$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2ABC809E077F11EFB9D19238C4F9AE02.roa File: 2ABC809E077F11EFB9D19238C4F9AE02.roa (raw, json) Hash identifier: fm10zu5TyocKYt+jV+QbC8FnuXBD5YQg9zSG7vf8yis= Subject key identifier: ED:55:36:6A:9A:AF:11:DB:27:8D:E4:C2:9F:07:EB:30:75:A0:A7:B4 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A1A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2ABC809E077F11EFB9D19238C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:16 +0000 ROA not before: Thu 30 May 2024 15:53:16 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152502 IP address blocks: 157.66.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6682 (0x1a1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:16 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0eb-8e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a5:f2:6c:2d:fa:05:75:3d:11:fc:be:df:ff: 48:f4:65:91:e9:d5:a5:b9:de:eb:91:26:29:3d:65: b8:69:db:08:33:7c:c9:bb:21:bf:d5:13:ed:21:ab: 4d:f1:04:62:bd:97:01:a7:75:ab:db:8d:65:81:f8: 60:7b:2a:61:32:ae:70:a0:5e:4c:97:17:53:26:30: f1:e8:39:1e:46:b8:ec:8f:92:4c:fc:cf:4b:53:6d: c1:b3:77:62:28:01:8c:21:fb:44:19:ce:db:bc:fd: 24:6b:76:39:72:2d:fe:0a:b0:f2:bf:c2:20:44:e2: 70:9a:69:be:88:b0:1a:c7:95:7d:9c:0c:9a:67:47: db:e7:fd:34:3c:49:ef:0b:ec:1c:77:5e:d1:93:a8: 60:7a:a0:ee:6d:8c:6f:c1:11:fb:a3:68:82:92:a8: 13:a9:fa:52:7e:e3:f1:1e:f2:a6:51:c1:c2:78:6a: 57:3d:30:6a:9d:84:50:fa:ff:ef:af:fa:72:16:a6: e3:46:03:c0:4d:27:8c:73:79:94:a9:40:8e:fd:35: 11:74:79:f9:04:4c:9e:8b:6c:ad:f2:4d:01:ff:c7: d7:45:a8:74:0a:a3:15:9e:d7:3b:22:59:2c:6c:de: da:72:99:ad:36:44:7f:7f:09:a5:52:7f:df:d5:78: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:55:36:6A:9A:AF:11:DB:27:8D:E4:C2:9F:07:EB:30:75:A0:A7:B4 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2ABC809E077F11EFB9D19238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.184.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:9c:45:ff:52:1b:ce:5d:c7:34:65:0a:04:df:53:ee:d7:50: 17:b4:e8:cf:c5:3c:c7:d8:ca:27:6f:5f:05:0b:1d:ec:ce:b3: 06:ad:78:65:f8:d7:38:a5:5b:94:b2:f8:24:60:78:ac:8f:8e: a8:31:5a:11:8f:d1:cc:b8:55:49:2e:36:b3:b6:6b:f8:56:4d: ea:5f:97:3f:34:09:4c:bd:95:af:f8:be:65:f2:b6:af:4e:55: 89:99:82:1a:ac:61:4e:07:1b:08:1e:ee:72:81:35:b7:60:09: 6e:8c:a8:e4:54:12:e3:54:ee:46:b7:8d:6c:5b:03:5d:bd:88: ea:84:d1:72:26:c8:b2:3a:b8:3b:f0:29:e4:0c:ac:41:a8:b6: 08:e0:c2:cb:b1:78:bf:2f:da:28:23:40:36:6d:c3:4c:ed:07: 9c:21:71:7b:de:5e:ef:ca:53:98:db:84:3d:9b:f4:33:3a:83: de:88:b4:54:64:e7:d0:82:d7:8f:e8:f2:60:2d:35:f2:b2:56: a3:d0:4e:6b:c8:e0:37:1f:66:7b:6c:88:0f:6d:94:f8:a2:ef: e3:b4:56:76:9c:61:f4:33:c8:e2:a8:2c:62:78:91:61:7e:14: 7b:f8:b8:2c:c1:7e:bc:7e:ef:cb:d3:50:c7:a8:5c:91:4d:36: 67:25:dd:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzE2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBlYi04ZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqXybC36BXU9Efy+3/9I9GWR6dWlud7rkSYpPWW4adsIM3zJuyG/1RPtIatN 8QRivZcBp3Wr241lgfhgeyphMq5woF5MlxdTJjDx6DkeRrjsj5JM/M9LU23Bs3di KAGMIftEGc7bvP0ka3Y5ci3+CrDyv8IgROJwmmm+iLAax5V9nAyaZ0fb5/00PEnv C+wcd17Rk6hgeqDubYxvwRH7o2iCkqgTqfpSfuPxHvKmUcHCeGpXPTBqnYRQ+v/v r/pyFqbjRgPATSeMc3mUqUCO/TURdHn5BEyei2yt8k0B/8fXRah0CqMVntc7Ilks bN7acpmtNkR/fwmlUn/f1XiZXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO1VNmqa rxHbJ43kwp8H6zB1oKe0MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkFCQzgwOUUw NzdGMTFFRkI5RDE5MjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQrgwDQYJKoZIhvcNAQELBQADggEBAH+cRf9SG85dxzRl CgTfU+7XUBe06M/FPMfYyidvXwULHezOswateGX41zilW5Sy+CRgeKyPjqgxWhGP 0cy4VUkuNrO2a/hWTepflz80CUy9la/4vmXytq9OVYmZghqsYU4HGwge7nKBNbdg CW6MqORUEuNU7ka3jWxbA129iOqE0XImyLI6uDvwKeQMrEGotgjgwsuxeL8v2igj QDZtw0ztB5whcXveXu/KU5jbhD2b9DM6g96ItFRk59CC14/o8mAtNfKyVqPQTmvI 4DcfZntsiA9tlPii7+O0VnacYfQzyOKoLGJ4kWF+FHv4uCzBfrx+78vTUMeoXJFN Nmcl3fQ= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org