$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa File: 4B97FFDA008D11EF84E0E056C4F9AE02.roa (raw, json) Hash identifier: lcxp8TlzA+S+k1lrjhQ3L/YKm2cRjWxilAFlkqnVHRY= Subject key identifier: 43:C6:81:62:7A:96:75:4E:5E:27:59:F9:F9:EB:A3:41:F8:7A:7D:FD Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19E4 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:26 +0000 ROA not before: Thu 30 May 2024 15:52:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135817 IP address blocks: 157.66.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6628 (0x19e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:26 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0b9-6477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cf:b0:8f:d9:22:7c:5b:c5:2a:fc:e8:85:b3: e5:0e:36:b0:06:32:4c:4e:76:d9:d3:ad:46:50:ba: 33:22:0f:f4:7d:90:0f:c3:9c:e7:1a:7c:2c:14:40: 77:82:20:b3:b0:72:51:54:b1:26:02:0e:0d:c6:10: ab:10:9d:6a:3d:bb:26:ff:cf:5e:83:d5:b1:94:e6: c4:85:9c:ad:df:25:9a:9f:ef:46:6b:45:17:b3:d5: 73:65:60:1e:1d:49:8b:dd:d1:9b:5f:ca:9e:d1:a6: bb:81:9b:44:35:20:0a:db:05:dc:79:f5:40:5d:86: 3b:ca:e2:1b:fe:ba:57:7a:9f:78:b0:bf:6d:99:a5: 92:a1:de:eb:11:28:84:aa:59:38:7d:8c:cb:de:e0: 51:c1:06:b4:44:69:cb:d7:fe:c2:a3:4c:91:bc:0b: ae:e9:09:14:35:4f:55:7b:a4:19:46:9a:11:28:d3: 19:e9:ca:ca:d0:19:25:fd:8d:2e:64:e5:17:cc:96: 77:28:d8:03:24:11:c0:bb:82:74:c6:7a:f3:18:c0: 55:b8:3d:d0:80:c5:81:e4:c9:4c:d2:80:54:b4:ae: 5b:ad:15:09:e9:0b:70:5d:7d:64:50:fa:53:9a:6e: 35:6f:a5:22:d2:a8:32:eb:11:37:16:6b:0e:19:81: c5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C6:81:62:7A:96:75:4E:5E:27:59:F9:F9:EB:A3:41:F8:7A:7D:FD X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.32.0/24 Signature Algorithm: sha256WithRSAEncryption 23:15:7e:e4:87:15:b7:c2:9c:f1:0c:5e:76:29:ae:51:27:1d: 12:c7:cc:53:9d:9e:80:9d:7a:2f:47:5e:12:01:eb:06:86:5d: 7e:91:97:73:92:79:0d:3a:4c:44:18:34:1e:06:99:a3:97:19: d9:4c:53:81:13:3b:d1:9c:c9:b7:59:67:78:7c:3e:78:62:d2: c6:cb:9e:01:ac:cb:31:4b:7b:b7:79:88:ee:6b:dc:e4:15:0f: da:fa:a6:c2:ce:7e:1c:81:cb:b8:06:64:1b:38:61:db:54:aa: 84:0a:bc:fd:8f:96:12:e5:e7:bc:9d:48:61:06:d1:99:83:18: 7a:b8:a6:e2:1f:41:d1:7a:19:79:15:fa:67:a0:3c:f8:5f:2f: f5:f2:8e:60:4a:88:c9:ea:76:69:5c:5e:25:05:88:53:7b:0c: a6:e8:6b:d3:7c:ca:06:d5:c1:e2:74:4c:c0:af:dd:7c:3c:fe: 66:b9:c2:c7:b6:01:77:6b:de:97:24:77:78:7c:38:fa:7e:84: 14:3c:b9:16:df:45:5f:01:86:dd:3d:4f:2a:bb:c1:bb:39:d2: cb:18:e5:1b:a5:f5:6b:73:37:7b:16:ab:96:8d:04:56:39:e9: be:dc:38:cf:31:27:bf:f7:ba:f9:05:95:b1:e7:08:6d:37:6f: 34:12:bc:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjI2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBiOS02NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c+wj9kifFvFKvzohbPlDjawBjJMTnbZ061GULozIg/0fZAPw5znGnwsFEB3 giCzsHJRVLEmAg4NxhCrEJ1qPbsm/89eg9WxlObEhZyt3yWan+9Ga0UXs9VzZWAe HUmL3dGbX8qe0aa7gZtENSAK2wXcefVAXYY7yuIb/rpXep94sL9tmaWSod7rESiE qlk4fYzL3uBRwQa0RGnL1/7Co0yRvAuu6QkUNU9Ve6QZRpoRKNMZ6crK0Bkl/Y0u ZOUXzJZ3KNgDJBHAu4J0xnrzGMBVuD3QgMWB5MlM0oBUtK5brRUJ6QtwXX1kUPpT mm41b6Ui0qgy6xE3FmsOGYHFFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEPGgWJ6 lnVOXidZ+fnro0H4en39MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEI5N0ZGREEw MDhEMTFFRjg0RTBFMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQiAwDQYJKoZIhvcNAQELBQADggEBACMVfuSHFbfCnPEM XnYprlEnHRLHzFOdnoCdei9HXhIB6waGXX6Rl3OSeQ06TEQYNB4GmaOXGdlMU4ET O9GcybdZZ3h8Pnhi0sbLngGsyzFLe7d5iO5r3OQVD9r6psLOfhyBy7gGZBs4YdtU qoQKvP2PlhLl57ydSGEG0ZmDGHq4puIfQdF6GXkV+megPPhfL/XyjmBKiMnqdmlc XiUFiFN7DKboa9N8ygbVweJ0TMCv3Xw8/ma5wse2AXdr3pckd3h8OPp+hBQ8uRbf RV8Bht09Tyq7wbs50ssY5Rul9WtzN3sWq5aNBFY56b7cOM8xJ7/3uvkFlbHnCG03 bzQSvP8= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org