$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/A146F2C2ECD011EE8891034AC4F9AE02.roa File: A146F2C2ECD011EE8891034AC4F9AE02.roa (raw, json) Hash identifier: FmKOoIy9+bgPVPKgarvTsauo+TWTKJRdnaWb6dHntdQ= Subject key identifier: F6:BA:0E:52:D5:9E:96:7E:B3:B2:FF:C2:2F:20:D5:2E:95:E9:26:90 Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 02 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/A146F2C2ECD011EE8891034AC4F9AE02.roa Signing time: Thu 28 Mar 2024 06:58:50 +0000 ROA not before: Thu 28 Mar 2024 06:58:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138467 IP address blocks: 157.10.6.0/24 maxlen: 24 157.10.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Mar 28 06:58:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6605152a-0c87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:91:5d:84:c4:7c:bb:80:1f:8f:1f:3e:86:8a: c6:48:2c:4e:ec:6e:30:86:56:e4:e1:c6:e8:c6:66: df:ff:7a:e1:29:40:1f:6b:5c:2e:8f:f0:6a:77:c1: 08:51:29:c4:fb:f7:69:76:9d:cd:67:b8:ea:1e:65: d1:a8:b4:92:ab:97:1d:a1:a7:de:25:8b:49:5c:c1: a2:73:b9:fb:03:b3:df:01:5b:e8:fa:af:4e:d3:4f: 5e:d5:a3:d2:bb:14:8b:32:27:79:46:5b:38:05:34: 7e:ee:2e:31:0f:0f:37:06:f3:dd:e2:2a:59:7c:74: df:99:37:7b:9d:cc:3f:01:14:2b:eb:5a:b0:48:a6: 64:cc:2b:d8:f3:b8:e7:89:2e:7a:a7:51:c8:39:aa: b0:ae:1b:ea:4d:76:0a:27:69:a1:67:3e:8f:cf:b7: e6:47:29:5f:9b:20:80:b4:17:8a:fa:8b:39:f1:6b: 02:ac:17:8b:95:2b:0d:a5:ec:4f:46:28:b8:53:d0: a2:6b:1d:82:68:ba:01:a5:d0:8f:1a:ef:be:80:24: e5:23:95:33:53:28:26:b1:52:fc:f4:c3:66:19:47: 05:e2:22:0b:02:9e:61:f7:81:01:46:5f:f0:96:a9: 4e:5d:14:b3:88:7e:00:ed:90:e2:a2:ba:c2:8b:00: fa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BA:0E:52:D5:9E:96:7E:B3:B2:FF:C2:2F:20:D5:2E:95:E9:26:90 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/A146F2C2ECD011EE8891034AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.6.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:63:aa:eb:b5:e0:8c:67:a6:d3:b5:93:e3:1e:90:21:30:a3: 59:cb:3b:18:fe:cd:44:d8:c3:b7:c8:2d:01:7d:dc:ef:da:79: 43:64:e6:3a:1a:0d:b7:76:aa:92:12:c3:a9:16:61:dd:a6:62: b4:37:01:42:ec:4f:a9:45:5f:58:fd:40:84:3c:35:6f:cf:3c: 91:ad:cc:bd:15:b1:e5:4f:ed:49:42:15:99:d4:1f:ee:e0:28: 35:03:57:6b:3f:ab:ed:44:40:d7:50:82:1d:10:80:12:96:8a: 04:ad:2a:d9:82:2d:fe:40:1e:c1:a7:a1:89:00:aa:e2:bf:0d: d9:ac:ce:36:26:36:54:32:9f:d3:91:73:86:73:36:c9:89:a9: aa:16:ea:6d:41:43:82:9e:b3:28:1c:a4:c1:cb:ba:3d:c5:f8: 0e:a8:98:4e:88:8f:8f:7d:bb:53:32:51:ef:58:0f:40:0e:71: a3:d1:93:e3:c2:53:23:5a:cb:f6:22:35:5e:7d:6f:9f:21:ed: dd:a3:34:41:c1:a2:5a:ac:a4:30:0f:3c:f0:92:07:ab:f9:16: 20:9d:77:67:df:59:c3:e0:68:75:dc:85:af:23:4d:f7:8a:27: 20:99:5b:94:b1:08:e8:71:56:b4:9d:50:ee:0d:df:d2:d2:a5: c6:99:fc:b0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Mzk4OTExMC8GA1UEBRMoOUE0N0JGNDBCRDQ4ODdFMjI0MTUzMzI3OUU3RjFEN0Yy QTVGNkZCQjAeFw0yNDAzMjgwNjU4NTBaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDUxNTJhLTBjODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWkV2ExHy7gB+PHz6GisZILE7sbjCGVuThxujGZt//euEpQB9rXC6P8Gp3wQhR KcT792l2nc1nuOoeZdGotJKrlx2hp94li0lcwaJzufsDs98BW+j6r07TT17Vo9K7 FIsyJ3lGWzgFNH7uLjEPDzcG893iKll8dN+ZN3udzD8BFCvrWrBIpmTMK9jzuOeJ LnqnUcg5qrCuG+pNdgonaaFnPo/Pt+ZHKV+bIIC0F4r6iznxawKsF4uVKw2l7E9G KLhT0KJrHYJougGl0I8a776AJOUjlTNTKCaxUvz0w2YZRwXiIgsCnmH3gQFGX/CW qU5dFLOIfgDtkOKiusKLAPpNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9roOUtWe ln6zsv/CLyDVLpXpJpAwHwYDVR0jBBgwFoAUmke/QL1Ih+IkFTMnnn8dfypfb7sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzOTg5LzMxNjFDMzdFRUNE MDExRUU4QTIyNEQ0OUM0RjlBRTAyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbWtlX1FMMUloLUlrRlRNbm5uOGRmeXBmYjdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9BMTQ2RjJDMkVD RDAxMUVFODg5MTAzNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KBjANBgkqhkiG9w0BAQsFAAOCAQEALWOq67XgjGem07WT 4x6QITCjWcs7GP7NRNjDt8gtAX3c79p5Q2TmOhoNt3aqkhLDqRZh3aZitDcBQuxP qUVfWP1AhDw1b888ka3MvRWx5U/tSUIVmdQf7uAoNQNXaz+r7URA11CCHRCAEpaK BK0q2YIt/kAewaehiQCq4r8N2azONiY2VDKf05FzhnM2yYmpqhbqbUFDgp6zKByk wcu6PcX4DqiYToiPj327UzJR71gPQA5xo9GT48JTI1rL9iI1Xn1vnyHt3aM0QcGi WqykMA888JIHq/kWIJ13Z99Zw+BoddyFryNN94onIJlblLEI6HFWtJ1Q7g3f0tKl xpn8sA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org