$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa File: 5FF2362E009411EFA47E9D43C4F9AE02.roa (raw, json) Hash identifier: +aeC78OqB1fh1xVoCExXDE8OvOjxcbR6AydTe9SZCjI= Subject key identifier: 40:D8:68:6F:F6:A4:50:55:8A:94:5B:E8:F0:8C:94:E3:42:81:D1:B5 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A08 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:58 +0000 ROA not before: Thu 30 May 2024 15:52:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151733 IP address blocks: 157.15.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6664 (0x1a08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0da-688a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d8:53:ce:e3:eb:e5:85:e3:68:e7:df:31:43: b7:de:cf:69:60:3a:24:6c:2c:e3:25:37:b8:24:2f: 77:86:f1:8c:05:ee:da:6b:1f:53:f0:7b:5a:c0:c8: a7:83:7d:65:9e:38:d2:74:4d:c6:43:c4:b0:de:ca: be:8c:5f:5e:28:60:12:d0:36:e7:9c:cb:fc:a9:28: ba:73:a9:f8:69:ff:b9:65:a2:db:f1:ee:67:8e:ba: 8e:e7:90:4f:b1:fd:be:7c:71:02:f2:77:27:cf:09: 4f:36:65:93:3a:2c:52:18:ed:cb:ad:61:e2:a6:3f: f7:bb:0e:2a:50:e9:e8:de:c8:7e:84:25:c3:1b:01: 7d:4c:17:84:ae:3b:38:52:36:71:84:b3:81:69:90: 76:d5:42:f7:23:7d:50:db:c7:0d:cb:e4:21:38:25: 90:63:c5:2c:1e:02:da:c2:ed:a4:e9:8f:64:34:20: e2:ed:a2:ca:18:49:81:cf:eb:42:bd:8d:96:72:85: 70:eb:2c:9f:44:20:df:90:33:3c:0e:f0:56:2e:a4: a9:91:2d:57:c3:35:da:8b:d3:41:e0:41:e9:0d:b8: a0:88:7a:af:b0:e1:83:99:aa:1b:fb:e0:37:65:9c: b1:4a:01:bf:c5:1a:69:84:ce:12:79:ca:6f:4e:6f: 13:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D8:68:6F:F6:A4:50:55:8A:94:5B:E8:F0:8C:94:E3:42:81:D1:B5 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5FF2362E009411EFA47E9D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.158.0/23 Signature Algorithm: sha256WithRSAEncryption 09:3e:b7:19:2d:33:33:00:f0:59:1c:93:09:fa:da:0a:b9:7f: 2e:fd:37:c3:aa:84:b1:25:65:39:fa:d8:00:9b:a7:ec:cd:ad: 8c:9c:cc:84:e7:3a:05:ea:a9:d9:08:91:08:64:b0:20:30:9c: 21:74:ab:da:f3:6d:bb:d6:0a:9b:01:b6:ba:d1:c7:a8:0d:03: 5b:44:c8:72:a2:99:c1:e1:58:72:e9:98:54:d4:61:6a:46:7b: 76:2a:54:03:02:d0:a1:e9:ba:b6:db:7b:2b:45:7e:f1:d1:71: f6:37:f5:a1:2b:f8:86:df:4f:1c:9f:46:24:ca:75:a8:65:47: 2d:2c:3c:22:77:ac:90:fb:ba:7f:4a:41:62:ed:1b:80:15:38: a2:39:be:4b:8b:a1:0a:b8:21:70:af:45:29:a3:46:0d:05:56: 9f:aa:15:64:f6:51:e1:20:e8:7f:06:f1:db:bb:c2:87:09:b9: 67:9f:94:53:71:dc:f9:ab:65:6d:30:64:ac:84:af:ce:64:ec: 41:e8:dd:24:97:47:cd:f9:95:f2:68:55:b7:26:ca:67:77:e0: b3:89:dc:45:33:cc:39:76:7c:5e:1e:cc:e3:f5:dd:c5:ad:25: 7d:02:d5:da:6b:8a:da:4d:34:55:ac:f5:8d:db:56:85:23:a1: 20:37:d5:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBkYS02ODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dhTzuPr5YXjaOffMUO33s9pYDokbCzjJTe4JC93hvGMBe7aax9T8HtawMin g31lnjjSdE3GQ8Sw3sq+jF9eKGAS0DbnnMv8qSi6c6n4af+5ZaLb8e5njrqO55BP sf2+fHEC8ncnzwlPNmWTOixSGO3LrWHipj/3uw4qUOno3sh+hCXDGwF9TBeErjs4 UjZxhLOBaZB21UL3I31Q28cNy+QhOCWQY8UsHgLawu2k6Y9kNCDi7aLKGEmBz+tC vY2WcoVw6yyfRCDfkDM8DvBWLqSpkS1XwzXai9NB4EHpDbigiHqvsOGDmaob++A3 ZZyxSgG/xRpphM4SecpvTm8TvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEDYaG/2 pFBVipRb6PCMlONCgdG1MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUZGMjM2MkUw MDk0MTFFRkE0N0U5RDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD54wDQYJKoZIhvcNAQELBQADggEBAAk+txktMzMA8Fkc kwn62gq5fy79N8OqhLElZTn62ACbp+zNrYyczITnOgXqqdkIkQhksCAwnCF0q9rz bbvWCpsBtrrRx6gNA1tEyHKimcHhWHLpmFTUYWpGe3YqVAMC0KHpurbbeytFfvHR cfY39aEr+IbfTxyfRiTKdahlRy0sPCJ3rJD7un9KQWLtG4AVOKI5vkuLoQq4IXCv RSmjRg0FVp+qFWT2UeEg6H8G8du7wocJuWeflFNx3PmrZW0wZKyEr85k7EHo3SSX R835lfJoVbcmymd34LOJ3EUzzDl2fF4ezOP13cWtJX0C1dpritpNNFWs9Y3bVoUj oSA31XA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org