$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa File: 2E205EFAB39611EE89CE591AC4F9AE02.roa (raw, json) Hash identifier: 4hrD5Zi5g4d+EOzIM/MZrWtV7lx4BbsGdc8IRpViyPA= Subject key identifier: EA:7E:E9:02:25:0A:5B:43:59:A0:25:E3:69:F1:EE:4A:D2:FA:BD:4F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 18A9 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa Signing time: Mon 15 Jan 2024 11:06:50 +0000 ROA not before: Mon 15 Jan 2024 11:06:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138225 IP address blocks: 157.10.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6313 (0x18a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 15 11:06:50 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65a511c9-fe98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:44:47:b4:e9:07:60:48:93:86:59:3a:cb: f0:33:86:2e:bb:60:78:37:9a:78:bb:89:b8:36:d0: 5d:b2:3f:dd:ae:1c:3d:db:cb:2d:00:63:11:34:ae: cf:80:89:bf:38:f0:e4:f8:03:7b:60:50:dd:6e:fc: 33:77:2a:45:2f:0d:64:ef:d1:4c:cc:bf:3b:e3:30: 69:b6:e2:1c:a0:85:25:03:a7:0c:11:57:7b:38:43: dc:ea:dc:9e:cf:6c:a2:6c:91:49:83:8a:e6:a8:b4: ea:82:31:cf:6c:cf:14:d7:17:ff:b4:db:69:ae:a0: 7f:44:28:f9:cd:d5:2f:57:a7:e6:1d:5f:e7:f1:32: 84:7b:21:46:e0:c2:cd:fa:a1:ac:0a:59:b5:f0:c0: b1:75:7f:c8:9b:6a:59:c8:05:7c:d1:b7:af:14:7e: c0:0d:45:56:81:36:04:cf:ac:d7:3c:4b:13:96:a7: 3a:ab:df:81:f0:f2:e2:e1:da:1a:bc:ca:f8:95:6a: af:63:a2:32:aa:bd:02:57:3f:4e:26:cf:6a:68:0e: a7:58:69:ad:11:76:5e:d4:f5:46:1c:aa:0e:91:83: dd:2f:05:f9:e0:8b:bf:f2:89:ae:c7:c9:e5:70:58: 1e:9c:85:b5:2d:5e:e1:5b:9d:76:b9:01:f8:52:6e: 5e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7E:E9:02:25:0A:5B:43:59:A0:25:E3:69:F1:EE:4A:D2:FA:BD:4F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.13.0/24 Signature Algorithm: sha256WithRSAEncryption a2:d2:68:2c:49:58:29:49:69:2b:99:45:67:7e:41:09:cf:4b: ea:44:b4:e5:34:7b:f6:7e:20:55:94:f4:fb:1a:7d:8c:b0:aa: 3e:12:cd:9b:15:fe:03:5c:de:cf:c8:9c:76:2b:25:a4:0c:28: 6a:f8:0c:32:6a:6a:ab:b1:13:6f:36:fe:45:8c:3d:c3:11:c1: e9:2b:9f:53:61:71:1a:4c:24:4c:87:79:46:94:7d:b5:c2:0f: af:5d:52:c8:40:5b:bc:3e:dc:31:7a:42:9c:c9:48:0f:75:4a: 21:a3:dc:42:0a:97:e2:43:98:a9:9d:b5:f8:4d:4a:7e:4b:9f: 34:f8:1e:00:3b:bc:29:e3:b4:a8:44:e0:9f:61:8f:8d:6d:99: 28:80:b6:3c:22:40:70:39:82:f3:3d:ec:0e:1a:35:7a:07:d8: 5d:21:cb:0f:e1:f1:ee:4c:b3:a1:d6:fe:68:b3:f0:9f:64:a6: e4:06:0e:67:16:00:a5:f5:29:21:0f:bf:7b:a5:65:62:3b:ac: 3e:87:51:c3:27:e6:bf:f9:c0:af:e8:c5:ed:12:08:75:a8:ac: 48:48:8a:f0:4b:0c:d8:f7:57:cf:18:dc:49:c3:1d:9e:86:ff: fb:57:d5:b8:d7:6e:d6:ac:a4:59:a1:2a:6f:ce:ec:04:6d:64: 5a:71:0d:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMTE1MTEwNjUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE1MTFjOS1mZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7dER7TpB2BIk4ZZOsvwM4Yuu2B4N5p4u4m4NtBdsj/drhw928stAGMRNK7P gIm/OPDk+AN7YFDdbvwzdypFLw1k79FMzL874zBptuIcoIUlA6cMEVd7OEPc6tye z2yibJFJg4rmqLTqgjHPbM8U1xf/tNtprqB/RCj5zdUvV6fmHV/n8TKEeyFG4MLN +qGsClm18MCxdX/Im2pZyAV80bevFH7ADUVWgTYEz6zXPEsTlqc6q9+B8PLi4doa vMr4lWqvY6Iyqr0CVz9OJs9qaA6nWGmtEXZe1PVGHKoOkYPdLwX54Iu/8omux8nl cFgenIW1LV7hW512uQH4Um5erwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOp+6QIl CltDWaAl42nx7krS+r1PMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkUyMDVFRkFC Mzk2MTFFRTg5Q0U1OTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCg0wDQYJKoZIhvcNAQELBQADggEBAKLSaCxJWClJaSuZ RWd+QQnPS+pEtOU0e/Z+IFWU9PsafYywqj4SzZsV/gNc3s/InHYrJaQMKGr4DDJq aquxE282/kWMPcMRwekrn1NhcRpMJEyHeUaUfbXCD69dUshAW7w+3DF6QpzJSA91 SiGj3EIKl+JDmKmdtfhNSn5LnzT4HgA7vCnjtKhE4J9hj41tmSiAtjwiQHA5gvM9 7A4aNXoH2F0hyw/h8e5Ms6HW/miz8J9kpuQGDmcWAKX1KSEPv3ulZWI7rD6HUcMn 5r/5wK/oxe0SCHWorEhIivBLDNj3V88Y3EnDHZ6G//tX1bjXbtaspFmhKm/O7ARt ZFpxDfc= -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org