$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/658B1AC8AE4711EE8C130419C4F9AE02.roa File: 658B1AC8AE4711EE8C130419C4F9AE02.roa (raw, json) Hash identifier: OPf1O5F2znXgxow/SuyykvjROqP8J2goN42jw3ahWbw= Subject key identifier: 2C:14:77:36:C4:66:EF:A8:E3:00:CD:B5:39:BF:56:A5:A0:F1:0F:E2 Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 02 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/658B1AC8AE4711EE8C130419C4F9AE02.roa Signing time: Mon 08 Jan 2024 17:00:17 +0000 ROA not before: Mon 08 Jan 2024 17:00:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152305 IP address blocks: 157.10.82.0/23 maxlen: 23 157.10.82.0/24 maxlen: 24 157.10.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Jan 8 17:00:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659c2a20-b809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:64:c0:6b:c5:c2:3b:e2:8e:e7:6b:87:b6:df: 5f:50:5d:bc:eb:cf:c3:eb:b2:2e:7f:61:92:e8:cf: 61:d4:d6:e3:c5:3f:e2:54:fb:cb:13:f0:e8:52:74: c8:e3:19:78:3c:02:69:75:b6:16:14:17:11:bc:52: ed:dc:4b:0b:ca:1a:17:b0:53:87:01:9d:fb:18:88: 62:2a:46:05:08:90:c7:05:96:fb:76:ba:15:dc:b0: 77:b5:ac:21:2b:95:2c:4d:de:e9:61:6c:78:7a:aa: 08:aa:af:93:d5:c6:b1:04:ab:30:cb:01:7d:73:2d: 22:48:d1:4f:05:ed:bc:75:59:02:64:26:30:db:5a: 5f:ef:ba:19:b0:7c:b9:9e:99:27:b0:22:16:1a:dc: 93:79:0e:d7:77:67:24:6d:39:df:72:66:f2:4b:88: 22:f0:66:ed:d1:dc:ef:4b:24:08:06:fb:9f:cc:cf: 8e:3a:38:69:b8:56:db:26:9b:ac:85:49:88:c0:02: c7:0a:93:63:b7:13:4f:2b:55:dc:8e:6a:03:68:46: f6:be:4f:81:91:dc:30:7d:c7:56:99:7f:3c:4e:41: 8a:34:9c:fa:9c:50:dc:2f:c2:f6:7a:1a:6f:e1:4f: ea:17:61:89:64:96:3f:5e:82:ee:c4:56:04:09:39: a8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:14:77:36:C4:66:EF:A8:E3:00:CD:B5:39:BF:56:A5:A0:F1:0F:E2 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/658B1AC8AE4711EE8C130419C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.82.0/23 Signature Algorithm: sha256WithRSAEncryption 16:88:ec:96:42:ae:27:9f:f0:77:1d:69:16:29:ba:cd:dd:85: fb:db:87:c3:75:44:8c:a0:75:54:e7:d5:c7:47:bd:7d:c1:c5: 0d:dd:aa:58:5c:b4:ce:88:8a:f3:64:42:14:02:23:96:d5:67: bd:dd:d3:a5:19:bf:e1:66:7f:1a:4b:71:53:11:bc:4a:70:bc: 34:21:6b:52:1f:d0:f4:c8:b6:bf:3f:e3:36:cd:b1:55:f1:19: 6c:db:79:71:24:02:39:60:df:dc:62:39:84:03:74:f0:e8:c8: 65:a5:1f:5a:f4:85:6e:ea:78:88:9d:77:9b:f9:40:92:bf:52: 61:49:72:25:59:ec:08:3d:7d:2a:22:29:dc:a4:15:bc:a5:12: 33:b6:70:f1:b3:4a:f3:1e:80:ad:3e:85:a9:52:7c:6c:6b:5c: 7a:0a:5f:7c:74:5d:7c:df:aa:aa:7d:81:eb:aa:95:7f:00:8b: 04:75:a2:70:d9:ed:8f:dc:5a:25:25:18:41:ed:bb:9a:13:c1: e1:b8:ac:97:e0:2f:a9:6c:3a:f7:97:c2:26:9f:56:c6:e5:cf: 74:91:28:aa:a6:5d:24:47:eb:04:7e:ca:9e:5c:1a:0a:90:1d: 45:28:b3:63:59:4a:49:95:87:e2:99:ae:df:f4:7f:c2:f5:9a: 72:d1:70:16 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUY2QTExMC8GA1UEBRMoNEY4NDFFMzgzM0UwQUM2RkUxQkVFRUJEMDAxMjM1RDE1 MjhFQ0U3QTAeFw0yNDAxMDgxNzAwMTdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWMyYTIwLWI4MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJZMBrxcI74o7na4e2319QXbzrz8Prsi5/YZLoz2HU1uPFP+JU+8sT8OhSdMjj GXg8Aml1thYUFxG8Uu3cSwvKGhewU4cBnfsYiGIqRgUIkMcFlvt2uhXcsHe1rCEr lSxN3ulhbHh6qgiqr5PVxrEEqzDLAX1zLSJI0U8F7bx1WQJkJjDbWl/vuhmwfLme mSewIhYa3JN5Dtd3ZyRtOd9yZvJLiCLwZu3R3O9LJAgG+5/Mz446OGm4Vtsmm6yF SYjAAscKk2O3E08rVdyOagNoRva+T4GR3DB9x1aZfzxOQYo0nPqcUNwvwvZ6Gm/h T+oXYYlklj9egu7EVgQJOagnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULBR3NsRm 76jjAM21Ob9WpaDxD+IwHwYDVR0jBBgwFoAUT4QeODPgrG/hvu69ABI10VKOznow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRjZBLzgzN0NEMzQ2QUU0 MjExRUVCRjY0REE2OUM0RjlBRTAyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3pu by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVDRRZU9EUGdyR19odnU2OUFCSTEwVktPem5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi82NThCMUFDOEFF NDcxMUVFOEMxMzA0MTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KUjANBgkqhkiG9w0BAQsFAAOCAQEAFojslkKuJ5/wdx1p Fim6zd2F+9uHw3VEjKB1VOfVx0e9fcHFDd2qWFy0zoiK82RCFAIjltVnvd3TpRm/ 4WZ/GktxUxG8SnC8NCFrUh/Q9Mi2vz/jNs2xVfEZbNt5cSQCOWDf3GI5hAN08OjI ZaUfWvSFbup4iJ13m/lAkr9SYUlyJVnsCD19KiIp3KQVvKUSM7Zw8bNK8x6ArT6F qVJ8bGtcegpffHRdfN+qqn2B66qVfwCLBHWicNntj9xaJSUYQe27mhPB4bisl+Av qWw695fCJp9WxuXPdJEoqqZdJEfrBH7KnlwaCpAdRSizY1lKSZWH4pmu3/R/wvWa ctFwFg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:10 2024 by rpki-client on console-ams.rpki-client.org