$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa File: 8C508DC055F711EFA5200828C4F9AE02.roa (raw, json) Hash identifier: KEgLk+hGlo+ZizW1vX2gzUtxbx7GiIfh4Mia0eW5+6w= Subject key identifier: BB:57:A8:49:EC:43:F1:28:79:FD:CC:E9:04:D0:7A:3D:FD:AD:7A:75 Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 72 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa Signing time: Fri 09 Aug 2024 02:31:57 +0000 ROA not before: Fri 09 Aug 2024 02:31:57 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140362 IP address blocks: 157.10.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Aug 9 02:31:57 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66b57f9d-94e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:15:b9:49:be:09:e3:76:0f:f9:f8:3f:9b: 36:ef:bd:ca:18:32:02:8e:0f:6a:de:4e:0c:74:a2: 88:f2:89:bf:1d:99:4e:9d:c9:c6:c1:99:1f:d2:89: 73:d0:71:82:35:9d:36:a8:17:eb:9c:82:ca:e2:9e: cb:a6:b5:50:f8:e8:99:85:69:f1:61:3f:40:1f:01: 89:13:93:68:65:c8:c7:37:a5:d4:de:31:8c:d3:1d: 1a:39:79:db:41:12:41:b2:19:63:da:3f:49:4a:a1: cb:0e:07:fd:91:54:64:11:a5:2f:30:be:be:b1:a0: e1:56:11:c6:35:b0:3c:ac:11:b5:e6:f1:c3:d4:3b: c8:8a:55:88:ab:9a:7f:5d:2a:6c:62:4e:8e:1a:bf: d5:69:2e:af:cc:b2:0d:8b:d4:fa:31:74:e8:c1:eb: 81:76:49:a7:99:ba:a4:3c:f2:a1:9a:ec:ca:ca:c0: 13:e3:c9:e2:00:d4:51:aa:57:68:fc:e1:4e:e5:c2: cf:a4:ca:6f:95:43:8d:dd:e1:d7:c6:0f:28:6e:61: a6:d2:d2:e9:91:c5:d1:33:28:af:b9:6d:db:e1:47: dd:07:2a:6f:ad:53:5d:b7:ce:8a:9f:47:6d:6f:12: ff:1c:66:5f:47:a8:bd:ed:e1:51:c1:b1:53:02:42: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:A8:49:EC:43:F1:28:79:FD:CC:E9:04:D0:7A:3D:FD:AD:7A:75 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.251.0/24 Signature Algorithm: sha256WithRSAEncryption af:44:67:f9:8e:4f:fb:1b:c6:65:0d:ff:3e:4c:77:33:89:fd: dd:bc:b4:c2:0f:77:da:72:55:9c:d5:1a:04:2e:c6:95:c2:14: 4a:9d:fc:fb:4f:a1:91:d6:5e:bb:6a:5f:ab:7b:4c:7c:b9:4f: cf:e8:bd:8c:3a:86:09:cf:7a:54:ea:b0:39:8f:a0:ed:b1:cb: 0d:b9:26:85:3c:9c:a5:f1:44:f5:b0:93:5e:67:1e:83:c2:19: b2:18:b4:f6:45:57:7c:1f:1d:21:62:4a:03:7c:db:a0:59:68: 90:01:6c:d9:e4:77:35:b2:4e:8a:1f:f7:cb:71:07:ca:e2:49: a8:fc:63:45:a5:20:0a:69:d6:09:1c:40:2d:19:0c:e2:57:61: c4:b6:b8:e7:84:9e:bc:8b:21:ac:46:e4:d9:74:ff:db:6a:89: b7:88:d7:58:dc:27:f3:52:27:f8:ad:c9:27:09:69:d4:57:b7: 48:b3:07:20:aa:f9:5e:86:67:f0:6c:ea:c4:21:73:f6:7b:1d: 63:13:60:51:16:99:1a:33:33:62:fa:1a:93:b5:96:50:cf:ef: 4b:f6:4d:89:76:1e:c9:c4:6d:9e:07:40:a2:38:af:1f:08:6c: 25:ad:0c:14:07:55:f6:55:ba:81:a4:76:31:fc:22:8b:a2:3f: b6:b6:30:67 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NjNBRjExMC8GA1UEBRMoMzQ3NEMyNTM5ODYxMTAwQUZEOTYzQTE2M0M4MDJEMDI2 NEY4RUM3RDAeFw0yNDA4MDkwMjMxNTdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjU3ZjlkLTk0ZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5SxW5Sb4J43YP+fg/mzbvvcoYMgKOD2reTgx0oojyib8dmU6dycbBmR/SiXPQ cYI1nTaoF+ucgsrinsumtVD46JmFafFhP0AfAYkTk2hlyMc3pdTeMYzTHRo5edtB EkGyGWPaP0lKocsOB/2RVGQRpS8wvr6xoOFWEcY1sDysEbXm8cPUO8iKVYirmn9d KmxiTo4av9VpLq/Msg2L1PoxdOjB64F2SaeZuqQ88qGa7MrKwBPjyeIA1FGqV2j8 4U7lws+kym+VQ43d4dfGDyhuYabS0umRxdEzKK+5bdvhR90HKm+tU123zoqfR21v Ev8cZl9HqL3t4VHBsVMCQsmTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUu1eoSexD 8Sh5/czpBNB6Pf2tenUwHwYDVR0jBBgwFoAUNHTCU5hhEAr9ljoWPIAtAmT47H0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2M0FGLzRERkU2ODI0QjZC NzExRUVBOUQ3RkMzQUM0RjlBRTAyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTkhUQ1U1aGhFQXI5bGpvV1BJQXRBbVQ0N0gwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi84QzUwOERDMDU1 RjcxMUVGQTUyMDA4MjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0K+zANBgkqhkiG9w0BAQsFAAOCAQEAr0Rn+Y5P+xvGZQ3/ Pkx3M4n93by0wg932nJVnNUaBC7GlcIUSp38+0+hkdZeu2pfq3tMfLlPz+i9jDqG Cc96VOqwOY+g7bHLDbkmhTycpfFE9bCTXmceg8IZshi09kVXfB8dIWJKA3zboFlo kAFs2eR3NbJOih/3y3EHyuJJqPxjRaUgCmnWCRxALRkM4ldhxLa454SevIshrEbk 2XT/22qJt4jXWNwn81In+K3JJwlp1Fe3SLMHIKr5XoZn8GzqxCFz9nsdYxNgURaZ GjMzYvoak7WWUM/vS/ZNiXYeycRtngdAojivHwhsJa0MFAdV9lW6gaR2Mfwii6I/ trYwZw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org