$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa File: 3D8177A4AB5211EEAC610B2CC4F9AE02.roa (raw, json) Hash identifier: ia2HY3SRO5GZoMkDkGl3HTH02ZesOfwhg3007VFirJg= Subject key identifier: 73:66:13:54:15:7E:51:88:4F:A9:72:07:43:D5:FA:39:1D:89:E0:29 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A0E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa Signing time: Thu 30 May 2024 15:53:05 +0000 ROA not before: Thu 30 May 2024 15:53:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151743 IP address blocks: 157.10.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6670 (0x1a0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0e1-1553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cc:94:fe:91:e1:66:97:b4:36:dd:37:5c:b6: c6:49:d2:35:23:c5:ea:6c:31:21:21:2a:60:64:c9: af:b5:24:25:87:7c:18:d1:78:80:35:58:7a:b3:c5: 26:88:53:43:86:ff:05:7f:aa:28:c6:ce:c0:cb:ef: 88:c6:6a:08:14:f0:ad:bb:87:f3:a1:00:e5:4f:90: a7:54:e6:80:4b:70:7f:9b:60:0e:0a:66:a4:a4:a5: d8:05:18:f9:ef:a5:ce:86:59:69:2b:4d:2e:e5:ae: 18:ca:e4:47:0b:94:74:8b:27:5d:ca:d8:4b:4a:d2: d4:c7:38:81:2e:01:bb:02:5f:a1:78:0b:0b:85:30: 4a:80:80:7b:50:1d:aa:67:4c:58:6f:ca:3c:07:33: 9f:db:8a:58:09:50:03:2c:c4:a0:63:c8:56:ee:64: 1e:aa:f7:15:5a:39:27:d5:02:00:0b:3e:c8:cd:e4: ac:42:a3:21:12:e0:ce:23:2d:1c:f8:b2:eb:cf:aa: d0:90:60:33:9c:42:b8:32:69:f2:d7:de:10:f5:14: 82:83:15:44:df:92:d2:ad:b2:b5:d4:3f:ca:1a:94: e9:6a:c7:b0:3d:98:57:52:ff:f2:79:0d:fd:a0:e2: c5:a3:c9:f2:da:ba:ab:79:81:d8:ba:17:d5:7f:9f: 80:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:66:13:54:15:7E:51:88:4F:A9:72:07:43:D5:FA:39:1D:89:E0:29 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8177A4AB5211EEAC610B2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.62.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:a7:45:fc:3e:b6:5c:8a:43:d5:7b:86:af:e0:32:3b:7d:25: c1:c2:08:27:27:2a:96:72:6d:fc:04:aa:b3:93:6b:ab:fa:b3: 4c:49:0e:d5:e1:34:5a:29:e1:77:39:d3:83:1a:bb:b0:29:04: 59:01:d1:27:0c:47:c3:8c:2e:bb:2e:9b:0f:e8:cf:9c:9a:e5: 11:68:5a:e8:60:05:56:4c:40:d7:d0:27:a8:c7:de:76:eb:66: 75:e3:90:71:8a:83:b1:bb:43:9d:5f:dd:02:b3:d2:41:16:30: 86:c2:74:ba:d3:3c:a5:ab:22:ce:88:6e:67:8e:c1:d5:f4:26: f5:48:d9:4f:6d:e7:2a:c5:da:87:aa:9c:63:a8:18:eb:93:4e: 45:5e:ba:a1:38:4c:34:ee:64:0e:0b:19:76:b4:e0:67:d6:2e: b0:72:7c:34:e7:0c:c8:8a:a0:4d:56:91:4e:a0:a5:8a:0f:2b: cd:c7:f3:31:6e:ff:b9:9c:aa:a0:d5:76:10:8b:cc:6f:2e:ec: d4:35:91:69:fb:96:8d:7d:49:81:e9:cf:ee:07:8f:42:ae:41: fa:a0:8e:39:10:7b:cf:11:cf:3b:d0:d7:3f:fc:e6:3a:e3:0d: ef:bd:16:f5:f9:3e:c0:c6:23:c9:ce:2c:9a:45:4a:2a:7e:fa: 45:0d:0a:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzA1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBlMS0xNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8yU/pHhZpe0Nt03XLbGSdI1I8XqbDEhISpgZMmvtSQlh3wY0XiANVh6s8Um iFNDhv8Ff6ooxs7Ay++IxmoIFPCtu4fzoQDlT5CnVOaAS3B/m2AOCmakpKXYBRj5 76XOhllpK00u5a4YyuRHC5R0iyddythLStLUxziBLgG7Al+heAsLhTBKgIB7UB2q Z0xYb8o8BzOf24pYCVADLMSgY8hW7mQeqvcVWjkn1QIACz7IzeSsQqMhEuDOIy0c +LLrz6rQkGAznEK4Mmny194Q9RSCgxVE35LSrbK11D/KGpTpasewPZhXUv/yeQ39 oOLFo8ny2rqreYHYuhfVf5+AUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNmE1QV flGIT6lyB0PV+jkdieApMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0Q4MTc3QTRB QjUyMTFFRUFDNjEwQjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCj4wDQYJKoZIhvcNAQELBQADggEBAJ6nRfw+tlyKQ9V7 hq/gMjt9JcHCCCcnKpZybfwEqrOTa6v6s0xJDtXhNFop4Xc504Mau7ApBFkB0ScM R8OMLrsumw/oz5ya5RFoWuhgBVZMQNfQJ6jH3nbrZnXjkHGKg7G7Q51f3QKz0kEW MIbCdLrTPKWrIs6IbmeOwdX0JvVI2U9t5yrF2oeqnGOoGOuTTkVeuqE4TDTuZA4L GXa04GfWLrByfDTnDMiKoE1WkU6gpYoPK83H8zFu/7mcqqDVdhCLzG8u7NQ1kWn7 lo19SYHpz+4Hj0KuQfqgjjkQe88RzzvQ1z/85jrjDe+9FvX5PsDGI8nOLJpFSip+ +kUNCuc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org