$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa File: 51E59058921B11EFB656CB41C4F9AE02.roa (raw, json) Hash identifier: q7SviaqIjIGQKnuPvv+GyncifCyewc4zKnkGxXS7g5s= Subject key identifier: 44:E6:46:AD:AA:2B:98:CA:F1:2D:F8:BD:30:96:7C:3B:0A:68:94:2F Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Certificate serial: A0 Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa Signing time: Thu 24 Oct 2024 15:19:11 +0000 ROA not before: Thu 24 Oct 2024 15:19:11 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134480 IP address blocks: 157.10.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Validity Not Before: Oct 24 15:19:11 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=671a656f-a645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:6d:c8:4c:68:6e:97:12:88:36:dd:1e:85: 84:80:3b:17:ad:5c:08:1f:91:e1:23:5e:55:02:5b: 71:46:89:4d:85:61:75:6b:01:97:d5:a9:4a:75:54: c5:00:d0:d3:42:ab:77:10:e6:92:52:2d:91:37:8f: de:ec:e6:48:b4:ee:74:db:5c:78:f9:3f:80:f4:5c: 3c:a0:a1:b4:68:b6:d7:8b:13:b6:97:70:5d:11:21: 65:c1:35:0c:16:13:82:0b:c6:5b:1c:aa:4a:00:4d: 45:89:48:15:7e:0f:ad:aa:95:a6:45:7c:67:22:f4: bb:58:d2:a5:82:d6:18:cf:da:94:f9:41:45:e0:1e: d7:c1:aa:41:a6:99:92:2b:68:d1:46:94:de:a5:29: 20:9a:3c:65:fc:fc:89:dd:2f:df:ac:de:1e:c4:31: c3:2d:3f:03:ae:61:14:a7:d0:ab:73:be:20:63:dd: b9:f2:01:14:cf:d8:5f:32:2b:e1:60:4e:9a:8a:ef: 91:a1:80:b8:c4:21:ee:22:1e:6d:50:fd:23:01:6a: 68:6b:c6:dc:76:b9:c5:f8:a3:29:9e:02:fa:24:f3: 18:bb:b0:cb:da:ed:58:a9:4d:7e:30:ed:4e:74:26: f1:1f:16:16:d5:69:e2:d9:9e:07:72:eb:50:4a:71: 4a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E6:46:AD:AA:2B:98:CA:F1:2D:F8:BD:30:96:7C:3B:0A:68:94:2F X509v3 Authority Key Identifier: keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.239.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:5e:f6:ea:5f:f2:54:dc:4b:1b:a3:9a:41:9f:0f:54:bc:63: 2a:c8:f9:50:58:e4:4a:72:04:ec:45:d2:52:cf:56:63:f3:7d: 20:46:5c:76:d5:e5:2e:a2:f8:dc:5e:38:b7:52:d1:28:96:29: 54:a5:d0:a3:fb:45:f6:b1:4f:52:b3:0c:f2:a7:03:c9:3d:7a: ad:1e:73:3b:59:84:2f:c2:f2:5f:16:10:69:9c:7f:22:f1:28: f3:77:70:05:d0:64:0f:90:87:ea:a6:98:be:d6:c4:85:4b:f3: b2:c0:2f:20:69:00:56:e0:59:a0:13:87:29:3b:47:85:4f:89: ed:84:58:97:17:75:ce:57:52:06:e4:70:32:98:65:c1:55:c7: d6:bd:9a:3e:c4:ef:0a:5a:0f:88:e7:07:41:66:43:65:27:68: 44:21:a0:95:ea:f1:1c:ad:4e:9b:15:5d:b3:7e:28:fd:59:30: a9:ba:f6:cd:47:e2:6d:84:8c:d0:eb:f9:83:68:8b:91:c7:e3: 2c:60:ab:c6:1c:10:c3:60:f4:8a:97:ec:11:b9:02:36:96:6a: c3:f5:ff:af:e3:f3:c1:6f:1e:c4:25:f9:94:6c:47:18:03:a5: 97:a3:7d:92:f1:94:0b:83:6e:62:57:4b:15:76:78:90:19:ac: 02:27:2a:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZDQUYxMTAvBgNVBAUTKDlGMDJEQTNBQjVGQjQ1MzE3NTA3QzQ4MDIxQ0UwQThC OTM3MjU1QzkwHhcNMjQxMDI0MTUxOTExWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhNjU2Zi1hNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsZtyExobpcSiDbdHoWEgDsXrVwIH5HhI15VAltxRolNhWF1awGX1alKdVTF ANDTQqt3EOaSUi2RN4/e7OZItO5021x4+T+A9Fw8oKG0aLbXixO2l3BdESFlwTUM FhOCC8ZbHKpKAE1FiUgVfg+tqpWmRXxnIvS7WNKlgtYYz9qU+UFF4B7XwapBppmS K2jRRpTepSkgmjxl/PyJ3S/frN4exDHDLT8DrmEUp9Crc74gY9258gEUz9hfMivh YE6aiu+RoYC4xCHuIh5tUP0jAWpoa8bcdrnF+KMpngL6JPMYu7DL2u1YqU1+MO1O dCbxHxYW1Wni2Z4HcutQSnFKYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFETmRq2q K5jK8S34vTCWfDsKaJQvMB8GA1UdIwQYMBaAFJ8C2jq1+0UxdQfEgCHOCouTclXJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNBRi9GM0UwRkFFNEI2 RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9ud0xhT3JYN1JURjFCOFNBSWM0S2k1TnlW Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL253TGFPclg3UlRGMUI4U0FJYzRLaTVOeVZjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZDQUYvRjNFMEZBRTRCNkY0MTFFRUFDMjAzODEwQzRGOUFFMDIvNTFFNTkwNTg5 MjFCMTFFRkI2NTZDQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCu8wDQYJKoZIhvcNAQELBQADggEBAFxe9upf8lTcSxuj mkGfD1S8YyrI+VBY5EpyBOxF0lLPVmPzfSBGXHbV5S6i+NxeOLdS0SiWKVSl0KP7 RfaxT1KzDPKnA8k9eq0ecztZhC/C8l8WEGmcfyLxKPN3cAXQZA+Qh+qmmL7WxIVL 87LALyBpAFbgWaAThyk7R4VPie2EWJcXdc5XUgbkcDKYZcFVx9a9mj7E7wpaD4jn B0FmQ2UnaEQhoJXq8RytTpsVXbN+KP1ZMKm69s1H4m2EjNDr+YNoi5HH4yxgq8Yc EMNg9IqX7BG5AjaWasP1/6/j88FvHsQl+ZRsRxgDpZejfZLxlAuDbmJXSxV2eJAZ rAInKrw= -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:15 2024 by rpki-client on console-ams.rpki-client.org