$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8F41C354CCB411EEA47EB676C4F9AE02.roa File: 8F41C354CCB411EEA47EB676C4F9AE02.roa (raw, json) Hash identifier: 8Qo9eHV5O0gF9UbRqSqBcDJwSiq2Cn9cPARsGnwW4RI= Subject key identifier: E9:28:C5:28:25:9B:50:AB:3E:89:20:82:08:B5:05:80:B7:0E:25:DB Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19F5 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8F41C354CCB411EEA47EB676C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:41 +0000 ROA not before: Thu 30 May 2024 15:52:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 146918 IP address blocks: 157.10.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6645 (0x19f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0c9-4bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b8:6e:d1:d2:fb:4a:f7:4e:23:95:d8:70:7c: b5:79:c1:25:7a:50:ad:9c:e3:ec:dd:2f:92:66:41: 35:4c:86:3c:94:ac:af:9d:5d:c1:e5:08:76:66:d8: 14:9a:ce:33:20:9b:07:29:cc:30:7f:8a:1d:1e:06: 07:62:79:dc:55:14:8a:0b:72:35:51:b1:fe:fe:f0: 5e:18:d5:8f:d1:ba:49:b1:73:d3:6c:6b:54:32:d9: 85:7e:02:c4:5f:a2:cd:9c:f7:98:56:1b:3d:d8:77: c9:5a:ab:b2:8b:b3:74:8f:d9:7a:5d:8c:71:43:dc: e4:bf:32:cc:62:85:47:fc:dc:c2:f2:c9:e8:41:d0: 65:5e:61:3e:e7:b7:36:38:93:f0:5e:e2:61:4b:fc: 88:03:f4:77:4a:23:32:18:7c:25:eb:ff:24:69:10: 75:c1:b6:57:da:e7:25:8e:85:73:79:55:8a:e7:d9: 0c:ae:d9:90:7b:a0:63:5e:ca:78:c1:d6:13:66:44: e1:79:38:64:36:b4:14:8e:21:fa:a2:ba:54:01:a4: d7:9b:1b:b6:6c:aa:45:74:e6:b0:9d:39:f8:c4:cf: 94:e2:f4:41:28:2d:2b:ac:11:30:3e:8b:6f:4b:f2: 17:5d:b1:aa:15:96:ea:63:5f:fa:87:ea:ba:cd:96: 19:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:28:C5:28:25:9B:50:AB:3E:89:20:82:08:B5:05:80:B7:0E:25:DB X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8F41C354CCB411EEA47EB676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.96.0/24 Signature Algorithm: sha256WithRSAEncryption 37:2c:74:1f:6d:43:52:0e:e1:67:88:4d:6c:0d:49:77:53:93: ff:a3:9e:ec:30:a9:cb:8f:4c:b4:fd:bb:f0:1b:89:fe:81:8f: 37:ba:26:f6:c4:72:40:1a:f6:e5:5e:a3:cd:bf:50:a9:9c:63: 6c:50:31:8f:d3:1e:f9:2f:5b:80:cb:7e:8d:03:ba:b5:d5:a7: c6:d5:f4:58:e4:d5:9d:62:98:d9:3a:e9:78:02:c4:8d:1c:44: 7d:bf:fe:7b:6a:e9:9c:a6:a7:52:8e:f7:0c:c9:8c:32:61:d7: 54:05:22:0c:e6:9e:94:19:7c:d2:f7:df:89:f1:f3:6b:48:8b: 39:4b:55:98:43:16:7e:0e:5c:16:46:1b:68:6f:3e:c4:ff:50: ff:0b:4c:8d:e2:78:42:04:ba:02:1d:9e:75:e0:bb:65:4f:87: 2f:6e:c8:e7:c9:29:3c:5b:34:63:0d:ec:1d:06:8f:d5:7d:ef: 21:ee:e6:39:d1:0d:6f:66:67:1e:fa:7e:6d:13:9f:46:46:ef: 3f:30:5b:2a:e8:21:1d:aa:5d:28:5f:4d:60:42:51:f1:b9:50: 1e:2e:bc:40:9c:42:27:fd:03:fa:d8:de:89:44:6e:6c:be:3a: 35:41:51:5a:f7:33:06:71:39:8c:e0:48:b8:3f:b5:13:b3:86: 51:0b:21:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBjOS00YmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27hu0dL7SvdOI5XYcHy1ecElelCtnOPs3S+SZkE1TIY8lKyvnV3B5Qh2ZtgU ms4zIJsHKcwwf4odHgYHYnncVRSKC3I1UbH+/vBeGNWP0bpJsXPTbGtUMtmFfgLE X6LNnPeYVhs92HfJWquyi7N0j9l6XYxxQ9zkvzLMYoVH/NzC8snoQdBlXmE+57c2 OJPwXuJhS/yIA/R3SiMyGHwl6/8kaRB1wbZX2ucljoVzeVWK59kMrtmQe6BjXsp4 wdYTZkTheThkNrQUjiH6orpUAaTXmxu2bKpFdOawnTn4xM+U4vRBKC0rrBEwPotv S/IXXbGqFZbqY1/6h+q6zZYZmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOkoxSgl m1CrPokgggi1BYC3DiXbMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEY0MUMzNTRD Q0I0MTFFRUE0N0VCNjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCmAwDQYJKoZIhvcNAQELBQADggEBADcsdB9tQ1IO4WeI TWwNSXdTk/+jnuwwqcuPTLT9u/Abif6Bjze6JvbEckAa9uVeo82/UKmcY2xQMY/T HvkvW4DLfo0DurXVp8bV9Fjk1Z1imNk66XgCxI0cRH2//ntq6Zymp1KO9wzJjDJh 11QFIgzmnpQZfNL334nx82tIizlLVZhDFn4OXBZGG2hvPsT/UP8LTI3ieEIEugId nnXgu2VPhy9uyOfJKTxbNGMN7B0Gj9V97yHu5jnRDW9mZx76fm0Tn0ZG7z8wWyro IR2qXShfTWBCUfG5UB4uvECcQif9A/rY3olEbmy+OjVBUVr3MwZxOYzgSLg/tROz hlELId0= -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:24 2024 by rpki-client on console-ams.rpki-client.org