$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa File: B3DA6A4CBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: lksFcyxq126adSoTIsCCJwqk+LICcHT1Qu7KP4usQ4s= Subject key identifier: C7:3A:D0:05:9D:3F:32:DB:ED:AD:15:47:27:29:61:F0:DA:2C:DA:98 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A32 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:38 +0000 ROA not before: Thu 30 May 2024 15:53:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58758 IP address blocks: 158.144.42.0/24 maxlen: 24 158.144.43.0/24 maxlen: 24 158.144.44.0/24 maxlen: 24 158.144.183.0/24 maxlen: 24 158.144.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6706 (0x1a32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a102-800a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:06:88:83:b7:5a:7a:20:4a:87:70:25:77: 14:38:6b:18:f2:e2:3e:89:03:45:74:c7:b9:ef:4b: ee:99:88:3d:1a:4f:56:c9:50:f9:ce:ce:24:a8:20: ed:60:62:4d:4f:34:4f:c3:ac:64:6f:8c:68:e7:86: 61:ca:53:21:16:00:63:25:13:23:34:57:fc:ce:cc: 43:6e:57:3d:01:9b:60:2f:ca:67:fa:26:1f:6a:5a: 33:31:dc:8a:7a:cc:9f:a7:66:b8:a2:ab:9b:5e:4d: 6f:66:7d:e9:b7:18:ba:2a:f4:06:80:c2:36:33:17: 2a:f0:b8:bb:6e:65:e4:86:75:0a:90:7c:e4:7a:be: aa:d8:9f:fd:e4:23:c7:b2:6d:33:43:c4:cb:29:9f: fb:27:da:5b:9e:c2:4c:b1:10:42:4a:f5:f2:bd:e3: af:a3:c8:54:12:74:ba:d6:f8:36:fc:18:54:f6:53: 40:66:fd:f0:44:45:2c:37:ef:b5:51:57:c9:f5:82: 92:b2:73:85:3b:bf:bc:a1:1e:7c:7c:27:6b:28:7a: 1f:86:d3:db:33:20:99:da:7a:26:10:40:f1:bc:ee: 36:4f:92:aa:6e:c2:35:bc:be:21:d9:b7:ed:52:a2: ee:27:cc:6a:05:4f:52:e3:23:0c:d4:bf:1f:b9:12: e5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:3A:D0:05:9D:3F:32:DB:ED:AD:15:47:27:29:61:F0:DA:2C:DA:98 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.144.42.0-158.144.44.255 158.144.183.0/24 158.144.185.0/24 Signature Algorithm: sha256WithRSAEncryption cb:c8:3d:60:d0:dc:92:f7:b9:56:04:fb:4c:63:84:91:97:1e: 9f:6b:2a:d3:25:24:32:52:ab:55:e4:41:92:e1:ea:20:8c:fb: d8:19:b9:71:b5:14:74:4c:22:76:6e:27:8d:f8:c1:65:d0:64: 19:02:60:5b:c0:72:8c:b2:e1:60:11:89:8c:ad:ac:4a:bc:50: 7b:41:5f:c6:a9:ac:11:14:65:ef:41:af:f9:49:2c:e7:be:f1: 08:94:2f:55:4a:04:95:01:07:5e:b3:df:36:80:1a:8f:65:d7: b8:bf:55:2a:a7:8b:db:55:c0:01:88:de:23:8b:ed:ea:2d:0a: 6e:4a:1a:f6:f8:5a:3d:35:67:a1:9f:58:69:8c:e2:68:be:8c: 9a:1e:39:e1:59:71:1e:6d:90:6f:05:41:5e:8d:be:25:5c:62: de:e2:2f:a6:e8:88:0b:81:b8:97:42:66:73:9d:32:b2:e5:46: b3:e2:43:a5:19:f8:f8:ca:57:33:03:65:e0:fb:14:ff:3f:0e: 88:5e:72:a6:7e:4b:f0:b4:1d:ba:70:96:20:ff:2c:d5:31:3f: f0:a3:1c:f5:8c:bb:3c:2e:bb:e0:87:76:23:a2:f5:3f:91:30: bd:51:c7:8e:b2:50:29:04:9d:8a:38:d4:fd:d2:3b:0a:1d:ca: 56:5b:c0:c6 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICGjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTEwMi04MDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8AGiIO3WnogSodwJXcUOGsY8uI+iQNFdMe570vumYg9Gk9WyVD5zs4kqCDt YGJNTzRPw6xkb4xo54ZhylMhFgBjJRMjNFf8zsxDblc9AZtgL8pn+iYfalozMdyK esyfp2a4oqubXk1vZn3ptxi6KvQGgMI2Mxcq8Li7bmXkhnUKkHzker6q2J/95CPH sm0zQ8TLKZ/7J9pbnsJMsRBCSvXyveOvo8hUEnS61vg2/BhU9lNAZv3wREUsN++1 UVfJ9YKSsnOFO7+8oR58fCdrKHofhtPbMyCZ2nomEEDxvO42T5KqbsI1vL4h2bft UqLuJ8xqBU9S4yMM1L8fuRLlQQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFMc60AWd PzLb7a0VRycpYfDaLNqYMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjNEQTZBNENC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAZ6QKgMEAJ6QLAMEAJ6QtwMEAJ6QuTANBgkqhkiG9w0B AQsFAAOCAQEAy8g9YNDckve5VgT7TGOEkZcen2sq0yUkMlKrVeRBkuHqIIz72Bm5 cbUUdEwidm4njfjBZdBkGQJgW8ByjLLhYBGJjK2sSrxQe0FfxqmsERRl70Gv+Uks 577xCJQvVUoElQEHXrPfNoAaj2XXuL9VKqeL21XAAYjeI4vt6i0Kbkoa9vhaPTVn oZ9YaYziaL6Mmh454VlxHm2QbwVBXo2+JVxi3uIvpuiIC4G4l0Jmc50ysuVGs+JD pRn4+MpXMwNl4PsU/z8OiF5ypn5L8LQdunCWIP8s1TE/8KMc9Yy7PC674Id2I6L1 P5EwvVHHjrJQKQSdijjU/dI7Ch3KVlvAxg== -----END CERTIFICATE-----Generated at Fri May 31 17:44:26 2024 by rpki-client on console-fra.rpki-client.org