$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/5C0778D42FC011EF8A6D832FC4F9AE02.roa File: 5C0778D42FC011EF8A6D832FC4F9AE02.roa (raw, json) Hash identifier: KcSGSJdJ4hjBIrByd6Jh9h10gk3ySnfjjKKxTLLFHX0= Subject key identifier: 25:9D:AA:5F:37:FA:8E:19:45:C3:D5:B1:58:C8:FC:C8:57:FE:F1:37 Certificate issuer: /CN=A91FA851/serialNumber=50A0DC9558A6C40DDCD535FB7B5C0BEEA66E04E4 Certificate serial: 5A Authority key identifier: 50:A0:DC:95:58:A6:C4:0D:DC:D5:35:FB:7B:5C:0B:EE:A6:6E:04:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKDclVimxA3c1TX7e1wL7qZuBOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/5C0778D42FC011EF8A6D832FC4F9AE02.roa Signing time: Fri 21 Jun 2024 11:22:07 +0000 ROA not before: Fri 21 Jun 2024 11:22:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138548 IP address blocks: 157.15.20.0/23 maxlen: 23 157.15.20.0/24 maxlen: 24 157.15.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/UKDclVimxA3c1TX7e1wL7qZuBOQ.crl rsync://rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/UKDclVimxA3c1TX7e1wL7qZuBOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKDclVimxA3c1TX7e1wL7qZuBOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA851/serialNumber=50A0DC9558A6C40DDCD535FB7B5C0BEEA66E04E4 Validity Not Before: Jun 21 11:22:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6675625f-3bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5d:91:15:b8:f1:a5:6b:1c:4c:b2:c4:a2:5b: c6:cd:9d:d4:e4:07:bc:b8:c0:40:1d:a6:04:e9:ef: 2b:7e:ab:84:52:ec:05:a1:db:a1:94:2f:55:2c:f9: 95:24:9c:e7:05:2a:bf:57:b9:3d:c0:02:77:36:24: 22:01:c3:e8:3d:55:c1:f8:d1:cd:9a:27:ca:cf:94: cf:df:24:78:86:d5:e2:6c:70:e2:97:99:81:0f:8c: a1:72:1a:f6:50:27:d8:df:dc:6e:2e:0e:5f:4b:1b: 8d:aa:e3:08:9f:c0:be:63:1d:bf:32:48:b8:28:74: 9a:54:76:b4:ba:78:4f:b5:6f:80:39:19:48:e4:be: 73:f1:9b:2d:c2:83:2c:23:c6:5d:69:a1:6f:bc:55: 5e:c2:a6:05:87:d3:74:10:6a:09:16:ff:20:08:24: 22:2d:bb:c8:af:a8:f5:0d:6d:bf:06:bd:28:88:ee: a3:21:ab:ed:24:04:52:31:77:58:02:34:57:83:8c: 26:bc:17:44:3f:f6:58:86:fd:e7:d8:15:a9:82:c5: cb:0c:c6:8d:88:f3:3d:6c:9b:85:05:eb:2f:fd:2c: 0a:a3:b8:57:5f:04:9d:52:1f:5d:58:b1:fd:52:bf: 39:31:98:4a:f2:cf:13:ad:47:be:55:57:85:f2:65: 6f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9D:AA:5F:37:FA:8E:19:45:C3:D5:B1:58:C8:FC:C8:57:FE:F1:37 X509v3 Authority Key Identifier: keyid:50:A0:DC:95:58:A6:C4:0D:DC:D5:35:FB:7B:5C:0B:EE:A6:6E:04:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/UKDclVimxA3c1TX7e1wL7qZuBOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKDclVimxA3c1TX7e1wL7qZuBOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA851/8BC5127CB9DF11EE94B4242AC4F9AE02/5C0778D42FC011EF8A6D832FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.20.0/23 