$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa File: 0CF90768BDE011EAAEA46554C4F9AE02.roa (raw, json) Hash identifier: MP1Zj16HlxPT63qrxADs073YYAQ7QM56q5uSqiZHz9I= Subject key identifier: 7C:00:19:CB:97:CC:49:CB:CA:AB:CD:A6:9F:EB:5C:09:12:62:BB:8D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A37 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:42 +0000 ROA not before: Thu 30 May 2024 15:53:42 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9430 IP address blocks: 157.15.159.0/24 maxlen: 24 164.164.123.0/24 maxlen: 24 164.164.124.0/24 maxlen: 24 164.164.126.0/24 maxlen: 24 164.164.127.0/24 maxlen: 24 164.164.184.0/24 maxlen: 24 164.164.187.0/24 maxlen: 24 164.164.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6711 (0x1a37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:42 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a106-94c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:83:c4:ca:d1:ac:b4:ad:6c:29:90:c6:dc:55: c7:66:a8:63:8c:be:bd:76:34:4f:31:07:b7:34:8d: cb:5e:07:4d:b1:17:79:b1:9a:87:b3:94:01:da:97: 1b:42:87:d2:20:97:44:58:2c:af:e4:21:8b:64:da: ac:51:c1:cc:a4:53:d8:e3:a9:2a:23:e0:1f:fc:58: 15:96:de:8a:1f:35:0d:c0:35:26:b5:7e:ab:c2:e1: 58:df:d4:6f:87:ef:42:0f:d5:7e:24:44:f6:ec:9e: 10:b4:87:e6:de:98:68:10:f3:18:cc:7a:1d:a3:79: 1c:66:d8:11:b5:ca:96:0d:bf:a2:fe:3e:db:bd:56: cc:33:14:85:fb:ad:2b:78:26:91:5e:5e:98:b3:6c: 4b:17:cb:97:3e:26:2d:c0:d3:5e:e7:2a:91:0b:dd: 5b:1b:63:57:dc:97:33:1a:48:70:49:60:b1:42:43: b8:8f:ed:8a:ff:a7:3b:66:84:3b:4d:5d:28:21:2b: 24:a7:7f:9e:41:fa:03:39:32:f7:d9:04:80:16:6d: e1:ea:b1:7a:a0:d2:3e:57:ab:d8:4b:31:3d:15:84: 0f:71:82:ae:04:6c:06:90:06:b5:1f:b9:46:b7:ab: 23:e0:c5:a1:98:e6:d4:e9:0f:3e:71:02:49:55:54: 1a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:00:19:CB:97:CC:49:CB:CA:AB:CD:A6:9F:EB:5C:09:12:62:BB:8D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.159.0/24 164.164.123.0-164.164.124.255 164.164.126.0/23 164.164.184.0/24 164.164.187.0/24 164.164.192.0/24 Signature Algorithm: sha256WithRSAEncryption 10:ea:47:26:24:51:e3:f1:a9:ed:70:1a:c5:56:46:45:8a:a1: d9:bd:17:86:b9:90:61:fe:36:20:4f:7d:62:fb:12:0f:4d:98: c6:46:8a:a4:3c:6b:ed:6b:da:81:a6:1e:18:2d:90:5e:f2:e5: 45:02:8a:1f:d9:ca:c3:ea:4f:ee:18:8f:30:94:e9:f5:26:66: 11:00:88:79:2c:6e:91:aa:55:af:10:92:90:c2:bc:c0:e3:97: 53:17:03:ba:5c:e5:7e:29:1a:21:a5:8b:cd:7c:d0:d6:92:3e: e2:99:aa:18:6b:cf:37:ed:73:67:bc:cc:5c:d6:2b:50:fb:99: 75:6a:55:1e:37:b7:d2:cd:64:9f:4a:4b:10:1c:5b:64:8c:ee: 4c:21:df:0a:1b:56:3c:a7:a1:3b:4e:c3:ea:90:a4:de:44:7b: 4c:f4:60:16:c2:43:a0:a5:73:97:15:87:61:5a:d2:19:f2:65: 07:af:89:e2:2c:94:2c:9b:3d:39:07:5a:e7:5a:e6:89:1a:fd: 67:39:f0:90:ca:99:79:e6:b7:5c:a3:0a:ae:3d:7e:51:b6:72: 9a:e8:dd:fa:31:1b:be:ca:7c:8e:b1:ed:ca:d6:17:20:d7:91: 67:45:11:11:15:41:18:10:85:c9:9f:c6:1c:91:40:2b:ce:78: be:17:cb:f4 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICGjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzQyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTEwNi05NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oPEytGstK1sKZDG3FXHZqhjjL69djRPMQe3NI3LXgdNsRd5sZqHs5QB2pcb QofSIJdEWCyv5CGLZNqsUcHMpFPY46kqI+Af/FgVlt6KHzUNwDUmtX6rwuFY39Rv h+9CD9V+JET27J4QtIfm3phoEPMYzHodo3kcZtgRtcqWDb+i/j7bvVbMMxSF+60r eCaRXl6Ys2xLF8uXPiYtwNNe5yqRC91bG2NX3JczGkhwSWCxQkO4j+2K/6c7ZoQ7 TV0oISskp3+eQfoDOTL32QSAFm3h6rF6oNI+V6vYSzE9FYQPcYKuBGwGkAa1H7lG t6sj4MWhmObU6Q8+cQJJVVQaAQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFHwAGcuX zEnLyqvNpp/rXAkSYruNMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMENGOTA3NjhC REUwMTFFQUFFQTQ2NTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBACdD58wDAMEAKSkewMEAKSkfAMEAaSkfgMEAKSkuAMEAKSk uwMEAKSkwDANBgkqhkiG9w0BAQsFAAOCAQEAEOpHJiRR4/Gp7XAaxVZGRYqh2b0X hrmQYf42IE99YvsSD02YxkaKpDxr7WvagaYeGC2QXvLlRQKKH9nKw+pP7hiPMJTp 9SZmEQCIeSxukapVrxCSkMK8wOOXUxcDulzlfikaIaWLzXzQ1pI+4pmqGGvPN+1z Z7zMXNYrUPuZdWpVHje30s1kn0pLEBxbZIzuTCHfChtWPKehO07D6pCk3kR7TPRg FsJDoKVzlxWHYVrSGfJlB6+J4iyULJs9OQda51rmiRr9ZznwkMqZeea3XKMKrj1+ UbZymujd+jEbvsp8jrHtytYXINeRZ0URERVBGBCFyZ/GHJFAK854vhfL9A== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org