$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/42BF9F626C2111EF8AAEC852C4F9AE02.roa File: 42BF9F626C2111EF8AAEC852C4F9AE02.roa (raw, json) Hash identifier: 3/UNstEfKikGfC/YH9pHBvzAoFUIymDkrDSFlWzKXD4= Subject key identifier: AC:DC:21:E3:96:22:88:A3:ED:94:89:50:F8:67:A8:2E:44:AB:80:6E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1B2D Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/42BF9F626C2111EF8AAEC852C4F9AE02.roa Signing time: Fri 06 Sep 2024 07:25:58 +0000 ROA not before: Fri 06 Sep 2024 07:25:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152515 IP address blocks: 157.66.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6957 (0x1b2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Sep 6 07:25:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66daae86-dce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0f:d1:0b:9f:5d:db:28:79:3a:e2:2b:66:0a: ae:bb:5a:69:41:d4:80:a5:7c:bd:c8:bd:33:43:30: 2c:33:e7:5d:65:93:14:40:43:47:8c:7f:67:2b:62: d7:0d:54:a9:f6:46:d5:35:83:7a:bd:7e:89:34:cc: 30:3e:4f:47:27:f5:2e:01:3f:39:0f:58:16:a8:1c: 5b:78:a7:8c:d4:50:9f:7d:4d:28:50:70:8c:e7:98: bb:4d:8b:69:b9:b6:08:81:6a:e5:e6:dc:9b:68:85: d9:cc:3b:70:60:26:d9:92:23:4e:0b:97:84:61:41: 63:2a:96:33:52:69:33:ad:54:68:b0:46:9d:44:8c: a8:88:66:11:e5:e0:e8:f8:38:45:fd:2e:55:2e:f9: 39:09:bc:d3:81:84:1b:62:df:e8:84:60:13:bb:24: 54:fe:ea:b5:9d:5d:4b:63:a5:9b:48:de:d7:25:ae: da:b5:75:89:01:73:5b:0e:65:c9:f3:be:bb:3b:51: 02:92:37:96:d2:16:75:0c:c8:b5:2a:ff:a0:aa:63: 52:7b:de:5d:88:c9:ec:8e:12:2a:45:44:ed:21:11: d0:1e:6f:6a:23:55:21:7a:e4:c5:d3:a5:0a:85:42: e3:99:42:25:a1:b9:d1:b7:12:86:a3:ed:15:56:84: 83:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DC:21:E3:96:22:88:A3:ED:94:89:50:F8:67:A8:2E:44:AB:80:6E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/42BF9F626C2111EF8AAEC852C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.30.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:a8:9b:65:f8:81:44:0c:35:56:b1:a4:36:d6:9a:31:2e:10: ca:da:7a:a3:6d:1e:72:ff:ad:53:b2:35:fc:50:e4:48:e9:01: a6:b2:e1:3d:8a:7a:b5:83:75:98:cd:ea:6c:5c:22:7c:94:95: f7:1a:8c:13:87:a9:a8:24:79:7a:29:57:08:75:71:8e:a0:2f: 8d:35:e7:9f:50:90:c0:24:3b:a1:3f:dc:62:ac:bb:21:2a:7c: 47:4c:03:6e:d2:69:10:a0:70:d3:66:aa:21:5f:0c:ae:93:db: 0d:8e:00:6c:45:95:32:d3:e0:fc:9b:e8:8f:a9:51:11:f0:fb: cc:cb:3e:5d:aa:34:c5:a5:c5:97:f5:b4:5c:44:7f:f6:72:30: 6a:fb:b5:02:18:20:5c:29:49:ea:1d:f9:39:6c:96:ce:87:75: 84:ef:91:16:e8:6e:09:11:0a:f1:ae:98:8a:38:dd:18:93:4b: fd:7c:a1:ee:92:d7:d2:a4:6a:9a:71:33:38:b4:1e:8e:7a:33: ac:40:71:cd:5b:13:a4:7b:fa:46:36:cd:a9:b3:40:46:0d:12: 4d:09:4c:24:7d:96:5d:fd:58:71:19:d5:44:2f:bc:8b:e4:c1: 00:3d:fc:c6:07:16:f0:f6:97:dd:b6:ed:9b:3c:ed:03:5d:11: f5:d3:cd:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwOTA2MDcyNTU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRhYWU4Ni1kY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg/RC59d2yh5OuIrZgquu1ppQdSApXy9yL0zQzAsM+ddZZMUQENHjH9nK2LX DVSp9kbVNYN6vX6JNMwwPk9HJ/UuAT85D1gWqBxbeKeM1FCffU0oUHCM55i7TYtp ubYIgWrl5tybaIXZzDtwYCbZkiNOC5eEYUFjKpYzUmkzrVRosEadRIyoiGYR5eDo +DhF/S5VLvk5CbzTgYQbYt/ohGATuyRU/uq1nV1LY6WbSN7XJa7atXWJAXNbDmXJ 8767O1ECkjeW0hZ1DMi1Kv+gqmNSe95diMnsjhIqRUTtIRHQHm9qI1UheuTF06UK hULjmUIlobnRtxKGo+0VVoSDVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKzcIeOW Ioij7ZSJUPhnqC5Eq4BuMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDJCRjlGNjI2 QzIxMTFFRjhBQUVDODUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQh4wDQYJKoZIhvcNAQELBQADggEBAD+om2X4gUQMNVax pDbWmjEuEMraeqNtHnL/rVOyNfxQ5EjpAaay4T2KerWDdZjN6mxcInyUlfcajBOH qagkeXopVwh1cY6gL401559QkMAkO6E/3GKsuyEqfEdMA27SaRCgcNNmqiFfDK6T 2w2OAGxFlTLT4Pyb6I+pURHw+8zLPl2qNMWlxZf1tFxEf/ZyMGr7tQIYIFwpSeod +Tlsls6HdYTvkRbobgkRCvGumIo43RiTS/18oe6S19KkappxMzi0Ho56M6xAcc1b E6R7+kY2zamzQEYNEk0JTCR9ll39WHEZ1UQvvIvkwQA9/MYHFvD2l9227Zs87QNd EfXTzSY= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org