$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa File: 22A5298E53C811EFA7F6D30AC4F9AE02.roa (raw, json) Hash identifier: rY1tgs8J4l/y0sVCsrLhXazHmAzKwRUB8aVmquaFv2A= Subject key identifier: 9A:3C:CD:97:6E:1F:7D:14:2B:3E:C8:A1:C4:F9:98:E9:7B:06:0F:A1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1AE0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa Signing time: Tue 06 Aug 2024 07:47:31 +0000 ROA not before: Tue 06 Aug 2024 07:47:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152530 IP address blocks: 157.66.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6880 (0x1ae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 6 07:47:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66b1d513-72dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:80:6b:30:75:44:00:06:52:0d:87:bd:e7:24: ad:b1:82:a2:5f:66:64:67:3a:aa:0f:85:4a:2b:48: 05:a1:62:4f:63:25:31:f0:56:ad:23:70:1d:98:2a: 7d:43:a6:c2:fc:60:e3:74:7b:91:35:9c:0f:bc:ca: 34:6c:19:ce:d1:b7:00:f4:9a:65:f8:ec:c0:08:ca: 10:b9:ff:32:ec:3a:9e:69:38:cf:97:01:37:79:43: 21:63:62:f4:92:fb:90:be:e2:7e:ba:45:96:28:4d: f8:b6:c5:fc:83:de:03:50:22:20:d3:92:52:2c:55: 6b:11:34:d9:9d:23:91:31:73:53:bd:44:28:70:87: f7:ff:5a:83:cd:b1:44:b0:b3:52:87:d5:76:af:76: ff:59:a5:ac:e2:3a:60:34:00:d6:5f:7e:98:23:54: 45:8a:d2:1f:48:69:d2:dd:c3:1f:33:1c:7b:03:47: 72:6c:ba:b0:78:df:71:f5:b8:f3:97:17:f2:c9:c0: 72:5c:fc:18:24:87:cf:f3:e8:e3:fa:1e:bb:72:8f: ee:e6:55:16:f5:c7:aa:fa:c8:d0:66:6b:c2:aa:50: ad:af:05:56:45:fc:42:04:37:51:3f:5b:b9:b2:5c: 9b:62:dd:05:fa:eb:dc:a7:e3:63:56:96:72:ed:b7: 56:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3C:CD:97:6E:1F:7D:14:2B:3E:C8:A1:C4:F9:98:E9:7B:06:0F:A1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.102.0/23 Signature Algorithm: sha256WithRSAEncryption b9:f1:8e:12:9c:b4:33:eb:f0:15:4d:df:18:dd:53:91:d5:68: 7b:3e:04:ab:4a:1a:45:87:2c:1a:9d:46:b0:2b:a3:2f:7d:9c: 76:7f:58:cc:80:69:05:55:34:41:de:b4:ed:9e:05:f1:1a:1e: bb:c9:16:ef:7e:5d:1d:ac:57:ca:46:95:1d:b1:26:9e:79:e3: 67:13:5d:f8:c0:eb:39:7c:f5:d9:93:4e:b8:13:88:46:b1:c4: d3:2f:82:18:3b:85:81:29:7f:ff:c6:eb:0f:69:ac:ef:00:9f: 27:55:ef:0e:31:92:a4:50:78:b2:c7:f4:7b:48:d5:8a:a5:11: 46:b7:69:8c:2e:28:cf:c7:97:64:96:d8:eb:b6:2e:34:94:27: 8d:27:1f:ca:81:5d:7b:74:f9:46:99:30:19:09:81:f1:84:10: 9a:1b:e2:98:5b:e4:48:41:b1:03:8e:56:e6:8f:61:b8:48:17: 77:70:ee:61:48:ba:de:32:6d:99:32:d4:d9:c4:5f:e5:ba:1c: 89:df:dc:75:93:36:b0:ca:bc:0c:a4:07:b1:33:61:1b:07:d9: 93:7e:82:18:7e:70:ea:a2:c9:65:79:78:f7:d3:25:d3:63:96: 6e:20:7d:c3:51:ec:fc:c3:0d:a0:7f:b6:ba:e3:f5:78:3f:0e: 4e:73:f1:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwODA2MDc0NzMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIxZDUxMy03MmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IBrMHVEAAZSDYe95yStsYKiX2ZkZzqqD4VKK0gFoWJPYyUx8FatI3AdmCp9 Q6bC/GDjdHuRNZwPvMo0bBnO0bcA9Jpl+OzACMoQuf8y7DqeaTjPlwE3eUMhY2L0 kvuQvuJ+ukWWKE34tsX8g94DUCIg05JSLFVrETTZnSORMXNTvUQocIf3/1qDzbFE sLNSh9V2r3b/WaWs4jpgNADWX36YI1RFitIfSGnS3cMfMxx7A0dybLqweN9x9bjz lxfyycByXPwYJIfP8+jj+h67co/u5lUW9ceq+sjQZmvCqlCtrwVWRfxCBDdRP1u5 slybYt0F+uvcp+NjVpZy7bdWjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJo8zZdu H30UKz7IocT5mOl7Bg+hMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjJBNTI5OEU1 M0M4MTFFRkE3RjZEMzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQmYwDQYJKoZIhvcNAQELBQADggEBALnxjhKctDPr8BVN 3xjdU5HVaHs+BKtKGkWHLBqdRrAroy99nHZ/WMyAaQVVNEHetO2eBfEaHrvJFu9+ XR2sV8pGlR2xJp5542cTXfjA6zl89dmTTrgTiEaxxNMvghg7hYEpf//G6w9prO8A nydV7w4xkqRQeLLH9HtI1YqlEUa3aYwuKM/Hl2SW2Ou2LjSUJ40nH8qBXXt0+UaZ MBkJgfGEEJob4phb5EhBsQOOVuaPYbhIF3dw7mFIut4ybZky1NnEX+W6HInf3HWT NrDKvAykB7EzYRsH2ZN+ghh+cOqiyWV5ePfTJdNjlm4gfcNR7PzDDaB/trrj9Xg/ Dk5z8W0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org