Signature Algorithm: sha256WithRSAEncryption 78:3c:d3:52:74:63:62:1e:43:05:15:a5:13:64:9b:cf:02:e5: 66:fa:da:e7:5f:44:4f:0b:db:b1:cc:3e:ed:b9:fe:ff:dd:2d: e0:7f:c8:57:1b:42:cc:5d:1b:e2:47:c7:c5:db:34:14:20:1d: a7:1b:f5:a2:9e:2b:59:44:47:b1:ab:1a:ca:83:13:e3:ed:be: 5b:12:46:0c:68:40:ae:b5:5c:26:ac:06:95:12:26:49:10:c6: 75:07:17:19:63:21:b3:ff:1a:0e:b3:ea:10:5b:39:05:a4:f0: c7:82:18:f1:ed:84:10:f4:80:e7:83:c4:ff:06:0a:1a:b5:bd: 7b:c2:da:71:06:2f:3a:d7:4b:49:41:09:7a:14:34:0d:01:e9: 5f:e0:65:12:8f:f8:36:9a:bc:96:c1:60:8d:32:37:35:c6:75: 30:d5:8f:95:00:28:8c:54:d6:1e:d2:e0:68:78:d1:a9:af:54: 23:88:95:b1:9c:1e:85:05:ff:af:09:d3:8f:dd:99:25:db:1c: d9:58:86:b0:85:cf:b0:37:7f:7a:7a:a0:39:3c:17:40:62:4f: f2:b1:f9:33:c1:1e:36:b3:93:ac:b8:d0:c1:5c:fd:97:9c:2a: 51:01:64:1f:47:80:c2:a8:5e:14:a8:d1:c3:90:64:c3:bc:ce: b0:d1:e7:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTg1MTExMC8GA1UEBRMoNTBBMERDOTU1OEE2QzQwRERDRDUzNUZCN0I1QzBCRUVB NjZFMDRFNDAeFw0yNDA2MjExMTIyMDdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzU2MjVmLTNiZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFXZEVuPGlaxxMssSiW8bNndTkB7y4wEAdpgTp7yt+q4RS7AWh26GUL1Us+ZUk nOcFKr9XuT3AAnc2JCIBw+g9VcH40c2aJ8rPlM/fJHiG1eJscOKXmYEPjKFyGvZQ J9jf3G4uDl9LG42q4wifwL5jHb8ySLgodJpUdrS6eE+1b4A5GUjkvnPxmy3Cgywj xl1poW+8VV7CpgWH03QQagkW/yAIJCItu8ivqPUNbb8GvSiI7qMhq+0kBFIxd1gC NFeDjCa8F0Q/9liG/efYFamCxcsMxo2I8z1sm4UF6y/9LAqjuFdfBJ1SH11Ysf1S vzkxmEryzxOtR75VV4XyZW/3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJZ2qXzf6 jhlFw9WxWMj8yFf+8TcwHwYDVR0jBBgwFoAUUKDclVimxA3c1TX7e1wL7qZuBOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBODUxLzhCQzUxMjdDQjlE RjExRUU5NEI0MjQyQUM0RjlBRTAyL1VLRGNsVmlteEEzYzFUWDdlMXdMN3FadUJP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUtEY2xWaW14QTNjMVRYN2Uxd0w3cVp1Qk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTg1MS84QkM1MTI3Q0I5REYxMUVFOTRCNDI0MkFDNEY5QUUwMi81QzA3NzhENDJG QzAxMUVGOEE2RDgzMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PFDANBgkqhkiG9w0BAQsFAAOCAQEAeDzTUnRjYh5DBRWl E2SbzwLlZvra519ETwvbscw+7bn+/90t4H/IVxtCzF0b4kfHxds0FCAdpxv1op4r WURHsasayoMT4+2+WxJGDGhArrVcJqwGlRImSRDGdQcXGWMhs/8aDrPqEFs5BaTw x4IY8e2EEPSA54PE/wYKGrW9e8LacQYvOtdLSUEJehQ0DQHpX+BlEo/4Npq8lsFg jTI3NcZ1MNWPlQAojFTWHtLgaHjRqa9UI4iVsZwehQX/rwnTj92ZJdsc2ViGsIXP sDd/enqgOTwXQGJP8rH5M8EeNrOTrLjQwVz9l5wqUQFkH0eAwqheFKjRw5Bkw7zO sNHnGw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:22 2024 by rpki-client on console-ams.rpki-client.org