$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa File: ACCC32D0D53611EE993C3C1BC4F9AE02.roa (raw, json) Hash identifier: Fl9sRIi6r69XQw9rfvRkk8nDFzUbWW3Ike1vGNynB0w= Subject key identifier: AA:E8:A4:9B:87:84:8F:B3:93:7F:43:C5:38:6A:8C:D3:F9:84:E3:10 Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Certificate serial: 1A Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa Signing time: Tue 27 Feb 2024 06:08:50 +0000 ROA not before: Tue 27 Feb 2024 06:08:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133605 IP address blocks: 157.10.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Validity Not Before: Feb 27 06:08:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65dd7c72-9536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:a5:1a:93:4c:29:9d:ed:42:36:98:90:6e: fb:72:3c:48:e7:01:1b:5e:f0:a4:b8:21:cf:69:56: 26:e1:de:ce:61:3c:8d:60:83:9e:ef:bc:0b:bc:89: 20:dd:47:7f:40:c8:44:70:6d:bd:51:46:e7:67:7b: 49:e8:67:6d:14:e6:b8:2c:2c:15:3d:fb:c9:fe:62: 01:a9:81:f9:ca:72:a3:d1:f6:c8:26:ea:f8:c9:0a: 12:d9:d4:9c:a4:91:96:79:53:1e:cb:10:00:9a:86: 84:eb:59:74:96:45:42:41:3a:0e:37:74:d4:44:64: be:b4:28:b6:a7:7c:12:42:c4:b6:4a:a6:8a:ba:e1: 5a:a9:b4:61:10:00:4c:8d:99:5c:33:52:c1:63:73: 93:16:75:2e:2a:7b:11:c1:9c:39:b7:b2:52:0d:d3: 0f:a6:f2:ed:7d:27:d3:b2:9a:28:8c:39:fa:a9:e1: ec:26:4f:8b:0a:b2:c7:20:fe:34:4a:c3:2a:c7:fa: 06:77:59:f6:2b:17:c1:e9:5a:d9:d6:ef:e9:0d:3c: 47:08:f6:65:8f:fe:d8:5e:ad:1d:41:b4:eb:12:b7: 78:23:28:4f:da:12:93:8e:20:c5:b2:6a:62:bc:b3: 0d:52:c0:2a:a8:0a:29:e5:2c:51:36:e8:fd:89:b3: 28:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E8:A4:9B:87:84:8F:B3:93:7F:43:C5:38:6A:8C:D3:F9:84:E3:10 X509v3 Authority Key Identifier: keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.239.0/24 Signature Algorithm: sha256WithRSAEncryption 89:a9:7e:cc:bf:76:f5:0d:e7:e4:2c:06:b2:ea:c0:18:98:25: 8e:d8:ff:ca:1c:dc:d0:36:59:86:09:19:ef:eb:9e:37:97:cc: c4:68:e3:7f:cf:78:c8:50:17:5d:9a:4e:44:3b:61:05:a3:3e: 0b:44:a5:fb:2d:df:2b:b7:6e:2f:1e:04:f2:5e:09:dd:fb:12: 6e:dc:75:2f:89:d2:e3:ae:c2:45:79:ec:9d:6b:63:e2:11:ce: 93:7f:0a:f5:35:fa:00:b5:ee:87:0e:87:92:20:9e:f7:ff:24: 61:6f:d3:26:e3:51:4a:2f:c9:8c:0f:0f:0d:55:3a:c8:db:56: 33:83:0d:21:70:e4:bc:d2:b7:18:9d:01:e6:8c:f1:73:01:d6: 76:ad:a9:0f:1e:30:b9:23:33:92:e4:21:47:ea:4d:d0:69:78: 3b:45:8c:d5:31:de:64:58:aa:f5:81:cb:98:12:6e:2c:da:9f: 59:f4:89:c6:30:87:07:45:23:47:17:70:69:d2:3e:c5:27:8f: de:40:26:31:61:ef:da:a6:17:18:09:9d:cc:b7:e3:1a:b6:60: b9:26:db:66:3c:aa:8d:1a:bb:3e:8b:eb:ca:f5:7d:de:10:4d: 01:f8:72:f2:b0:b4:a6:3c:67:43:88:c6:23:18:c7:51:7a:39: af:3d:fe:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkNBRjExMC8GA1UEBRMoOUYwMkRBM0FCNUZCNDUzMTc1MDdDNDgwMjFDRTBBOEI5 MzcyNTVDOTAeFw0yNDAyMjcwNjA4NTBaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGQ3YzcyLTk1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC24aUak0wpne1CNpiQbvtyPEjnARte8KS4Ic9pVibh3s5hPI1gg57vvAu8iSDd R39AyERwbb1RRudne0noZ20U5rgsLBU9+8n+YgGpgfnKcqPR9sgm6vjJChLZ1Jyk kZZ5Ux7LEACahoTrWXSWRUJBOg43dNREZL60KLanfBJCxLZKpoq64VqptGEQAEyN mVwzUsFjc5MWdS4qexHBnDm3slIN0w+m8u19J9OymiiMOfqp4ewmT4sKsscg/jRK wyrH+gZ3WfYrF8HpWtnW7+kNPEcI9mWP/therR1BtOsSt3gjKE/aEpOOIMWyamK8 sw1SwCqoCinlLFE26P2JsygDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUquikm4eE j7OTf0PFOGqM0/mE4xAwHwYDVR0jBBgwFoAUnwLaOrX7RTF1B8SAIc4Ki5NyVckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2Q0FGL0YzRTBGQUU0QjZG NDExRUVBQzIwMzgxMEM0RjlBRTAyL253TGFPclg3UlRGMUI4U0FJYzRLaTVOeVZj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbndMYU9yWDdSVEYxQjhTQUljNEtpNU55VmNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkNBRi9GM0UwRkFFNEI2RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9BQ0NDMzJEMEQ1 MzYxMUVFOTkzQzNDMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0K7zANBgkqhkiG9w0BAQsFAAOCAQEAial+zL929Q3n5CwG surAGJgljtj/yhzc0DZZhgkZ7+ueN5fMxGjjf894yFAXXZpORDthBaM+C0Sl+y3f K7duLx4E8l4J3fsSbtx1L4nS467CRXnsnWtj4hHOk38K9TX6ALXuhw6HkiCe9/8k YW/TJuNRSi/JjA8PDVU6yNtWM4MNIXDkvNK3GJ0B5ozxcwHWdq2pDx4wuSMzkuQh R+pN0Gl4O0WM1THeZFiq9YHLmBJuLNqfWfSJxjCHB0UjRxdwadI+xSeP3kAmMWHv 2qYXGAmdzLfjGrZguSbbZjyqjRq7PovryvV93hBNAfhy8rC0pjxnQ4jGIxjHUXo5 rz3+1w== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:31 2024 by rpki-client on console-fra.rpki-client.org