$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0511FA70013C11EFB9BC9846C4F9AE02.roa File: 0511FA70013C11EFB9BC9846C4F9AE02.roa (raw, json) Hash identifier: DXrJ/S1EaC/iDB2xMFxyXayGThunnsElya0xmR9C7Xo= Subject key identifier: 07:42:D2:0F:2D:B4:B9:ED:93:7E:1D:99:CB:23:59:87:54:CD:56:C2 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1980 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0511FA70013C11EFB9BC9846C4F9AE02.roa Signing time: Tue 23 Apr 2024 06:37:57 +0000 ROA not before: Tue 23 Apr 2024 06:37:57 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152520 IP address blocks: 157.66.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6528 (0x1980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 23 06:37:57 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66275744-69e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:45:fc:03:ba:e5:70:58:d5:15:9b:92:06:5d: db:80:a9:aa:e3:ce:86:9a:e3:15:bb:6d:ba:27:be: 72:06:d5:2a:50:33:4a:da:00:2d:50:a8:da:45:4f: 53:2a:7f:64:43:b2:93:8c:30:3d:e3:76:af:e6:78: 97:bd:2b:c2:84:dd:d4:e8:e8:23:38:c9:3b:cb:8f: 18:60:24:78:f7:58:8a:43:e7:b3:4f:3f:9a:a5:5a: b7:e2:ba:61:dd:b6:c1:83:81:72:17:5b:0e:13:ce: 89:89:ed:a9:a9:d3:85:b4:f5:36:ea:e9:03:b4:bc: 2c:ca:5d:6e:74:47:5d:33:73:a5:5d:f2:28:12:15: d4:7c:3b:4a:5e:19:ae:d9:ac:8d:62:11:2c:da:eb: 3a:39:d3:9d:2b:27:fa:6d:94:80:e4:a0:14:33:5d: 03:16:ca:00:6e:cd:b3:76:86:5a:59:ba:f6:2e:ca: d6:f9:2d:ea:79:a0:5d:61:a6:fd:d5:7a:cc:8a:f6: 77:4d:17:f1:41:55:f8:0c:16:a3:4f:9a:22:d8:1a: 47:fc:3c:12:fc:bf:4f:43:c1:98:83:33:44:b7:69: dd:18:d8:c8:f3:cb:9d:9f:eb:b6:3a:49:95:da:1e: 25:49:7e:e9:84:0e:11:68:3f:b2:35:76:02:34:69: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:42:D2:0F:2D:B4:B9:ED:93:7E:1D:99:CB:23:59:87:54:CD:56:C2 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0511FA70013C11EFB9BC9846C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.118.0/23 Signature Algorithm: sha256WithRSAEncryption 02:f0:bb:46:be:20:38:7d:12:e5:45:2d:48:da:16:62:17:2e: f4:c0:d1:2f:f2:aa:6f:e7:37:54:dd:c7:d5:1d:22:13:bc:49: 3f:d5:0a:c0:8b:aa:25:13:d1:ee:bf:b4:a7:e9:19:fc:8e:03: bb:f5:34:fb:af:64:09:dc:37:c5:58:66:6b:23:33:26:e8:f3: b3:95:3d:b9:3a:8d:00:c5:54:3d:2e:89:61:b5:2b:e4:91:b7: 65:13:68:b2:06:c2:2b:b9:8a:34:73:90:f5:2a:0e:fd:f7:5a: d6:69:8a:66:20:35:5d:7e:a4:ef:6d:5e:4f:fb:ef:26:ea:11: 7b:4e:ef:3a:90:20:21:fd:71:51:62:a0:da:08:d8:b8:9e:c5: cf:92:32:a8:dc:a8:0a:4c:cf:8d:cb:53:09:93:02:72:26:e9: a1:14:9e:c9:3a:92:96:a2:8a:c3:1c:fe:0b:62:cb:3f:50:12: 92:61:21:af:e1:f8:fa:07:45:b7:b9:c0:ab:6b:e6:72:66:2d: bb:2b:b0:54:be:a6:98:04:9e:d4:7e:23:77:fa:b6:89:0f:ea: 3f:03:79:31:f8:20:45:0a:b5:c9:14:b9:b4:b9:e9:55:f8:bc: 77:e6:5a:9d:fa:dd:db:ef:64:2c:86:1e:3a:38:ce:d5:f9:4a: 4d:c1:3d:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDIzMDYzNzU3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3NTc0NC02OWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50X8A7rlcFjVFZuSBl3bgKmq486GmuMVu226J75yBtUqUDNK2gAtUKjaRU9T Kn9kQ7KTjDA943av5niXvSvChN3U6OgjOMk7y48YYCR491iKQ+ezTz+apVq34rph 3bbBg4FyF1sOE86Jie2pqdOFtPU26ukDtLwsyl1udEddM3OlXfIoEhXUfDtKXhmu 2ayNYhEs2us6OdOdKyf6bZSA5KAUM10DFsoAbs2zdoZaWbr2LsrW+S3qeaBdYab9 1XrMivZ3TRfxQVX4DBajT5oi2BpH/DwS/L9PQ8GYgzNEt2ndGNjI88udn+u2OkmV 2h4lSX7phA4RaD+yNXYCNGm+/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAdC0g8t tLntk34dmcsjWYdUzVbCMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDUxMUZBNzAw MTNDMTFFRkI5QkM5ODQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQnYwDQYJKoZIhvcNAQELBQADggEBAALwu0a+IDh9EuVF LUjaFmIXLvTA0S/yqm/nN1Tdx9UdIhO8ST/VCsCLqiUT0e6/tKfpGfyOA7v1NPuv ZAncN8VYZmsjMybo87OVPbk6jQDFVD0uiWG1K+SRt2UTaLIGwiu5ijRzkPUqDv33 WtZpimYgNV1+pO9tXk/77ybqEXtO7zqQICH9cVFioNoI2Liexc+SMqjcqApMz43L UwmTAnIm6aEUnsk6kpaiisMc/gtiyz9QEpJhIa/h+PoHRbe5wKtr5nJmLbsrsFS+ ppgEntR+I3f6tokP6j8DeTH4IEUKtckUubS56VX4vHfmWp363dvvZCyGHjo4ztX5 Sk3BPcI= -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org