$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa File: FF54B40CC5B211EEA92E3F62C4F9AE02.roa (raw, json) Hash identifier: rYS/+RVyvGSEETl6DHL3RNhFt2MqtN75pOXed+iWAms= Subject key identifier: 46:34:DA:0B:C6:9D:E6:A7:10:2F:21:1F:09:5A:5D:01:11:7C:A1:F5 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A33 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:39 +0000 ROA not before: Thu 30 May 2024 15:53:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58762 IP address blocks: 157.10.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6707 (0x1a33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a103-21b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:f2:c8:5a:7c:75:ce:14:f5:10:ca:b1:d8: 14:da:cc:ff:68:44:3b:e5:3e:f6:a1:68:ff:4f:7d: b3:da:ca:6d:27:8c:6b:38:72:4d:af:e4:b2:23:c2: 62:0e:2d:a2:74:b1:fa:76:f9:91:2f:67:02:3c:ee: d3:6d:63:01:08:f6:0b:1e:0f:0f:16:16:85:08:50: 9f:23:d4:0d:bb:b1:2e:f3:60:2e:7e:08:6f:b7:86: 2a:c9:3f:c3:ad:da:b1:9b:48:31:64:90:fc:7c:ce: da:95:6e:56:df:d1:b2:3f:f5:e4:36:c5:6b:f6:a0: 94:95:ef:72:51:85:89:e7:16:88:e8:3a:62:4c:c7: 6f:f2:f8:9f:8f:a6:51:cd:5d:b9:2d:bd:d9:ea:b5: 68:10:9c:fa:1b:e8:06:b5:89:8a:29:8e:7a:87:c7: 45:ca:5f:00:4b:96:04:99:df:b5:05:8f:f6:27:d9: c2:de:2d:cb:66:d9:62:c9:df:a1:38:af:07:c8:a8: 0b:42:0c:74:cc:4f:04:95:2f:d6:9e:ea:b9:c2:5b: aa:41:22:2d:0e:6e:16:9f:94:d3:af:03:5d:06:ab: d0:71:de:d2:6a:91:03:d0:c1:eb:82:86:40:b2:85: cd:c3:07:5d:b9:7c:9d:9d:ce:3a:ed:a6:c9:6d:2e: 9f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:34:DA:0B:C6:9D:E6:A7:10:2F:21:1F:09:5A:5D:01:11:7C:A1:F5 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.93.0/24 Signature Algorithm: sha256WithRSAEncryption 63:24:c2:c9:fa:96:4b:8f:e5:02:42:d5:10:0c:0f:63:d1:00: fa:ce:24:3b:0c:76:f7:03:7f:85:18:a7:83:a1:16:54:88:0a: 55:07:e6:f1:9c:be:b7:d0:6e:63:ec:53:07:d3:1e:f6:ac:9b: 85:04:57:2b:e0:d5:3a:8a:12:1c:56:f8:c4:64:3f:30:2f:ce: 34:1e:9c:1a:a5:4d:2b:30:16:db:0f:1a:a0:7f:4b:ff:0b:2c: c9:15:66:f2:89:0a:92:e1:a6:aa:fb:c0:59:61:fd:bf:cc:38: 27:24:12:0c:fc:62:7c:aa:bd:92:9c:93:fe:bd:ec:5f:8b:fd: 99:1e:72:fd:b8:f4:38:f8:f4:b8:97:7c:bd:0e:0c:f7:35:df: 66:13:5c:c3:09:be:a6:25:4b:72:d5:4a:ed:e4:73:6f:32:09: 46:63:81:2b:53:6b:73:9b:0f:1b:d4:0d:e4:79:2f:62:c6:dc: 32:34:e1:71:3e:69:f8:3c:5b:12:f4:c1:86:51:11:b8:c8:4f: 6e:46:8a:d4:4a:99:ed:22:30:11:28:f7:74:84:4c:e4:aa:ff: ea:fd:07:b9:18:8b:04:f3:d7:b5:83:d3:de:f6:b6:d7:63:40: 3a:3a:a6:d8:a3:22:34:c4:6d:75:84:9f:10:d3:85:73:44:b8: 0c:ef:5b:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTEwMy0yMWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mvyyFp8dc4U9RDKsdgU2sz/aEQ75T72oWj/T32z2sptJ4xrOHJNr+SyI8Ji Di2idLH6dvmRL2cCPO7TbWMBCPYLHg8PFhaFCFCfI9QNu7Eu82Aufghvt4YqyT/D rdqxm0gxZJD8fM7alW5W39GyP/XkNsVr9qCUle9yUYWJ5xaI6DpiTMdv8vifj6ZR zV25Lb3Z6rVoEJz6G+gGtYmKKY56h8dFyl8AS5YEmd+1BY/2J9nC3i3LZtliyd+h OK8HyKgLQgx0zE8ElS/Wnuq5wluqQSItDm4Wn5TTrwNdBqvQcd7SapED0MHrgoZA soXNwwdduXydnc467abJbS6fVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEY02gvG neanEC8hHwlaXQERfKH1MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkY1NEI0MEND NUIyMTFFRUE5MkUzRjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCl0wDQYJKoZIhvcNAQELBQADggEBAGMkwsn6lkuP5QJC 1RAMD2PRAPrOJDsMdvcDf4UYp4OhFlSIClUH5vGcvrfQbmPsUwfTHvasm4UEVyvg 1TqKEhxW+MRkPzAvzjQenBqlTSswFtsPGqB/S/8LLMkVZvKJCpLhpqr7wFlh/b/M OCckEgz8YnyqvZKck/697F+L/Zkecv249Dj49LiXfL0ODPc132YTXMMJvqYlS3LV Su3kc28yCUZjgStTa3ObDxvUDeR5L2LG3DI04XE+afg8WxL0wYZREbjIT25GitRK me0iMBEo93SETOSq/+r9B7kYiwTz17WD0972ttdjQDo6ptijIjTEbXWEnxDThXNE uAzvWyY= -----END CERTIFICATE-----Generated at Fri Jun 7 02:20:52 2024 by rpki-client on console-fra.rpki-client.org