$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa File: 5FF2362E009411EFA47E9D43C4F9AE02.roa (raw, json) Hash identifier: KJnvxX7cuDAeJII+fJGrClnGg63Yr7wfQgqOBNV1VHA= Subject key identifier: B2:FB:64:E0:69:6A:3C:17:03:13:99:A8:1C:39:51:15:22:FA:58:00 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 197A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa Signing time: Mon 22 Apr 2024 10:37:54 +0000 ROA not before: Mon 22 Apr 2024 10:37:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151733 IP address blocks: 157.15.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6522 (0x197a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 22 10:37:54 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66263e01-4844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8d:0d:74:1b:aa:6d:54:20:6d:ee:f1:8d:05: 87:e0:5d:a0:a6:84:cc:bd:0d:14:6f:bc:70:10:ce: 49:b9:ce:8e:b0:16:4a:92:8f:56:b8:f0:e2:67:aa: 2b:6f:da:c1:dd:98:71:df:3b:6f:fc:67:c1:c3:16: 7c:39:8b:6a:52:e8:d6:4e:d1:3a:28:d0:e6:7f:1a: 25:19:f4:27:d3:47:67:f4:75:65:6f:5c:ef:df:e0: d5:dd:c3:ba:4f:58:2a:09:b1:06:42:20:f9:a4:e8: d1:6f:ff:2b:14:6a:03:06:3b:53:ff:d6:f3:45:1d: a2:db:81:ec:25:74:13:0f:0b:eb:93:6e:11:c8:1d: ad:62:a2:43:08:22:2c:c7:9a:ff:31:43:2d:49:a1: d3:95:fb:16:cd:57:ac:f6:86:56:55:e6:dd:57:47: fd:0b:ea:e9:26:db:43:6e:31:96:4b:77:ac:e7:49: 71:64:75:9d:db:c4:06:82:87:aa:d0:8b:7a:85:6f: c5:fa:9b:88:4c:63:cd:39:11:8c:01:05:f7:d6:72: c3:09:ae:bd:42:bc:64:19:a5:2e:a8:60:d7:72:34: 74:96:69:93:55:a1:fc:42:8e:37:60:be:5f:fe:b7: b2:45:72:05:d4:cc:cd:e4:ee:21:8d:32:e3:15:fd: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FB:64:E0:69:6A:3C:17:03:13:99:A8:1C:39:51:15:22:FA:58:00 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.158.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:43:e8:47:b1:1b:e0:9f:b5:7b:c8:d4:51:f4:ee:b7:32:c3: ca:71:ae:be:d3:8e:05:db:fb:92:0b:fe:f4:48:e2:97:2a:4f: b0:2e:d6:72:94:52:68:56:2f:fd:6b:86:b9:7d:f4:37:3a:96: a0:f5:6c:b6:4c:1a:12:64:e6:33:9a:ef:c5:27:6c:15:d7:58: 6f:22:44:5f:83:e5:c0:f6:33:14:1d:e8:10:09:d2:bb:46:9d: c7:cd:45:4f:a6:9c:75:34:39:ef:f2:4d:74:1b:e9:9b:06:4b: 03:04:a4:f5:8f:2d:30:46:63:20:cd:e8:fa:65:42:f7:61:a3: 0a:ec:6f:80:92:ce:8d:d6:4f:16:90:d4:85:ec:39:93:8f:54: cb:12:72:fc:a4:0a:03:7d:2a:90:b6:b0:04:f0:3b:c5:e1:1b: 29:5f:4f:0f:60:0f:6f:0b:db:07:a9:5e:4f:49:fe:b0:9e:a9: 84:ef:b9:64:22:44:11:61:2a:85:5c:74:d3:d2:a8:16:9c:25: d4:f4:17:42:97:b8:3d:25:45:1a:69:4a:ee:f2:df:ce:58:d4: 91:14:b5:f9:ec:1f:11:09:26:e5:04:ed:1c:12:c2:f9:6d:7d: 83:ee:53:07:d7:22:52:e2:03:06:3d:e9:db:8f:19:1c:0f:5e: 9f:2f:ae:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDIyMTAzNzU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2M2UwMS00ODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1o0NdBuqbVQgbe7xjQWH4F2gpoTMvQ0Ub7xwEM5Juc6OsBZKko9WuPDiZ6or b9rB3Zhx3ztv/GfBwxZ8OYtqUujWTtE6KNDmfxolGfQn00dn9HVlb1zv3+DV3cO6 T1gqCbEGQiD5pOjRb/8rFGoDBjtT/9bzRR2i24HsJXQTDwvrk24RyB2tYqJDCCIs x5r/MUMtSaHTlfsWzVes9oZWVebdV0f9C+rpJttDbjGWS3es50lxZHWd28QGgoeq 0It6hW/F+puITGPNORGMAQX31nLDCa69QrxkGaUuqGDXcjR0lmmTVaH8Qo43YL5f /reyRXIF1MzN5O4hjTLjFf3B0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLL7ZOBp ajwXAxOZqBw5URUi+lgAMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUZGMjM2MkUw MDk0MTFFRkE0N0U5RDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD54wDQYJKoZIhvcNAQELBQADggEBACtD6EexG+CftXvI 1FH07rcyw8pxrr7TjgXb+5IL/vRI4pcqT7Au1nKUUmhWL/1rhrl99Dc6lqD1bLZM GhJk5jOa78UnbBXXWG8iRF+D5cD2MxQd6BAJ0rtGncfNRU+mnHU0Oe/yTXQb6ZsG SwMEpPWPLTBGYyDN6PplQvdhowrsb4CSzo3WTxaQ1IXsOZOPVMsScvykCgN9KpC2 sATwO8XhGylfTw9gD28L2wepXk9J/rCeqYTvuWQiRBFhKoVcdNPSqBacJdT0F0KX uD0lRRppSu7y385Y1JEUtfnsHxEJJuUE7RwSwvltfYPuUwfXIlLiAwY96duPGRwP Xp8vrtI= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org