$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa File: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (raw, json) Hash identifier: wMW69oQqpyhOd4UBylw123v1nFuYGuTgeodN2Ka6axA= Subject key identifier: B1:95:56:1C:D7:46:88:48:58:86:17:19:19:50:47:FF:6C:AC:EA:65 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 74 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa Signing time: Fri 20 Sep 2024 06:41:56 +0000 ROA not before: Fri 20 Sep 2024 06:41:56 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137190 IP address blocks: 157.10.162.0/23 maxlen: 23 157.10.162.0/24 maxlen: 24 157.10.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Sep 20 06:41:56 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66ed1934-4aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a9:bd:07:41:2f:c8:b8:a1:93:a5:93:4d:e8: b0:0f:bf:37:1b:d5:6a:c1:72:d7:d1:46:10:91:ea: 64:08:19:8a:6f:58:d5:54:70:ed:50:1f:53:67:f1: c2:b2:69:82:f7:01:3b:47:a0:16:bd:df:47:47:4d: 44:03:7e:3a:3c:98:9e:c1:e7:04:98:68:bb:a9:51: 19:47:97:44:be:98:cf:bd:d5:e2:4a:10:8a:91:be: 71:07:dd:c7:56:66:3b:12:c0:ec:ff:9e:46:77:17: 91:40:96:db:cb:ef:38:ab:5c:ae:51:1d:62:fa:d0: 6a:56:40:d4:8a:bd:fe:cc:02:ba:1b:56:e3:16:e1: fb:a5:3d:86:04:0b:59:11:32:68:8c:5e:e2:c8:d5: 7e:9f:52:12:92:3c:0a:ad:71:76:e7:67:e2:9e:08: 80:c6:5e:c7:e7:9a:0d:34:43:1f:ae:69:fd:58:f4: 37:d1:6a:3c:e6:b8:24:65:90:70:3e:a5:f4:ae:06: a5:3c:3a:d0:0a:17:e6:a6:8b:1b:d2:79:c4:b3:58: 88:a8:15:56:27:cf:f2:33:4e:be:bd:6f:1a:3e:85: 12:fb:5d:58:8c:03:d4:de:dd:e4:ff:62:df:86:bf: 47:19:fa:b3:f7:cf:95:01:39:23:87:19:7b:0a:4c: d6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:95:56:1C:D7:46:88:48:58:86:17:19:19:50:47:FF:6C:AC:EA:65 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.162.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:7c:4f:ce:b8:3a:2b:55:08:0d:53:3e:c1:fa:4c:13:58:25: a1:35:84:f8:4f:f5:99:3c:ae:16:dd:5b:ac:d0:b3:ba:d1:c8: f7:4a:2c:c8:94:9f:54:a0:bd:dd:0b:b9:26:10:5c:d4:02:4b: 9d:25:c7:b4:7a:01:3b:09:cc:f4:fb:ed:73:47:02:0c:7a:c6: 04:43:25:46:cc:c3:ff:bc:79:cc:7d:bc:5d:5c:67:1f:76:e9: 54:e7:4c:5b:cd:77:de:13:0a:86:d8:91:6c:55:2b:8d:2b:72: c5:fb:24:73:75:ac:d7:9c:5d:15:89:98:0c:f1:cb:4c:83:42: 1d:3f:e3:50:e8:54:c0:4f:9c:8f:f8:9f:00:2a:c2:9f:5a:30: f0:47:8a:fe:f1:f8:68:1e:6d:d6:82:de:54:70:aa:a9:80:a5: ad:ad:2a:47:af:7a:98:88:74:7c:24:bc:0b:f0:1a:b2:75:ef: 56:c3:bd:ac:be:45:8b:0a:75:0a:2d:d0:8e:ef:d3:7e:2e:8d: c3:bd:90:fb:5a:3f:db:55:68:86:ee:72:01:33:75:7a:22:cd: fa:66:00:19:29:14:ea:5e:59:19:c3:84:e8:d7:e3:65:d9:6a: eb:62:15:29:6d:f1:74:6d:d8:e2:97:3b:51:54:b2:41:61:a0: 24:e8:23:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QUJFRjExMC8GA1UEBRMoNjE5MDQwRTgzNUJBRDNEQ0Y1QzIwMTM5NkQ4NTcxOTk1 QTdBQ0M1MDAeFw0yNDA5MjAwNjQxNTZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWQxOTM0LTRhYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuqb0HQS/IuKGTpZNN6LAPvzcb1WrBctfRRhCR6mQIGYpvWNVUcO1QH1Nn8cKy aYL3ATtHoBa930dHTUQDfjo8mJ7B5wSYaLupURlHl0S+mM+91eJKEIqRvnEH3cdW ZjsSwOz/nkZ3F5FAltvL7zirXK5RHWL60GpWQNSKvf7MArobVuMW4fulPYYEC1kR MmiMXuLI1X6fUhKSPAqtcXbnZ+KeCIDGXsfnmg00Qx+uaf1Y9DfRajzmuCRlkHA+ pfSuBqU8OtAKF+amixvSecSzWIioFVYnz/IzTr69bxo+hRL7XViMA9Te3eT/Yt+G v0cZ+rP3z5UBOSOHGXsKTNYbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsZVWHNdG iEhYhhcZGVBH/2ys6mUwHwYDVR0jBBgwFoAUYZBA6DW609z1wgE5bYVxmVp6zFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBQkVGL0MwNzY0NTcyQ0Ix OTExRUU4MTVGQUI2OEM0RjlBRTAyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVpCQTZEVzYwOXoxd2dFNWJZVnhtVnA2ekZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi84MDQ1RTlBNENF RUMxMUVFQUZGQzVFMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KojANBgkqhkiG9w0BAQsFAAOCAQEATnxPzrg6K1UIDVM+ wfpME1gloTWE+E/1mTyuFt1brNCzutHI90osyJSfVKC93Qu5JhBc1AJLnSXHtHoB OwnM9Pvtc0cCDHrGBEMlRszD/7x5zH28XVxnH3bpVOdMW8133hMKhtiRbFUrjSty xfskc3Ws15xdFYmYDPHLTINCHT/jUOhUwE+cj/ifACrCn1ow8EeK/vH4aB5t1oLe VHCqqYClra0qR696mIh0fCS8C/AasnXvVsO9rL5Fiwp1Ci3Qju/Tfi6Nw72Q+1o/ 21Vohu5yATN1eiLN+mYAGSkU6l5ZGcOE6NfjZdlq62IVKW3xdG3Y4pc7UVSyQWGg JOgjKA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:53 2024 by rpki-client on console-fra.rpki-client.org