$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa File: 2E205EFAB39611EE89CE591AC4F9AE02.roa (raw, json) Hash identifier: NrzmE73W3yLi/1jIJoicjvq1ubPr2EcEIDkygSaUw8M= Subject key identifier: 8C:EB:C0:6F:ED:02:B9:6D:49:B2:DE:1A:B6:C0:6D:BC:E5:34:E7:6D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19E9 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa Signing time: Thu 30 May 2024 15:52:30 +0000 ROA not before: Thu 30 May 2024 15:52:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138225 IP address blocks: 157.10.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6633 (0x19e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0be-3770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:b4:d6:ad:52:49:1b:29:ca:ea:a8:4f:71: 39:ed:e1:0e:ee:ee:3b:fb:38:9a:f8:fc:b9:39:80: c3:10:6d:11:bb:ab:dd:6b:d8:56:92:f6:55:d7:af: 53:a8:f4:c1:2c:fe:76:ae:3c:f5:8f:45:9c:28:6f: 64:a4:a2:1c:dd:7d:a5:10:ff:96:79:c2:4a:f4:60: cb:08:d0:f5:56:7c:43:fd:b6:67:e2:6f:54:7d:e1: da:ce:4f:8f:be:41:e9:94:7c:0b:0d:59:e7:b0:02: e7:9e:d4:52:a1:a5:e1:8a:c1:39:c2:60:6b:07:1b: c8:e4:f3:0f:e2:22:9d:b0:d4:04:ce:8b:c3:3f:ba: 36:40:e2:b0:14:25:c9:5a:4e:b3:6c:09:34:34:24: 0b:ae:c2:42:54:18:80:ef:73:82:47:c0:99:5e:51: ee:32:53:07:37:0d:0a:4a:77:28:83:b8:c5:1e:62: 48:80:42:a4:87:06:4a:43:b2:c0:3e:68:40:26:34: c3:45:0e:da:13:5c:9b:88:03:7c:57:9b:fa:56:b8: 5a:88:6c:b9:ea:ef:13:e9:28:81:9f:83:bf:a8:64: 4b:7b:f1:cc:09:e2:2c:13:ed:f1:70:69:0d:8e:51: 67:2e:cb:cd:8b:4f:6d:97:64:dd:c3:be:7f:f7:82: 78:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EB:C0:6F:ED:02:B9:6D:49:B2:DE:1A:B6:C0:6D:BC:E5:34:E7:6D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2E205EFAB39611EE89CE591AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.13.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:a3:df:f2:ef:85:b3:8b:27:7c:91:4c:d6:b7:e6:a0:eb:c7: 55:de:38:7a:15:2a:4c:12:4c:85:3d:fe:b6:f0:e8:71:8e:ac: e8:36:f9:0e:85:43:9e:8e:71:1b:cf:3f:4f:b4:c4:d9:a4:d8: 1a:99:29:09:70:2f:1d:da:3f:67:99:27:f4:11:cd:df:06:e4: 68:0c:84:23:5e:72:6a:7e:1b:01:35:04:c9:8b:e1:bd:ec:bc: 56:37:8d:cf:db:7e:6e:55:27:84:89:0e:14:f1:a2:09:b9:95: 05:3a:ce:c6:29:03:fc:74:b0:40:6f:80:93:99:6c:52:ea:14: 35:22:62:d1:c1:3b:60:1a:1c:7d:6b:dd:75:f9:52:3a:9d:f6: 6c:0e:88:5b:4a:ae:61:b8:ea:cb:c8:81:5e:66:83:78:34:0d: 30:3a:f6:ed:86:58:c7:73:00:3b:3d:03:63:c9:4b:4b:25:6b: 8e:4b:f4:65:d3:89:0c:3e:02:34:4e:8d:80:7d:4d:40:3b:cd: a9:7d:4e:a7:94:87:88:5a:3e:3a:c6:2e:80:98:19:e3:58:99: ad:2d:33:29:c7:ac:2e:71:41:cf:6c:62:50:31:64:67:c2:42: b1:f3:ca:59:9d:76:ba:46:9f:9e:13:fe:cd:fb:8e:22:17:4c: da:3b:96:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBiZS0zNzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPm01q1SSRspyuqoT3E57eEO7u47+zia+Py5OYDDEG0Ru6vda9hWkvZV169T qPTBLP52rjz1j0WcKG9kpKIc3X2lEP+WecJK9GDLCND1VnxD/bZn4m9UfeHazk+P vkHplHwLDVnnsALnntRSoaXhisE5wmBrBxvI5PMP4iKdsNQEzovDP7o2QOKwFCXJ Wk6zbAk0NCQLrsJCVBiA73OCR8CZXlHuMlMHNw0KSncog7jFHmJIgEKkhwZKQ7LA PmhAJjTDRQ7aE1ybiAN8V5v6VrhaiGy56u8T6SiBn4O/qGRLe/HMCeIsE+3xcGkN jlFnLsvNi09tl2Tdw75/94J4KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIzrwG/t ArltSbLeGrbAbbzlNOdtMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkUyMDVFRkFC Mzk2MTFFRTg5Q0U1OTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCg0wDQYJKoZIhvcNAQELBQADggEBAJ6j3/LvhbOLJ3yR TNa35qDrx1XeOHoVKkwSTIU9/rbw6HGOrOg2+Q6FQ56OcRvPP0+0xNmk2BqZKQlw Lx3aP2eZJ/QRzd8G5GgMhCNecmp+GwE1BMmL4b3svFY3jc/bfm5VJ4SJDhTxogm5 lQU6zsYpA/x0sEBvgJOZbFLqFDUiYtHBO2AaHH1r3XX5Ujqd9mwOiFtKrmG46svI gV5mg3g0DTA69u2GWMdzADs9A2PJS0sla45L9GXTiQw+AjROjYB9TUA7zal9TqeU h4haPjrGLoCYGeNYma0tMynHrC5xQc9sYlAxZGfCQrHzylmddrpGn54T/s37jiIX TNo7llY= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org