$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa File: C7AAEA76637311EF97465324C4F9AE02.roa (raw, json) Hash identifier: 7qAgqeHaZPQYvPPHuv1+My9lZgN4hj2uJJ26C3QxuHc= Subject key identifier: 5A:16:57:CD:9B:06:15:17:3C:71:86:F9:1D:47:D6:55:E8:2B:30:9F Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: 6B Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa Signing time: Thu 05 Sep 2024 00:43:16 +0000 ROA not before: Thu 05 Sep 2024 00:43:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142629 IP address blocks: 157.20.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 01:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: Sep 5 00:43:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8fea4-85e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:ec:ca:34:c9:c5:5a:f4:07:cc:00:4c:0b: 8c:67:4c:d5:29:ca:90:a0:5b:6d:05:26:d5:5d:db: 21:b8:b6:79:1d:8c:54:f5:87:6e:7d:9b:f6:cf:d6: 3f:da:e4:e5:47:96:0c:22:47:26:e2:38:ec:45:06: 29:fd:10:3c:7d:ba:d1:e0:1d:b4:12:8a:2b:9c:0d: 9d:53:35:95:d2:ad:d2:8c:b0:8d:2d:64:38:94:13: 68:0b:65:54:52:c2:06:7a:0f:d0:fe:92:e0:04:b3: 94:56:79:a9:c7:7e:d1:fc:f4:48:d1:82:cd:50:0f: d0:b3:6e:47:7f:b8:ee:94:b0:bb:5e:64:b3:9f:a1: 85:24:8a:f3:e0:c9:6a:23:47:46:ed:4e:96:0b:89: c6:2e:d4:69:71:f2:31:34:8b:01:22:92:5f:d9:35: 78:c9:af:eb:10:92:41:97:60:93:a8:0d:6a:8d:7c: 85:89:07:ed:71:11:15:85:56:98:22:be:69:9b:a2: 51:31:42:39:6c:4e:92:6c:d8:13:fb:54:a1:4d:d2: 5e:a3:5e:ff:9e:ff:45:cd:f6:73:54:d6:2d:5b:7b: c8:80:9d:c1:df:3b:ab:29:f4:67:58:15:29:ca:d6: 83:ba:89:90:41:c6:15:9b:d2:dd:8c:dc:5d:2c:9a: 52:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:16:57:CD:9B:06:15:17:3C:71:86:F9:1D:47:D6:55:E8:2B:30:9F X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.142.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:bc:6f:4a:c6:1f:2d:dc:17:15:2a:d6:e1:74:a7:85:6d:e0: 0e:45:ad:cf:eb:72:38:28:77:db:3c:81:0d:7d:8b:c8:0f:0b: 12:48:a9:b2:a0:77:04:f3:ed:80:b9:ad:eb:c1:7d:8d:88:2a: b8:44:c7:fd:57:4d:af:8d:47:2e:33:dc:b8:31:a4:a2:3d:0e: 58:1a:79:cf:c2:dd:62:70:cc:d0:48:3c:97:35:b6:f2:af:c4: c0:af:fe:1d:8c:eb:9a:28:a4:48:21:a1:ac:4a:84:2c:c1:42: 1d:fa:95:9f:e0:2a:c1:38:01:51:14:a1:c4:33:53:45:fd:85: 84:e3:e1:9b:c8:2a:f8:7d:ca:e6:94:54:33:4a:29:6e:f8:93: 36:d2:20:23:7b:05:5e:20:8a:ec:9e:69:6c:37:09:5e:3b:9b: 8e:2b:f1:7d:3e:c2:89:87:48:93:1b:ba:af:1d:66:53:4a:a9: b3:e8:33:be:bc:85:62:cc:ba:df:c2:15:06:c2:e3:7d:80:b6: 84:22:a0:1d:08:1e:fb:27:a7:4d:4b:f5:25:57:a6:98:4c:37: f9:cf:65:0d:1a:8d:2b:3d:51:02:70:cc:bf:69:c8:72:b2:03: 0b:a7:2f:f3:9f:8e:95:6e:ba:77:71:54:b5:bc:d2:76:2a:07: ba:d2:43:89 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTA1NjExMC8GA1UEBRMoN0MxOTRGRURCOEE1QzhDOTc2RUJERUM4NDkzREYzQzNG MDhDQzhFMjAeFw0yNDA5MDUwMDQzMTZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDhmZWE0LTg1ZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmDuzKNMnFWvQHzABMC4xnTNUpypCgW20FJtVd2yG4tnkdjFT1h259m/bP1j/a 5OVHlgwiRybiOOxFBin9EDx9utHgHbQSiiucDZ1TNZXSrdKMsI0tZDiUE2gLZVRS wgZ6D9D+kuAEs5RWeanHftH89EjRgs1QD9Czbkd/uO6UsLteZLOfoYUkivPgyWoj R0btTpYLicYu1Glx8jE0iwEikl/ZNXjJr+sQkkGXYJOoDWqNfIWJB+1xERWFVpgi vmmbolExQjlsTpJs2BP7VKFN0l6jXv+e/0XN9nNU1i1be8iAncHfO6sp9GdYFSnK 1oO6iZBBxhWb0t2M3F0smlLLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWhZXzZsG FRc8cYb5HUfWVegrMJ8wHwYDVR0jBBgwFoAUfBlP7bilyMl2697IST3zw/CMyOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFMDU2LzAwM0UxMTU4RDc4 QjExRUVBMkVCRDcxMkM0RjlBRTAyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZkJsUDdiaWx5TWwyNjk3SVNUM3p3X0NNeU9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA1Ni8wMDNFMTE1OEQ3OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9DN0FBRUE3NjYz NzMxMUVGOTc0NjUzMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0UjjANBgkqhkiG9w0BAQsFAAOCAQEAKrxvSsYfLdwXFSrW 4XSnhW3gDkWtz+tyOCh32zyBDX2LyA8LEkipsqB3BPPtgLmt68F9jYgquETH/VdN r41HLjPcuDGkoj0OWBp5z8LdYnDM0Eg8lzW28q/EwK/+HYzrmiikSCGhrEqELMFC HfqVn+AqwTgBURShxDNTRf2FhOPhm8gq+H3K5pRUM0opbviTNtIgI3sFXiCK7J5p bDcJXjubjivxfT7CiYdIkxu6rx1mU0qps+gzvryFYsy638IVBsLjfYC2hCKgHQge +yenTUv1JVemmEw3+c9lDRqNKz1RAnDMv2nIcrIDC6cv85+OlW66d3FUtbzSdioH utJDiQ== -----END CERTIFICATE-----Generated at Wed Sep 18 04:20:11 2024 by rpki-client on console-ams.rpki-client.org