$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa File: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (raw, json) Hash identifier: G9EIa2BVNO7fX3LicRxHEyaNZZ8dyrZGH4JhXSaCDa8= Subject key identifier: EB:C8:7D:BF:BC:0A:B0:DE:B8:96:93:F9:AA:7F:3F:E8:6E:CE:DD:9A Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 07 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa Signing time: Mon 19 Feb 2024 06:02:46 +0000 ROA not before: Mon 19 Feb 2024 06:02:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137190 IP address blocks: 157.10.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Feb 19 06:02:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d2ef05-d974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:6f:73:e5:37:b5:8f:f0:d1:9e:84:00:27: 68:a8:6e:de:46:51:06:4f:32:c5:93:5a:2c:b0:5b: c0:0c:67:c4:86:d3:14:0d:d9:f1:34:9b:73:9f:93: f3:63:3a:fc:a5:93:a5:2b:e4:e1:28:84:83:d6:39: 33:ff:b7:bd:9b:2d:66:02:56:06:82:c5:db:b3:75: 58:f0:dc:f5:d9:8d:63:b8:bc:42:9f:b4:70:72:e4: 6e:12:3d:42:c8:36:32:97:8e:95:80:1a:49:10:c4: 2b:f9:a7:e2:5e:cb:c1:db:fe:ed:d4:5e:dd:8e:e5: c6:d4:0d:98:4c:a7:8a:1a:09:ed:84:c9:8e:52:4a: 34:81:39:cd:de:ca:52:58:9f:bd:3a:d9:ee:10:44: 4f:9a:eb:dc:ba:a8:93:44:a1:3b:d1:a4:a0:0d:d3: 85:74:b3:ed:63:3c:bf:96:2e:7b:31:24:8f:59:12: fc:24:0a:1e:39:65:70:7e:6c:3b:e9:f8:eb:0a:d0: e3:22:84:74:4f:a3:ef:c8:f4:9b:4b:e9:f4:93:df: a7:f5:9f:21:92:14:3a:da:4c:8d:c1:90:b7:a2:47: 14:32:1e:ec:c3:83:76:5d:ba:c6:39:25:ce:8c:9d: 4e:9c:a9:37:7b:a0:f5:f3:86:00:64:ea:5c:18:4a: 7c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C8:7D:BF:BC:0A:B0:DE:B8:96:93:F9:AA:7F:3F:E8:6E:CE:DD:9A X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.162.0/23 Signature Algorithm: sha256WithRSAEncryption b9:16:12:0f:ce:9e:b7:10:f4:8d:a5:71:42:e1:a9:89:24:2f: b8:77:44:fa:b2:13:9c:82:c1:c3:2a:59:6b:09:52:74:aa:c0: 5e:0b:98:d7:ac:51:16:11:d3:7a:f7:ba:a6:02:35:c9:0d:63: cd:de:09:af:38:2d:5b:18:9f:42:2e:60:3f:88:fd:66:ab:5d: e2:9b:b3:c0:b9:4d:ff:ed:49:8a:ad:77:90:3c:8e:1b:d7:e8: 4c:ab:72:f7:52:aa:18:1b:ea:6f:8b:20:4d:3d:1a:e7:67:bc: 5c:33:3b:3b:a2:b4:03:c7:c3:35:df:14:dc:7d:21:d8:55:4a: 95:78:8b:33:36:30:ca:79:47:6f:61:4a:36:3e:1e:d4:97:dd: e3:a2:a8:28:8c:e5:b3:81:6e:be:b7:db:95:6d:92:ca:f8:b1: 2b:e8:09:e7:d4:00:12:d7:99:a5:f9:01:4a:fd:a0:af:bb:5c: bd:b0:82:01:db:cb:ee:ff:d9:28:fb:5d:0c:13:00:fe:d4:78: 77:a6:d0:36:a9:20:81:5a:67:41:18:d9:b8:81:96:e5:4f:cc: d2:40:d4:dd:5b:0c:86:f7:fc:be:7e:9f:8a:ee:6f:9a:51:29: a5:c9:3b:b8:e2:7f:a9:d8:00:8d:1e:84:2e:71:4e:03:7d:b1: d5:1f:d6:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QUJFRjExMC8GA1UEBRMoNjE5MDQwRTgzNUJBRDNEQ0Y1QzIwMTM5NkQ4NTcxOTk1 QTdBQ0M1MDAeFw0yNDAyMTkwNjAyNDZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDJlZjA1LWQ5NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9129z5Te1j/DRnoQAJ2iobt5GUQZPMsWTWiywW8AMZ8SG0xQN2fE0m3Ofk/Nj Ovylk6Ur5OEohIPWOTP/t72bLWYCVgaCxduzdVjw3PXZjWO4vEKftHBy5G4SPULI NjKXjpWAGkkQxCv5p+Jey8Hb/u3UXt2O5cbUDZhMp4oaCe2EyY5SSjSBOc3eylJY n7062e4QRE+a69y6qJNEoTvRpKAN04V0s+1jPL+WLnsxJI9ZEvwkCh45ZXB+bDvp +OsK0OMihHRPo+/I9JtL6fST36f1nyGSFDraTI3BkLeiRxQyHuzDg3ZdusY5Jc6M nU6cqTd7oPXzhgBk6lwYSnxJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU68h9v7wK sN64lpP5qn8/6G7O3ZowHwYDVR0jBBgwFoAUYZBA6DW609z1wgE5bYVxmVp6zFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBQkVGL0MwNzY0NTcyQ0Ix OTExRUU4MTVGQUI2OEM0RjlBRTAyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVpCQTZEVzYwOXoxd2dFNWJZVnhtVnA2ekZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi84MDQ1RTlBNENF RUMxMUVFQUZGQzVFMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KojANBgkqhkiG9w0BAQsFAAOCAQEAuRYSD86etxD0jaVx QuGpiSQvuHdE+rITnILBwypZawlSdKrAXguY16xRFhHTeve6pgI1yQ1jzd4Jrzgt WxifQi5gP4j9Zqtd4puzwLlN/+1Jiq13kDyOG9foTKty91KqGBvqb4sgTT0a52e8 XDM7O6K0A8fDNd8U3H0h2FVKlXiLMzYwynlHb2FKNj4e1Jfd46KoKIzls4Fuvrfb lW2SyvixK+gJ59QAEteZpfkBSv2gr7tcvbCCAdvL7v/ZKPtdDBMA/tR4d6bQNqkg gVpnQRjZuIGW5U/M0kDU3VsMhvf8vn6fiu5vmlEppck7uOJ/qdgAjR6ELnFOA32x 1R/WRg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:33 2024 by rpki-client on console-fra.rpki-client.org