$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/0BBBE2B2E2B211EEACBA3341C4F9AE02.roa File: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (raw, json) Hash identifier: sKM3XWxgShyOJLKm7YJ4ZHKrS+hkWvA5sgaxqZc+rRc= Subject key identifier: 1C:A3:2F:93:9C:0C:C2:D0:69:79:9F:97:FF:8C:9E:14:C1:B9:3E:20 Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 02 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/0BBBE2B2E2B211EEACBA3341C4F9AE02.roa Signing time: Fri 15 Mar 2024 09:54:42 +0000 ROA not before: Fri 15 Mar 2024 09:54:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152337 IP address blocks: 157.15.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Mar 15 09:54:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f41ae2-e253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0b:e7:69:44:98:4c:0e:33:dd:8e:77:cb:fb: cc:fe:2f:dd:bf:10:f8:27:9a:d0:b9:38:01:74:68: db:1c:15:41:94:05:d1:93:c9:5f:9c:c6:77:14:cd: 4b:79:f2:fb:31:49:ca:0e:05:55:ae:ed:27:ac:a7: 1f:55:e6:dc:22:90:38:b0:18:78:69:2d:78:2b:df: e2:4e:2a:f2:07:e4:4a:7c:a2:ae:1d:a2:1d:d4:db: 63:22:bb:85:b9:11:59:66:52:ac:43:5a:33:6c:84: d1:f6:78:5f:e5:c8:87:92:06:dd:21:7d:2f:a4:17: 9c:50:92:98:ed:60:06:97:54:6b:fb:c6:dc:fe:8c: a1:31:bc:c7:38:28:22:fb:a0:3f:aa:c1:b9:24:2a: fd:9a:e0:b1:e9:63:ab:e0:81:8b:15:be:e6:05:e0: ab:1d:76:57:0a:24:13:aa:89:66:d3:f8:83:e5:3b: 0d:e6:5f:bf:5d:02:3f:d3:70:67:36:51:3c:a9:33: bb:96:46:5d:91:56:31:e2:c1:b3:1c:df:95:22:e3: 91:78:38:6c:0f:19:8c:65:85:75:a5:d3:66:fc:b2: 91:fe:bd:d4:30:4f:db:2e:f5:ad:75:32:80:2c:9c: 91:d2:d8:ff:11:0e:f4:f4:8e:f1:f6:6c:14:b7:0f: 0d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A3:2F:93:9C:0C:C2:D0:69:79:9F:97:FF:8C:9E:14:C1:B9:3E:20 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/0BBBE2B2E2B211EEACBA3341C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.6.0/23 Signature Algorithm: sha256WithRSAEncryption 78:8f:4e:05:4a:57:e8:41:ac:3a:57:62:e8:93:18:14:17:a7: b5:7a:20:0e:44:61:2f:d9:c8:d3:bb:db:e5:d7:ff:60:ec:55: 3e:7e:e7:83:ea:a5:86:01:99:fa:8c:69:5a:d3:ee:ac:64:09: aa:cd:79:d8:62:66:e3:87:3f:e3:29:56:46:35:21:82:70:59: e8:6f:94:cd:9b:1f:f1:68:4e:21:17:52:b5:c7:9b:23:eb:a4: 62:c8:33:ad:77:2e:d7:d2:b5:75:31:b2:eb:34:78:8a:56:69: c7:f3:af:45:58:c6:23:1c:79:db:90:2c:04:21:d6:8b:94:a3: 20:46:31:54:56:77:d6:af:3a:14:24:4c:02:9f:3e:fd:78:c7: 5f:93:74:a4:a4:bd:d7:89:c6:4b:6b:0f:d5:45:0a:aa:d4:80: da:bd:63:55:df:61:d0:99:2d:20:3d:43:49:78:36:be:38:4a: 1d:59:8c:2b:3e:5d:dd:48:93:9c:a8:e1:17:71:ae:06:66:66: 9e:e3:2a:ab:69:9c:22:b3:c8:7d:6b:9e:85:ca:9a:25:c4:30: 0a:f4:b4:08:6b:46:ca:df:0e:33:81:4e:50:11:6e:44:33:89: be:e4:c1:d7:74:ba:46:b3:28:56:4e:23:cc:00:cb:2b:ae:17: bf:c5:47:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Nzc5RDExMC8GA1UEBRMoMzQ4MEM1NjUyMzM0OEREQUJBMzAzRTMxRjIyREZBMzYz Rjg4N0U4RjAeFw0yNDAzMTUwOTU0NDJaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjQxYWUyLWUyNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLC+dpRJhMDjPdjnfL+8z+L92/EPgnmtC5OAF0aNscFUGUBdGTyV+cxncUzUt5 8vsxScoOBVWu7Sespx9V5twikDiwGHhpLXgr3+JOKvIH5Ep8oq4doh3U22Miu4W5 EVlmUqxDWjNshNH2eF/lyIeSBt0hfS+kF5xQkpjtYAaXVGv7xtz+jKExvMc4KCL7 oD+qwbkkKv2a4LHpY6vggYsVvuYF4KsddlcKJBOqiWbT+IPlOw3mX79dAj/TcGc2 UTypM7uWRl2RVjHiwbMc35Ui45F4OGwPGYxlhXWl02b8spH+vdQwT9su9a11MoAs nJHS2P8RDvT0jvH2bBS3Dw0dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHKMvk5wM wtBpeZ+X/4yeFMG5PiAwHwYDVR0jBBgwFoAUNIDFZSM0jdq6MD4x8i36Nj+Ifo8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NzlELzQ2MEQxQzVBRTJB RTExRUU4NkYzM0MxRUM0RjlBRTAyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZv OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTklERlpTTTBqZHE2TUQ0eDhpMzZOai1JZm84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi8wQkJCRTJCMkUy QjIxMUVFQUNCQTMzNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PBjANBgkqhkiG9w0BAQsFAAOCAQEAeI9OBUpX6EGsOldi 6JMYFBentXogDkRhL9nI07vb5df/YOxVPn7ng+qlhgGZ+oxpWtPurGQJqs152GJm 44c/4ylWRjUhgnBZ6G+UzZsf8WhOIRdStcebI+ukYsgzrXcu19K1dTGy6zR4ilZp x/OvRVjGIxx525AsBCHWi5SjIEYxVFZ31q86FCRMAp8+/XjHX5N0pKS914nGS2sP 1UUKqtSA2r1jVd9h0JktID1DSXg2vjhKHVmMKz5d3UiTnKjhF3GuBmZmnuMqq2mc IrPIfWuehcqaJcQwCvS0CGtGyt8OM4FOUBFuRDOJvuTB13S6RrMoVk4jzADLK64X v8VHkA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org