$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa File: C5589FB4BF9C11EEAAE7743EC4F9AE02.roa (raw, json) Hash identifier: kRccPK3IKp4TRD5L4za5mKd4/pqRwQieUy3McXFTulI= Subject key identifier: 48:FA:23:91:8E:00:46:7F:6C:EA:13:88:87:7F:3D:BF:B0:4A:F9:B3 Certificate issuer: /CN=A91CDB75/serialNumber=158834B563A7C33B498334BCFA30F8D6B674DC9E Certificate serial: 09 Authority key identifier: 15:88:34:B5:63:A7:C3:3B:49:83:34:BC:FA:30:F8:D6:B6:74:DC:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa Signing time: Tue 30 Jan 2024 18:24:14 +0000 ROA not before: Tue 30 Jan 2024 18:24:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152446 IP address blocks: 157.15.36.0/24 maxlen: 24 157.15.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.crl rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDB75/serialNumber=158834B563A7C33B498334BCFA30F8D6B674DC9E Validity Not Before: Jan 30 18:24:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b93ece-c529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1d:ce:f2:d7:2d:a1:ee:ab:0f:94:b3:6e:9b: 8a:51:5a:e8:5a:4a:82:c4:99:b8:3b:87:b1:98:64: e6:b3:b9:99:e6:32:d8:51:cf:1c:9e:a4:f1:79:77: a6:9f:30:48:ef:d9:12:02:5d:81:12:eb:b6:ae:92: 72:72:8f:af:ef:b6:58:db:12:2a:8d:34:2e:f8:f7: db:78:73:bb:5a:d8:50:3c:d3:a9:8e:cf:2a:da:19: 95:53:e5:39:0d:a4:77:7f:eb:b3:87:af:1d:fa:90: c0:22:d1:f1:07:97:b2:ed:23:4b:ef:72:66:54:f9: d4:72:6b:70:c9:27:1f:84:c9:dc:c1:1b:ba:12:1f: 62:05:11:c7:13:c1:44:f9:1a:44:89:bc:a1:85:9d: 65:4a:cb:29:0a:2b:78:ac:f3:a7:5f:14:24:ac:12: 7c:9c:09:71:d7:0e:e8:46:80:f4:2d:ac:a6:61:54: 76:96:55:16:ed:8c:8a:32:b7:08:9d:4f:2f:53:7f: 2b:ee:c1:d4:c6:be:ed:84:d6:ad:3d:60:a4:ca:ae: fe:68:79:2e:a0:e4:3b:03:0e:7e:37:1e:9c:12:e1: 4c:5a:d6:85:b7:c6:6e:1c:b8:da:0f:ee:88:85:92: 4d:14:fe:28:9d:7a:40:8b:bd:71:70:83:45:32:69: 25:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FA:23:91:8E:00:46:7F:6C:EA:13:88:87:7F:3D:BF:B0:4A:F9:B3 X509v3 Authority Key Identifier: keyid:15:88:34:B5:63:A7:C3:3B:49:83:34:BC:FA:30:F8:D6:B6:74:DC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.36.0/23 Signature Algorithm: sha256WithRSAEncryption e9:6b:99:43:93:1c:ed:6c:74:1d:e0:89:34:0a:db:e1:3c:a9: 9e:2c:a6:0d:40:ac:a5:6e:a3:38:0b:b9:86:bd:e3:b7:21:f9: 95:88:4c:21:db:de:ea:a7:d2:96:50:ec:80:04:f9:23:5b:54: 6f:90:9d:fb:ab:84:46:10:51:55:06:10:fa:3e:81:0c:f2:2d: 93:43:f3:8e:34:0d:17:e6:4f:2e:35:51:1d:78:be:c4:63:00: be:da:e9:00:fe:e1:fe:12:ed:29:78:ca:aa:c8:8c:4c:b7:48: f4:75:99:6d:da:46:3a:d0:c8:f9:b4:5a:8b:25:38:30:c3:35: 40:e9:2f:c3:fb:80:c6:80:b9:33:32:90:07:3a:4d:e5:d0:76: 75:de:d0:71:6f:0f:2a:17:f4:5d:0b:dd:c7:90:c9:ff:af:46: cf:ff:2e:36:d7:1c:8e:8a:1b:39:a1:db:63:be:80:f1:f2:dc: c3:3f:29:33:bc:02:98:27:15:5f:8d:13:59:ce:85:a7:64:0a: a5:11:5c:8c:53:e7:cf:ce:b3:3a:ec:1c:c5:8c:9a:42:57:d3: 77:58:c3:b5:56:4c:b6:4a:ac:f0:0f:17:ac:7f:78:52:e9:09: cf:04:6c:08:76:b1:eb:c1:79:fe:e4:d0:97:4f:e8:5f:9a:05: 46:c2:b4:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REI3NTExMC8GA1UEBRMoMTU4ODM0QjU2M0E3QzMzQjQ5ODMzNEJDRkEzMEY4RDZC Njc0REM5RTAeFw0yNDAxMzAxODI0MTRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjkzZWNlLWM1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYHc7y1y2h7qsPlLNum4pRWuhaSoLEmbg7h7GYZOazuZnmMthRzxyepPF5d6af MEjv2RICXYES67auknJyj6/vtljbEiqNNC7499t4c7ta2FA806mOzyraGZVT5TkN pHd/67OHrx36kMAi0fEHl7LtI0vvcmZU+dRya3DJJx+EydzBG7oSH2IFEccTwUT5 GkSJvKGFnWVKyykKK3is86dfFCSsEnycCXHXDuhGgPQtrKZhVHaWVRbtjIoytwid Ty9TfyvuwdTGvu2E1q09YKTKrv5oeS6g5DsDDn43HpwS4Uxa1oW3xm4cuNoP7oiF kk0U/iidekCLvXFwg0UyaSXVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSPojkY4A Rn9s6hOIh389v7BK+bMwHwYDVR0jBBgwFoAUFYg0tWOnwztJgzS8+jD41rZ03J4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQjc1L0RDRDJENDk0QkI3 NzExRUVBQUQ3QjI0MUM0RjlBRTAyL0ZZZzB0V09ud3p0Smd6UzgtakQ0MXJaMDNK NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRllnMHRXT253enRKZ3pTOC1qRDQxclowM0o0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REI3NS9EQ0QyRDQ5NEJCNzcxMUVFQUFEN0IyNDFDNEY5QUUwMi9DNTU4OUZCNEJG OUMxMUVFQUFFNzc0M0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PJDANBgkqhkiG9w0BAQsFAAOCAQEA6WuZQ5Mc7Wx0HeCJ NArb4TypniymDUCspW6jOAu5hr3jtyH5lYhMIdve6qfSllDsgAT5I1tUb5Cd+6uE RhBRVQYQ+j6BDPItk0PzjjQNF+ZPLjVRHXi+xGMAvtrpAP7h/hLtKXjKqsiMTLdI 9HWZbdpGOtDI+bRaiyU4MMM1QOkvw/uAxoC5MzKQBzpN5dB2dd7QcW8PKhf0XQvd x5DJ/69Gz/8uNtccjoobOaHbY76A8fLcwz8pM7wCmCcVX40TWc6Fp2QKpRFcjFPn z86zOuwcxYyaQlfTd1jDtVZMtkqs8A8XrH94UukJzwRsCHax68F5/uTQl0/oX5oF RsK08w== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org