$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa File: 4B97FFDA008D11EF84E0E056C4F9AE02.roa (raw, json) Hash identifier: MO7l0yItp4qqQEhwZHEGrJk1eMUo/jKq2eDp7xUXp/c= Subject key identifier: E1:DC:50:B6:80:B4:76:57:C0:FA:11:28:FD:39:7C:3D:01:0D:B5:42 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1978 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa Signing time: Mon 22 Apr 2024 09:47:13 +0000 ROA not before: Mon 22 Apr 2024 09:47:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135817 IP address blocks: 157.66.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6520 (0x1978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 22 09:47:13 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66263221-9d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:87:ba:b4:82:62:f6:ad:a4:ac:fe:02:d4:bc: a8:ff:1f:5d:bd:14:59:59:d6:08:e6:32:f2:f3:a9: 30:07:2b:fc:ad:7f:48:bd:d5:2e:e4:c0:38:5b:80: 21:c5:49:59:0f:6d:7b:ca:58:77:50:fd:ef:a5:00: b4:5f:96:45:88:af:93:d6:fd:73:96:db:6b:b4:6d: 0b:65:31:8d:d1:0a:f4:c3:36:4b:13:62:1b:ba:eb: 1e:db:1d:77:06:15:0f:44:de:5a:05:6a:9f:55:72: 3c:ba:ab:20:6e:13:5f:90:a6:69:e3:1b:30:2c:40: f0:cd:37:bb:5c:d8:29:e8:39:9c:db:7e:c9:5a:6a: a7:a4:a0:a9:ec:90:2e:5b:1d:1e:bf:73:09:94:ae: 2a:77:f9:ff:b6:a6:77:87:17:1e:8c:f5:d2:2f:4e: a9:7c:f9:a6:f8:ae:7c:a3:41:13:fb:80:bc:90:af: c5:ad:f0:65:69:a4:64:e8:67:34:10:b4:a8:af:39: 39:42:2e:81:cb:b0:f3:96:c1:f7:47:64:39:70:25: a7:c5:80:83:cb:16:ed:ca:ad:d0:5c:ef:49:ac:e9: 83:99:7f:8e:40:28:73:63:4d:7e:16:9c:92:dd:74: b2:bb:b1:5a:4f:75:64:8f:ce:92:82:17:0c:3c:c1: 4b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DC:50:B6:80:B4:76:57:C0:FA:11:28:FD:39:7C:3D:01:0D:B5:42 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.32.0/24 Signature Algorithm: sha256WithRSAEncryption 66:fc:29:b3:42:d5:f6:68:cc:3f:db:de:60:d3:22:82:d8:67: df:17:2d:15:d7:91:e5:1b:c4:25:f0:69:f1:73:e3:c8:1e:4e: 5e:4f:7b:6f:82:e3:ab:54:b2:d7:49:af:32:c0:f7:b6:9b:7c: 66:f0:df:91:17:76:24:bf:0b:cc:38:55:c0:fc:60:ff:eb:92: 03:3f:78:9a:41:ad:af:5b:0e:28:ed:ce:b7:ec:7a:2a:52:3d: 70:c6:fc:a6:fe:fd:c3:88:bd:68:ba:cc:10:86:7b:d4:60:31: 89:54:79:5d:1c:14:23:78:35:d2:9b:c0:b5:cd:72:ff:1b:0a: 2e:58:f6:5d:d1:fe:f3:91:ad:78:57:5e:a5:58:a9:36:ee:d5: 43:7f:e9:f4:0d:a4:7c:0f:3a:10:d9:1c:17:96:89:a7:98:47: a3:0f:d0:39:d5:df:06:5e:99:9e:e5:05:17:ec:1e:58:bb:d7: 73:9d:de:f6:97:88:f1:c8:0d:ea:33:52:4a:d7:da:03:76:3f: d7:b1:75:e4:77:d2:e2:39:e6:c5:dc:4f:19:64:f4:c9:1f:60: 5d:bb:17:0c:cc:ad:d4:49:e1:05:ec:58:fb:67:59:d4:9b:6a: 63:d1:b4:cb:84:16:71:e2:8c:de:b0:2c:cd:a7:e0:a9:c4:4b: c0:f2:11:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDIyMDk0NzEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2MzIyMS05ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44e6tIJi9q2krP4C1Lyo/x9dvRRZWdYI5jLy86kwByv8rX9IvdUu5MA4W4Ah xUlZD217ylh3UP3vpQC0X5ZFiK+T1v1zlttrtG0LZTGN0Qr0wzZLE2Ibuuse2x13 BhUPRN5aBWqfVXI8uqsgbhNfkKZp4xswLEDwzTe7XNgp6Dmc237JWmqnpKCp7JAu Wx0ev3MJlK4qd/n/tqZ3hxcejPXSL06pfPmm+K58o0ET+4C8kK/FrfBlaaRk6Gc0 ELSorzk5Qi6By7DzlsH3R2Q5cCWnxYCDyxbtyq3QXO9JrOmDmX+OQChzY01+FpyS 3XSyu7FaT3Vkj86SghcMPMFLnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOHcULaA tHZXwPoRKP05fD0BDbVCMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEI5N0ZGREEw MDhEMTFFRjg0RTBFMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQiAwDQYJKoZIhvcNAQELBQADggEBAGb8KbNC1fZozD/b 3mDTIoLYZ98XLRXXkeUbxCXwafFz48geTl5Pe2+C46tUstdJrzLA97abfGbw35EX diS/C8w4VcD8YP/rkgM/eJpBra9bDijtzrfseipSPXDG/Kb+/cOIvWi6zBCGe9Rg MYlUeV0cFCN4NdKbwLXNcv8bCi5Y9l3R/vORrXhXXqVYqTbu1UN/6fQNpHwPOhDZ HBeWiaeYR6MP0DnV3wZemZ7lBRfsHli713Od3vaXiPHIDeozUkrX2gN2P9exdeR3 0uI55sXcTxlk9MkfYF27FwzMrdRJ4QXsWPtnWdSbamPRtMuEFnHijN6wLM2n4KnE S8DyEVQ= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org