$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa File: CE88A98AC63611EEA0C70259C4F9AE02.roa (raw, json) Hash identifier: snFkGaJtPrz2fSPhLeMxGCxMlcdrJtdDA8o9WlhAsV8= Subject key identifier: CE:14:59:B8:80:AB:DA:18:47:05:56:F7:47:DA:5A:76:76:65:62:24 Certificate issuer: /CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Certificate serial: 02 Authority key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa Signing time: Thu 08 Feb 2024 04:02:00 +0000 ROA not before: Thu 08 Feb 2024 04:02:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152330 IP address blocks: 157.15.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Validity Not Before: Feb 8 04:02:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c45237-823b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:bb:6e:3a:e6:ef:27:3f:6e:54:cf:a4:93: 32:a7:a3:97:d9:4c:8c:64:00:68:48:ca:67:9c:c5: e4:2e:ce:ce:b2:9b:b2:b3:42:8a:10:6d:cc:b9:d3: 15:49:13:98:fa:12:ed:44:64:ce:c0:51:ff:e8:a8: bc:42:b3:3f:8c:60:c0:82:8a:a7:33:53:b9:0a:f8: 28:8f:28:98:03:28:34:d1:8c:a5:e6:de:da:a3:10: 05:73:d5:36:05:3a:60:d4:01:34:6f:7a:3e:59:0a: 9d:ff:ba:e9:af:eb:61:e5:e9:41:51:39:a8:72:9b: bc:13:8a:8b:d4:a3:6b:49:aa:38:7e:0e:f0:5a:33: 4d:8a:17:3c:54:f1:c5:ac:d6:2b:32:7e:8d:32:54: 87:d3:cc:32:dc:ec:4f:4d:cf:3c:0d:a3:0e:8b:93: 5d:81:9c:3f:da:17:93:10:cd:af:0d:25:2c:3c:68: a1:d3:f8:82:85:ac:69:08:b9:3a:4a:cb:5e:29:59: 66:f2:af:21:a4:77:54:cb:a9:34:17:1e:41:a3:51: 99:f8:2c:50:31:62:f7:9f:26:55:8c:5d:25:6c:60: 3f:86:d5:a7:14:b7:a3:cd:01:90:38:76:e4:1f:3e: 63:ae:bb:62:a2:a3:e2:6f:c7:c8:63:10:81:42:81: 07:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:14:59:B8:80:AB:DA:18:47:05:56:F7:47:DA:5A:76:76:65:62:24 X509v3 Authority Key Identifier: keyid:5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.28.0/23 Signature Algorithm: sha256WithRSAEncryption aa:ea:ee:a1:15:c1:f6:91:0c:13:f2:30:8b:fe:57:5f:36:45: f7:ec:19:6f:7c:a4:ab:d2:aa:bb:ce:bb:8d:e5:a2:eb:b5:a9: 3b:0c:4e:87:fb:d7:bd:a2:38:90:8c:f3:74:6e:04:32:1d:21: bf:75:3b:e0:66:13:2d:09:f6:6b:b7:92:04:3e:46:e0:37:cf: 0c:a5:c8:98:69:7e:eb:75:3d:da:84:99:77:01:5e:3e:40:b8: a9:f8:64:0e:5a:d5:78:b7:44:99:93:35:49:4d:bb:d7:12:76: 70:b6:3a:25:47:e1:a2:a8:ed:25:1f:79:3e:9f:d3:88:f1:df: 3b:6a:2f:4a:63:1c:80:6d:89:17:73:08:f1:2b:15:1d:41:5c: 5a:f8:d2:5e:60:d2:6d:81:79:fd:36:07:ad:71:c5:70:f1:84: d7:41:51:8d:07:fc:83:9d:cf:2c:59:5a:0a:e2:28:20:33:09: a2:ab:15:f8:be:6f:1c:d5:d7:ca:de:a4:be:a1:b5:8d:d2:ba: d4:41:ac:59:78:9e:71:a5:dd:83:d8:71:cb:8f:38:42:79:1a: fd:c9:be:a5:71:59:59:35:52:e5:ef:c5:fe:db:5c:a9:33:e2: f5:e4:2c:99:26:39:f0:8a:8e:1e:d2:34:02:90:d0:43:e8:ba: e3:00:2c:9b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTkzNjExMC8GA1UEBRMoNUI1Q0M0MDMwOUEwN0MwM0RGMEI2MzA0RkNEODQwRjk1 MEJGQjA0MTAeFw0yNDAyMDgwNDAyMDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzQ1MjM3LTgyM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDISbtuOubvJz9uVM+kkzKno5fZTIxkAGhIymecxeQuzs6ym7KzQooQbcy50xVJ E5j6Eu1EZM7AUf/oqLxCsz+MYMCCiqczU7kK+CiPKJgDKDTRjKXm3tqjEAVz1TYF OmDUATRvej5ZCp3/uumv62Hl6UFROahym7wTiovUo2tJqjh+DvBaM02KFzxU8cWs 1isyfo0yVIfTzDLc7E9NzzwNow6Lk12BnD/aF5MQza8NJSw8aKHT+IKFrGkIuTpK y14pWWbyryGkd1TLqTQXHkGjUZn4LFAxYvefJlWMXSVsYD+G1acUt6PNAZA4duQf PmOuu2Kio+Jvx8hjEIFCgQc/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzhRZuICr 2hhHBVb3R9padnZlYiQwHwYDVR0jBBgwFoAUW1zEAwmgfAPfC2ME/NhA+VC/sEEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxOTM2LzZFQjlDMDNFQzYz NjExRUVBQkNDMDQwQkM0RjlBRTAyL1cxekVBd21nZkFQZkMyTUVfTmhBLVZDX3NF RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVzF6RUF3bWdmQVBmQzJNRV9OaEEtVkNfc0VFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTkzNi82RUI5QzAzRUM2MzYxMUVFQUJDQzA0MEJDNEY5QUUwMi9DRTg4QTk4QUM2 MzYxMUVFQTBDNzAyNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PHDANBgkqhkiG9w0BAQsFAAOCAQEAquruoRXB9pEME/Iw i/5XXzZF9+wZb3ykq9Kqu867jeWi67WpOwxOh/vXvaI4kIzzdG4EMh0hv3U74GYT LQn2a7eSBD5G4DfPDKXImGl+63U92oSZdwFePkC4qfhkDlrVeLdEmZM1SU271xJ2 cLY6JUfhoqjtJR95Pp/TiPHfO2ovSmMcgG2JF3MI8SsVHUFcWvjSXmDSbYF5/TYH rXHFcPGE10FRjQf8g53PLFlaCuIoIDMJoqsV+L5vHNXXyt6kvqG1jdK61EGsWXie caXdg9hxy484Qnka/cm+pXFZWTVS5e/F/ttcqTPi9eQsmSY58IqOHtI0ApDQQ+i6 4wAsmw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org