$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa File: 3446813047DC11EFA05E932EC4F9AE02.roa (raw, json) Hash identifier: 6dpnSfSfmjTs18NuhrZbYY2YJ9hNtxY1uesaee9+WkE= Subject key identifier: 96:E6:EF:AD:C1:B2:11:44:29:ED:B2:34:4A:41:37:BD:AC:51:79:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 02 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa Signing time: Mon 22 Jul 2024 03:40:57 +0000 ROA not before: Mon 22 Jul 2024 03:40:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Jul 22 03:40:57 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=669dd4c8-594f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:1b:95:9e:df:41:f2:3d:7c:29:c6:b9:e0: 7c:22:00:95:c3:d4:b4:54:10:c5:0b:3c:09:fe:15: 0c:45:26:9c:00:c1:cd:38:ff:3d:f2:19:0a:be:99: fa:4a:2e:73:2d:18:10:f7:e9:2a:e5:44:2a:79:b8: 87:c3:8d:13:c7:ec:7f:1e:0e:e6:83:24:f3:87:56: fe:7d:d0:99:d5:82:ec:7c:89:a7:e5:39:80:a4:5c: 21:19:41:43:d0:e6:24:b3:e0:3b:c1:a6:1b:04:52: 48:c7:e5:96:b3:d9:ec:7d:c1:3a:19:95:8d:58:61: c0:e4:84:72:1a:6c:2b:3b:eb:bb:85:9b:b8:04:35: 3d:e3:5c:14:79:4c:de:a4:94:5c:55:37:d9:b5:1f: bc:7f:f1:87:d4:95:f6:c7:d2:7b:c4:62:26:a8:e8: bc:3f:b6:d1:83:bd:c7:5f:28:fe:fb:95:e1:02:67: c2:47:fe:eb:7f:45:33:ae:19:eb:d8:ec:2f:9c:98: 31:bf:88:17:09:ff:38:82:33:a2:4e:0b:ea:f3:44: 4f:cc:76:a2:1d:81:ca:58:f7:86:e9:3f:cb:0a:83: 60:89:fc:7e:59:7f:8f:0c:06:25:aa:64:5c:74:f5: 0b:10:be:03:f3:87:a9:b7:8c:a7:b8:99:e2:68:47: f5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E6:EF:AD:C1:B2:11:44:29:ED:B2:34:4A:41:37:BD:AC:51:79:3F X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.136.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:55:c6:9b:3e:99:1b:4a:14:72:e6:97:25:cf:a1:ac:49:12: 16:a9:a1:0a:18:68:cb:31:68:72:8f:c6:b1:13:94:17:7e:2d: 30:0a:3c:c3:1e:e1:d5:34:9c:88:5c:1b:a1:66:25:9c:e3:46: 23:d1:21:e7:7f:89:0b:5e:96:16:02:5b:47:08:91:aa:f2:1a: d5:ff:68:eb:c3:fb:e4:12:8c:ac:3a:74:75:a5:6b:cc:21:a1: da:41:d1:d5:63:d9:4c:4f:b5:42:0a:93:a1:49:66:04:c4:db: 61:ad:54:70:06:73:06:f1:52:c4:bd:17:e2:56:40:d7:fa:6d: 9f:45:07:0f:ec:55:91:08:fd:53:57:bb:30:9a:62:3a:4e:ed: e2:03:6c:f8:1b:b6:eb:0a:08:78:10:71:14:70:e5:ea:7a:53: 74:ca:44:10:35:2d:e8:1e:6c:7b:1e:c4:62:c0:f0:2b:65:9c: 3e:e2:20:ea:e9:57:77:45:76:89:e8:29:ef:c8:33:4f:21:c9: a4:e2:54:95:a8:ee:6d:52:a7:5d:e8:70:7d:64:9a:33:bc:3e: 53:65:f5:ad:25:e2:d2:f7:49:fa:a1:c2:06:53:d7:6e:7b:0e: f3:ce:39:7d:62:40:0e:af:2e:26:7c:81:a2:f3:3c:4b:3b:f9: 0a:0b:b8:d0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzEzQjExMC8GA1UEBRMoODBFOTI3NUI2RTZFQkM2QUQ3NTg1RDc2QUZCNkE0MDBC NTE0MkMzRjAeFw0yNDA3MjIwMzQwNTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OWRkNGM4LTU5NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvURuVnt9B8j18Kca54HwiAJXD1LRUEMULPAn+FQxFJpwAwc04/z3yGQq+mfpK LnMtGBD36SrlRCp5uIfDjRPH7H8eDuaDJPOHVv590JnVgux8iaflOYCkXCEZQUPQ 5iSz4DvBphsEUkjH5Zaz2ex9wToZlY1YYcDkhHIabCs767uFm7gENT3jXBR5TN6k lFxVN9m1H7x/8YfUlfbH0nvEYiao6Lw/ttGDvcdfKP77leECZ8JH/ut/RTOuGevY 7C+cmDG/iBcJ/ziCM6JOC+rzRE/MdqIdgcpY94bpP8sKg2CJ/H5Zf48MBiWqZFx0 9QsQvgPzh6m3jKe4meJoR/VXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlubvrcGy EUQp7bI0SkE3vaxReT8wHwYDVR0jBBgwFoAUgOknW25uvGrXWF12r7akALUULD8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMTNCL0NDRTk5RDdFNDdE QjExRUZBRUE0QjAyREM0RjlBRTAyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxE OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ09rblcyNXV2R3JYV0YxMnI3YWtBTFVVTEQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi8zNDQ2ODEzMDQ3 REMxMUVGQTA1RTkzMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KiDANBgkqhkiG9w0BAQsFAAOCAQEAS1XGmz6ZG0oUcuaX Jc+hrEkSFqmhChhoyzFoco/GsROUF34tMAo8wx7h1TSciFwboWYlnONGI9Eh53+J C16WFgJbRwiRqvIa1f9o68P75BKMrDp0daVrzCGh2kHR1WPZTE+1QgqToUlmBMTb Ya1UcAZzBvFSxL0X4lZA1/ptn0UHD+xVkQj9U1e7MJpiOk7t4gNs+Bu26woIeBBx FHDl6npTdMpEEDUt6B5sex7EYsDwK2WcPuIg6ulXd0V2iegp78gzTyHJpOJUlaju bVKnXehwfWSaM7w+U2X1rSXi0vdJ+qHCBlPXbnsO8845fWJADq8uJnyBovM8Szv5 Cgu40A== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org