$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa File: 680DBCE8CACA11EEAD1A2260C4F9AE02.roa (raw, json) Hash identifier: U8q3bhBl7h+tpQnyqBX5gAZWqGeJKUO/ZwPDy0dtvAk= Subject key identifier: 02:3F:35:EB:59:09:FE:4F:6D:BF:AD:86:00:02:70:12:ED:01:BB:89 Certificate issuer: /CN=A91DE500/serialNumber=B9CA79FB685C2EFF3FB9CCB9CD2D848116908A32 Certificate serial: 02 Authority key identifier: B9:CA:79:FB:68:5C:2E:FF:3F:B9:CC:B9:CD:2D:84:81:16:90:8A:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa Signing time: Tue 13 Feb 2024 23:48:37 +0000 ROA not before: Tue 13 Feb 2024 23:48:37 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152469 IP address blocks: 157.15.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500/serialNumber=B9CA79FB685C2EFF3FB9CCB9CD2D848116908A32 Validity Not Before: Feb 13 23:48:37 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65cbffd5-9de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ef:5e:81:3e:f3:fb:d6:16:71:a1:84:8e:10: 45:be:41:4a:a5:17:cc:29:bf:1e:aa:8f:09:8d:a1: cf:e5:ed:a2:ee:07:56:c7:dc:d9:b4:cb:d3:fb:06: 10:64:7a:60:b5:91:87:de:ff:e8:b6:4b:f7:5e:98: 49:22:ef:00:44:4d:a5:ae:ad:f1:2f:69:10:12:72: 8f:4f:6b:f0:5d:ba:4b:76:78:dd:01:fc:8e:d6:f3: 8a:e2:2f:c8:ff:cc:cb:56:f0:97:0b:6d:e4:8d:99: 36:2e:3d:54:09:30:08:c9:7e:a0:f9:2b:a9:ad:5c: b0:1c:e2:9c:99:b7:3c:4d:b7:aa:93:83:bd:df:b5: a3:b4:c7:af:a5:64:91:78:58:e8:1b:27:60:00:87: 52:2d:42:f3:6b:4b:cb:2c:00:fe:27:f5:f5:dc:ce: 21:3d:81:b2:39:f0:61:0b:db:d2:be:7a:6d:62:9f: bb:09:2d:c8:70:47:89:a0:56:c5:b1:5d:05:b0:00: 60:ca:3d:ec:41:e1:4c:90:30:8e:ad:dd:0d:71:79: c9:68:e6:21:55:89:8c:35:f1:1b:7e:74:76:da:72: 90:ac:94:eb:17:ca:b6:77:8b:9d:ff:94:e3:02:be: 95:bc:36:6d:8f:5e:1b:55:e0:11:15:2b:a3:25:cc: 52:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3F:35:EB:59:09:FE:4F:6D:BF:AD:86:00:02:70:12:ED:01:BB:89 X509v3 Authority Key Identifier: keyid:B9:CA:79:FB:68:5C:2E:FF:3F:B9:CC:B9:CD:2D:84:81:16:90:8A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.196.0/24 Signature Algorithm: sha256WithRSAEncryption 09:10:0a:0d:57:41:8f:a7:c0:b7:11:90:01:e7:f2:52:64:20: b0:1f:19:5e:6e:cd:85:7f:3c:8d:b2:a0:a3:43:99:09:92:51: 26:56:0c:ec:64:36:20:95:f0:b9:ee:07:a6:c5:8b:4a:ef:4d: d8:76:f2:9f:3e:65:af:fb:3c:36:d6:6b:5b:da:f0:f3:b9:37: e4:ab:61:1c:95:8f:30:86:0c:64:76:3e:0d:da:1c:fa:1b:00: c8:22:83:93:59:82:7f:e7:ca:5d:c7:d1:97:46:9e:ed:c0:70: 20:c5:39:07:06:ca:05:71:4f:89:57:f1:10:82:04:93:24:29: 7d:45:9b:c4:f2:29:cd:ea:26:b9:99:d1:02:ff:b5:ed:78:e3: 2f:20:e3:bb:56:c3:54:da:0d:45:24:20:7b:11:de:7a:48:2c: ee:a5:6a:03:40:c3:df:57:b1:fc:04:4b:8a:ec:34:c3:71:97: a5:48:fe:e2:ee:0a:70:7e:e1:50:da:5a:a7:80:35:3b:21:02: da:69:00:ed:7e:f0:f6:21:08:8d:12:3d:34:88:16:66:b6:24: be:88:9f:6c:af:af:77:6e:51:da:e2:43:b2:69:c8:78:49:5f: 41:5a:7b:d2:43:6a:d0:bf:94:6d:54:02:a2:8d:e6:47:82:6b: be:30:7d:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTUwMDExMC8GA1UEBRMoQjlDQTc5RkI2ODVDMkVGRjNGQjlDQ0I5Q0QyRDg0ODEx NjkwOEEzMjAeFw0yNDAyMTMyMzQ4MzdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Y2JmZmQ1LTlkZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDn716BPvP71hZxoYSOEEW+QUqlF8wpvx6qjwmNoc/l7aLuB1bH3Nm0y9P7BhBk emC1kYfe/+i2S/demEki7wBETaWurfEvaRASco9Pa/Bdukt2eN0B/I7W84riL8j/ zMtW8JcLbeSNmTYuPVQJMAjJfqD5K6mtXLAc4pyZtzxNt6qTg73ftaO0x6+lZJF4 WOgbJ2AAh1ItQvNrS8ssAP4n9fXcziE9gbI58GEL29K+em1in7sJLchwR4mgVsWx XQWwAGDKPexB4UyQMI6t3Q1xeclo5iFViYw18Rt+dHbacpCslOsXyrZ3i53/lOMC vpW8Nm2PXhtV4BEVK6MlzFJpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAj8161kJ /k9tv62GAAJwEu0Bu4kwHwYDVR0jBBgwFoAUucp5+2hcLv8/ucy5zS2EgRaQijIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFNTAwLzNGRkY1QzNFQzcy RDExRUU5QzdDMzUxREM0RjlBRTAyL3VjcDUtMmhjTHY4X3VjeTV6UzJFZ1JhUWlq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdWNwNS0yaGNMdjhfdWN5NXpTMkVnUmFRaWpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi82ODBEQkNFOENB Q0ExMUVFQUQxQTIyNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0PxDANBgkqhkiG9w0BAQsFAAOCAQEACRAKDVdBj6fAtxGQ AefyUmQgsB8ZXm7NhX88jbKgo0OZCZJRJlYM7GQ2IJXwue4HpsWLSu9N2Hbynz5l r/s8NtZrW9rw87k35KthHJWPMIYMZHY+Ddoc+hsAyCKDk1mCf+fKXcfRl0ae7cBw IMU5BwbKBXFPiVfxEIIEkyQpfUWbxPIpzeomuZnRAv+17XjjLyDju1bDVNoNRSQg exHeekgs7qVqA0DD31ex/ARLiuw0w3GXpUj+4u4KcH7hUNpap4A1OyEC2mkA7X7w 9iEIjRI9NIgWZrYkvoifbK+vd25R2uJDsmnIeElfQVp70kNq0L+UbVQCoo3mR4Jr vjB97A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org