9:39:84:93:dc:ea:94: 36:37:04:97:1c:5c:54:ab:8e:f6:34:50:e5:4b:e2: cc:7e:fa:8e:d7:0f:88:fa:4a:75:41:43:06:f5:9b: 63:dc:f2:be:b8:74:ed:2b:62:14:bd:21:8f:db:a0: fc:4a:a6:25:68:6f:35:10:31:fb:b6:7a:cf:86:88: 79:ac:17:71:39:48:72:9a:4b:95:80:6c:f6:ab:e1: b6:69:fe:7c:12:b5:d8:50:aa:de:4b:7c:c2:70:fe: fb:e2:e6:02:87:71:a0:51:de:7f:a8:1d:47:30:23: 6d:90:34:f1:70:80:6a:50:b7:76:8d:01:71:09:93: 30:f2:40:fa:cf:3c:f7:c5:2a:1f:19:e9:2a:c1:54: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0F:33:5C:0F:E7:4B:86:3F:A1:EA:BB:B4:82:B7:CF:DC:FB:F0:15 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.107.224.0/23 Signature Algorithm: sha256WithRSAEncryption 78:ae:87:fa:7a:4f:86:69:36:91:d7:83:54:40:b0:5e:ee:04: 71:09:4a:3b:36:8c:f8:ab:75:55:41:af:f1:53:37:7d:12:a4: 7e:44:b1:d9:b5:c1:d0:39:73:ab:2c:df:6d:59:51:b1:f6:8a: a6:60:5a:4f:d9:19:82:2e:26:0e:e7:0a:fa:89:38:e6:03:55: fc:a1:14:07:9d:67:0b:17:ba:ed:74:76:9a:88:b7:40:00:53: 3b:df:1c:e0:f9:db:3f:88:4f:40:f3:e8:ed:f9:50:ac:b6:2c: 0c:ec:af:d1:ac:95:bd:23:d2:7c:7a:0b:1c:10:a0:66:68:3d: cb:a8:b5:ae:bc:75:47:8f:bc:45:da:8e:cf:12:57:4a:29:7c: 94:ad:8b:4d:b6:a2:dd:da:a6:5c:5f:be:98:a3:43:32:b4:fe: 26:d5:51:b5:1d:9b:9c:96:fb:00:3b:2e:ce:94:ce:62:a2:03: ea:64:3d:23:ae:fe:c2:64:60:b6:13:82:c2:a0:b1:d9:86:3b: 64:2c:79:11:29:18:b0:9b:19:cf:4c:8e:e9:36:1b:ea:bf:32: 11:f4:a5:71:9c:93:24:61:d7:85:a0:26:fb:56:02:83:c3:13: 90:84:fc:bd:ff:7d:b0:1b:1b:d8:60:f8:38:d6:25:03:71:df: 12:c3:9a:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjMwOTA1MDQzNDUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2YWZlYi1mNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxewzzJ0v2+4zPu3ju1yHI0asCka8MraiGnqyeohuL9Z9Vw330IIdA+XagvKG jakNXCwwowk6jEibh8BSY9O29TvhZkqgW9NQvk7Y38rYNwZNonHyD6PdSjYsc6kS uN/jI4gY/e3KpwPtF4Z3awKAiqk5hJPc6pQ2NwSXHFxUq472NFDlS+LMfvqO1w+I +kp1QUMG9Ztj3PK+uHTtK2IUvSGP26D8SqYlaG81EDH7tnrPhoh5rBdxOUhymkuV gGz2q+G2af58ErXYUKreS3zCcP774uYCh3GgUd5/qB1HMCNtkDTxcIBqULd2jQFx CZMw8kD6zzz3xSofGekqwVT76QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMsPM1wP 50uGP6Hqu7SCt8/c+/AVMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvMzU3QUU1NzhB Q0ZCMTFFREE4NEY5NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGWa+AwDQYJKoZIhvcNAQELBQADggEBAHiuh/p6T4ZpNpHX g1RAsF7uBHEJSjs2jPirdVVBr/FTN30SpH5Esdm1wdA5c6ss321ZUbH2iqZgWk/Z GYIuJg7nCvqJOOYDVfyhFAedZwsXuu10dpqIt0AAUzvfHOD52z+IT0Dz6O35UKy2 LAzsr9Gslb0j0nx6CxwQoGZoPcuota68dUePvEXajs8SV0opfJSti022ot3aplxf vpijQzK0/ibVUbUdm5yW+wA7Ls6UzmKiA+pkPSOu/sJkYLYTgsKgsdmGO2QseREp GLCbGc9Mjuk2G+q/MhH0pXGckyRh14WgJvtWAoPDE5CE/L3/fbAbG9hg+DjWJQNx 3xLDmj4= -----END CERTIFICATE-----Generated at Wed May 15 06:54:31 2024 by rpki-client on console-ams.rpki-client.org