$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa File: 09E42D1E921B11EF829E0041C4F9AE02.roa (raw, json) Hash identifier: FUPQ2zB+2o17KLuW3HdJfDI+pQV+ahsvnPdiyHeOJeE= Subject key identifier: F7:F9:6E:34:73:2E:E0:58:2E:74:AD:3D:0C:BB:4C:17:13:0A:8F:EB Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Certificate serial: 9E Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa Signing time: Thu 24 Oct 2024 15:17:10 +0000 ROA not before: Thu 24 Oct 2024 15:17:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152334 IP address blocks: 157.10.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Validity Not Before: Oct 24 15:17:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=671a64f6-7458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5d:e7:16:ca:7e:18:76:02:1a:79:a7:ff:ca: 55:6a:e3:e0:89:a4:ec:71:c9:6f:b9:b4:2d:aa:55: 1b:d0:2b:7a:ac:5b:79:3f:20:75:58:eb:12:fa:e4: 35:77:47:e9:d1:2e:f1:a2:74:5b:c5:fd:59:9a:d7: 93:4f:6a:b2:ba:73:89:3c:d4:65:65:bc:04:08:d7: d7:f8:63:11:12:01:f2:06:f3:41:b8:71:2b:cd:44: 91:a9:08:76:8f:6f:7b:c6:57:18:e5:75:87:85:c7: fd:d2:4c:0a:d1:a5:60:c8:ac:e7:59:19:f0:d9:3f: a8:92:2b:fa:75:bf:12:4b:19:c2:66:72:c5:a9:43: 8d:dc:68:32:84:76:79:64:64:ba:7f:62:c7:9c:ec: 03:85:37:03:c0:b8:78:b2:ec:a7:45:38:81:3a:fe: 8f:da:ea:dd:55:03:0e:cf:e8:68:27:f6:cf:15:2e: b1:e6:5b:bf:6a:9d:bc:a2:aa:85:06:4a:1a:af:00: d5:e2:8b:87:5c:48:12:81:e4:d5:d0:7c:4d:cc:f4: 0c:28:08:9e:a3:46:01:91:dc:e1:c4:92:10:2f:19: 3e:53:7a:14:a1:ec:9e:48:cd:9d:e3:16:0d:98:61: e2:62:70:dd:d2:50:65:52:9c:2d:d7:57:96:0a:f2: ea:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F9:6E:34:73:2E:E0:58:2E:74:AD:3D:0C:BB:4C:17:13:0A:8F:EB X509v3 Authority Key Identifier: keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.238.0/24 Signature Algorithm: sha256WithRSAEncryption d3:3e:ff:f1:66:fd:a6:40:c0:fe:fc:83:cb:e7:70:ed:f5:0d: 79:4e:a1:bb:11:34:7e:bf:9b:81:3f:1f:4e:6c:3f:1e:ed:b4: af:18:5e:dc:06:dd:1b:12:ae:97:fb:08:11:ac:7d:09:81:39: 7b:65:93:c8:d6:22:7e:ac:06:2a:6b:f0:bc:ff:97:fe:de:e8: 72:29:9d:c7:1f:db:be:ff:4e:18:7e:97:4b:ba:9e:53:14:54: 85:13:69:62:31:a5:30:02:89:d4:81:e7:69:9e:c2:86:a1:3f: 7b:1e:58:b6:13:13:51:17:fb:42:09:65:d8:61:6d:8b:7f:1b: ae:76:c8:b0:32:16:a3:0f:15:48:69:f6:6f:04:61:df:3f:51: e8:5c:6b:4e:4b:24:dc:18:3a:4d:25:b2:29:d8:3e:06:b9:14: 01:ff:e2:d7:1f:d6:58:18:d3:30:37:4d:ed:a1:b6:ed:d3:55: 08:9a:41:eb:94:d8:8c:70:27:c0:99:f3:df:b6:3c:ff:cc:8b: 60:2a:e9:a2:e2:00:4a:bd:96:fb:4d:1c:fa:b2:c0:d1:f7:e5: 0a:c5:0e:de:61:3c:6a:ed:aa:32:a0:ed:12:da:8e:90:28:39: 71:f7:c5:0e:97:fa:fd:ce:08:07:44:bd:74:e5:36:be:30:c5: de:bf:89:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZDQUYxMTAvBgNVBAUTKDlGMDJEQTNBQjVGQjQ1MzE3NTA3QzQ4MDIxQ0UwQThC OTM3MjU1QzkwHhcNMjQxMDI0MTUxNzEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhNjRmNi03NDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F3nFsp+GHYCGnmn/8pVauPgiaTscclvubQtqlUb0Ct6rFt5PyB1WOsS+uQ1 d0fp0S7xonRbxf1ZmteTT2qyunOJPNRlZbwECNfX+GMREgHyBvNBuHErzUSRqQh2 j297xlcY5XWHhcf90kwK0aVgyKznWRnw2T+okiv6db8SSxnCZnLFqUON3GgyhHZ5 ZGS6f2LHnOwDhTcDwLh4suynRTiBOv6P2urdVQMOz+hoJ/bPFS6x5lu/ap28oqqF BkoarwDV4ouHXEgSgeTV0HxNzPQMKAieo0YBkdzhxJIQLxk+U3oUoeyeSM2d4xYN mGHiYnDd0lBlUpwt11eWCvLqgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPf5bjRz LuBYLnStPQy7TBcTCo/rMB8GA1UdIwQYMBaAFJ8C2jq1+0UxdQfEgCHOCouTclXJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNBRi9GM0UwRkFFNEI2 RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9ud0xhT3JYN1JURjFCOFNBSWM0S2k1TnlW Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL253TGFPclg3UlRGMUI4U0FJYzRLaTVOeVZjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZDQUYvRjNFMEZBRTRCNkY0MTFFRUFDMjAzODEwQzRGOUFFMDIvMDlFNDJEMUU5 MjFCMTFFRjgyOUUwMDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCu4wDQYJKoZIhvcNAQELBQADggEBANM+//Fm/aZAwP78 g8vncO31DXlOobsRNH6/m4E/H05sPx7ttK8YXtwG3RsSrpf7CBGsfQmBOXtlk8jW In6sBipr8Lz/l/7e6HIpnccf277/Thh+l0u6nlMUVIUTaWIxpTACidSB52mewoah P3seWLYTE1EX+0IJZdhhbYt/G652yLAyFqMPFUhp9m8EYd8/Uehca05LJNwYOk0l sinYPga5FAH/4tcf1lgY0zA3Te2htu3TVQiaQeuU2IxwJ8CZ89+2PP/Mi2Aq6aLi AEq9lvtNHPqywNH35QrFDt5hPGrtqjKg7RLajpAoOXH3xQ6X+v3OCAdEvXTlNr4w xd6/iao= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org