$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/0423873AD9C511EEA944FA80C4F9AE02.roa File: 0423873AD9C511EEA944FA80C4F9AE02.roa (raw, json) Hash identifier: tIcPw3vxXvLhp6nfbIDwhgBEsWGNygmBVtBY2PyYGew= Subject key identifier: D2:5F:54:DE:C7:78:30:4B:1C:07:C9:6A:CF:1C:15:41:E7:F9:63:ED Certificate issuer: /CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Certificate serial: 12 Authority key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/0423873AD9C511EEA944FA80C4F9AE02.roa Signing time: Mon 04 Mar 2024 01:17:50 +0000 ROA not before: Mon 04 Mar 2024 01:17:50 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 5068 IP address blocks: 157.15.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Validity Not Before: Mar 4 01:17:50 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e5213d-c212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e9:93:75:af:22:4a:85:d6:62:8f:b6:cf:54: 70:ac:e3:c6:a5:f1:99:3a:b2:6d:95:67:71:eb:72: 63:32:d7:a3:37:e9:6f:fc:10:d5:ce:28:98:67:ee: fc:2a:a5:eb:36:9c:e8:d2:42:ce:48:20:3e:54:a6: fd:5d:54:0d:b3:bc:90:21:aa:94:5f:89:2e:43:45: fe:15:49:26:22:14:42:9c:f9:48:ba:ce:36:fe:60: fa:a3:3d:8a:e3:ad:76:78:18:f6:cd:b4:e8:fb:40: 65:f0:fb:d9:a4:2f:05:9e:b9:84:b6:b5:9e:1a:22: 2f:32:ff:49:d7:2c:40:c9:1a:0a:02:db:84:41:0b: 2c:10:39:aa:c4:7f:a4:4b:f6:af:53:ab:72:c9:1d: 91:22:75:f5:1d:ea:1f:22:85:89:0f:47:93:64:67: 4b:f7:2e:80:6f:27:97:b9:fd:c9:b2:90:b1:96:5b: d9:dd:0f:e2:4e:43:ac:62:95:fe:ff:ca:4a:d0:ca: 4f:72:89:df:71:5a:e1:d7:54:de:3b:42:30:7b:87: f4:37:85:36:48:db:df:38:45:2f:5f:cb:c9:63:cb: 85:e7:32:5c:5f:47:d3:b3:9f:26:63:c8:20:9c:0c: 09:07:c9:53:4a:26:c3:ac:ad:cf:b8:94:9f:38:3d: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:5F:54:DE:C7:78:30:4B:1C:07:C9:6A:CF:1C:15:41:E7:F9:63:ED X509v3 Authority Key Identifier: keyid:5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/0423873AD9C511EEA944FA80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.28.0/23 Signature Algorithm: sha256WithRSAEncryption 57:64:c0:20:54:9d:c7:37:46:6c:59:e7:17:9e:31:76:16:70: b1:d7:a1:05:76:bc:a3:be:6f:f1:b1:c3:a8:14:80:22:93:f7: 52:59:bd:01:39:34:49:b9:2f:97:fd:26:ca:eb:5a:da:28:3d: b9:ff:32:9c:86:da:f4:71:1f:c2:68:f8:09:ce:0f:42:d2:cc: e9:4b:29:21:c4:07:17:cb:97:5b:53:a2:c9:3a:e7:6a:3d:73: 78:a9:1e:9f:d2:c9:2b:d2:6e:18:00:16:13:20:c7:f6:88:c0: 78:66:7b:39:90:25:33:97:32:36:c8:89:81:33:07:16:17:1e: 44:ae:f0:3d:bb:52:28:5e:26:f0:b0:5d:f1:36:5b:21:35:3c: 39:66:fa:ab:3e:93:63:bc:ba:e7:32:ff:01:48:ab:b2:14:7e: 82:73:10:75:c9:b8:25:2e:75:03:c0:e7:33:5c:d9:b0:58:df: 1f:3e:8c:f6:75:65:2e:1b:aa:38:31:fc:49:95:8b:57:8e:8c: 43:78:cc:98:8c:d3:ef:e6:24:fd:25:d5:59:2d:3a:19:e6:44: e1:60:65:15:23:6e:7e:3d:fd:5d:69:00:35:e9:64:b0:4b:62: bf:f4:9d:c8:08:82:16:1b:7e:f1:4f:f8:85:a5:db:fe:60:91: b3:dc:69:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTkzNjExMC8GA1UEBRMoNUI1Q0M0MDMwOUEwN0MwM0RGMEI2MzA0RkNEODQwRjk1 MEJGQjA0MTAeFw0yNDAzMDQwMTE3NTBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTUyMTNkLWMyMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM6ZN1ryJKhdZij7bPVHCs48al8Zk6sm2VZ3HrcmMy16M36W/8ENXOKJhn7vwq pes2nOjSQs5IID5Upv1dVA2zvJAhqpRfiS5DRf4VSSYiFEKc+Ui6zjb+YPqjPYrj rXZ4GPbNtOj7QGXw+9mkLwWeuYS2tZ4aIi8y/0nXLEDJGgoC24RBCywQOarEf6RL 9q9Tq3LJHZEidfUd6h8ihYkPR5NkZ0v3LoBvJ5e5/cmykLGWW9ndD+JOQ6xilf7/ ykrQyk9yid9xWuHXVN47QjB7h/Q3hTZI2984RS9fy8ljy4XnMlxfR9OznyZjyCCc DAkHyVNKJsOsrc+4lJ84PQWfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0l9U3sd4 MEscB8lqzxwVQef5Y+0wHwYDVR0jBBgwFoAUW1zEAwmgfAPfC2ME/NhA+VC/sEEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxOTM2LzZFQjlDMDNFQzYz NjExRUVBQkNDMDQwQkM0RjlBRTAyL1cxekVBd21nZkFQZkMyTUVfTmhBLVZDX3NF RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVzF6RUF3bWdmQVBmQzJNRV9OaEEtVkNfc0VFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTkzNi82RUI5QzAzRUM2MzYxMUVFQUJDQzA0MEJDNEY5QUUwMi8wNDIzODczQUQ5 QzUxMUVFQTk0NEZBODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PHDANBgkqhkiG9w0BAQsFAAOCAQEAV2TAIFSdxzdGbFnn F54xdhZwsdehBXa8o75v8bHDqBSAIpP3Ulm9ATk0Sbkvl/0myuta2ig9uf8ynIba 9HEfwmj4Cc4PQtLM6UspIcQHF8uXW1OiyTrnaj1zeKken9LJK9JuGAAWEyDH9ojA eGZ7OZAlM5cyNsiJgTMHFhceRK7wPbtSKF4m8LBd8TZbITU8OWb6qz6TY7y65zL/ AUirshR+gnMQdcm4JS51A8DnM1zZsFjfHz6M9nVlLhuqODH8SZWLV46MQ3jMmIzT 7+Yk/SXVWS06GeZE4WBlFSNufj39XWkANelksEtiv/SdyAiCFht+8U/4haXb/mCR s9xp7A== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org