$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa File: 3D8177A4AB5211EEAC610B2CC4F9AE02.roa (raw, json) Hash identifier: Fl8ByEK/ORV6Ed9hG6RoC5KOXoaUeYaLENKg1D6nsLQ= Subject key identifier: 3C:10:39:BE:A7:FC:4A:40:EA:E1:36:2B:58:46:F5:91:BF:02:29:27 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1889 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa Signing time: Thu 04 Jan 2024 22:40:21 +0000 ROA not before: Thu 04 Jan 2024 22:40:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151743 IP address blocks: 157.10.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6281 (0x1889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 4 22:40:21 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=659733d4-fc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6c:8c:f6:72:ea:c5:1a:b1:23:38:ad:4d:b8: dc:61:b9:6b:17:b5:12:4c:6d:37:28:71:22:8b:df: 88:95:f8:0b:a3:67:ab:da:60:b8:b9:4c:58:9b:16: fb:da:98:d6:9e:b5:56:09:0e:f4:d0:98:65:8e:c7: 45:d8:10:0d:23:4b:6b:f8:2f:ac:aa:54:0d:01:ea: 08:76:e4:06:79:fe:94:9b:18:4f:e9:cb:c2:42:a4: e7:4e:27:07:7e:10:94:0c:81:da:ae:36:5d:36:21: 89:53:47:87:79:34:46:49:4f:95:c2:2c:70:79:0c: fd:65:0f:c7:19:00:cd:61:65:04:0c:61:c7:ce:bc: d2:b1:b8:f5:37:aa:79:8e:0d:85:d4:17:8a:75:04: 13:32:84:e1:63:e8:84:0d:2b:39:cc:dd:c2:ad:4d: 72:dc:c7:4c:1a:02:33:0f:69:bb:6b:7c:80:a8:75: a1:03:ab:3e:e7:f2:8c:a3:32:0b:ad:5e:4f:8b:97: b1:df:cb:00:89:7d:b4:0d:b6:87:da:a5:b7:07:a1: 32:41:20:bf:74:86:be:a2:f7:51:ca:97:40:02:1c: 61:9d:33:e8:0d:43:e5:a9:8f:b5:46:9c:03:25:d7: 40:27:00:3a:5e:38:4c:ce:dc:4a:06:ac:e0:d5:03: 48:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:10:39:BE:A7:FC:4A:40:EA:E1:36:2B:58:46:F5:91:BF:02:29:27 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.62.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:4f:7e:8a:3c:3f:e1:cb:17:6e:39:cb:7d:8b:e2:2e:20:82: e7:f6:73:bc:75:11:d9:19:f5:0e:92:7e:82:de:bb:3b:7a:3c: b2:76:6e:72:3b:05:f4:6b:3f:ce:9f:47:30:71:3c:93:bd:67: 65:6c:a9:10:31:68:59:c6:2c:57:0f:bc:64:24:16:93:d3:d0: 05:f8:1f:dc:4b:f1:dc:bd:59:50:fc:b5:dc:fd:6b:63:fb:87: e3:9e:cb:0d:4e:5b:d5:37:9b:e2:88:1c:77:00:85:4a:8d:77: 81:f8:62:d8:5b:10:eb:a6:8f:45:e6:cf:dc:5d:f2:d6:04:d6: 5b:02:d9:d3:15:f9:84:22:bb:a4:ec:4c:34:69:41:67:93:9a: a9:3f:47:08:7f:b5:4b:3b:19:ca:7e:c8:39:9d:0d:92:9b:62: 3e:24:61:46:74:2a:fc:01:07:8b:69:72:46:01:50:04:21:50: c8:26:dc:70:7e:fc:76:28:ca:af:e1:0c:54:fa:51:7a:c8:53: db:ae:3c:ee:7f:02:29:8b:93:f1:5b:ca:e2:19:11:97:52:64: 19:14:61:69:ac:d4:ff:c7:6f:c4:3e:29:c6:3e:8d:0f:cd:2e: e4:ba:9b:25:60:1e:9c:eb:e4:26:9a:3b:c9:b7:58:f5:00:2a: a5:08:32:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMTA0MjI0MDIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3MzNkNC1mYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22yM9nLqxRqxIzitTbjcYblrF7USTG03KHEii9+IlfgLo2er2mC4uUxYmxb7 2pjWnrVWCQ700JhljsdF2BANI0tr+C+sqlQNAeoIduQGef6UmxhP6cvCQqTnTicH fhCUDIHarjZdNiGJU0eHeTRGSU+VwixweQz9ZQ/HGQDNYWUEDGHHzrzSsbj1N6p5 jg2F1BeKdQQTMoThY+iEDSs5zN3CrU1y3MdMGgIzD2m7a3yAqHWhA6s+5/KMozIL rV5Pi5ex38sAiX20DbaH2qW3B6EyQSC/dIa+ovdRypdAAhxhnTPoDUPlqY+1RpwD JddAJwA6XjhMztxKBqzg1QNIMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwQOb6n /EpA6uE2K1hG9ZG/AiknMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0Q4MTc3QTRB QjUyMTFFRUFDNjEwQjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCj4wDQYJKoZIhvcNAQELBQADggEBAH1Pfoo8P+HLF245 y32L4i4gguf2c7x1EdkZ9Q6SfoLeuzt6PLJ2bnI7BfRrP86fRzBxPJO9Z2VsqRAx aFnGLFcPvGQkFpPT0AX4H9xL8dy9WVD8tdz9a2P7h+Oeyw1OW9U3m+KIHHcAhUqN d4H4YthbEOumj0Xmz9xd8tYE1lsC2dMV+YQiu6TsTDRpQWeTmqk/Rwh/tUs7Gcp+ yDmdDZKbYj4kYUZ0KvwBB4tpckYBUAQhUMgm3HB+/HYoyq/hDFT6UXrIU9uuPO5/ AimLk/FbyuIZEZdSZBkUYWms1P/Hb8Q+KcY+jQ/NLuS6myVgHpzr5CaaO8m3WPUA KqUIMlw= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org