$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A2414A8C01C11EEAB088B48C4F9AE02.roa File: 7A2414A8C01C11EEAB088B48C4F9AE02.roa (raw, json) Hash identifier: I9bUsV7T+NpUUy+gy29eL/tbczSxIo2jWUFo9Q6ja1E= Subject key identifier: 1E:E7:9D:CE:7E:26:BD:2D:F2:F3:08:5F:4E:2A:67:BE:9C:49:9C:43 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 18C5 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A2414A8C01C11EEAB088B48C4F9AE02.roa Signing time: Wed 31 Jan 2024 09:38:24 +0000 ROA not before: Wed 31 Jan 2024 09:38:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138252 IP address blocks: 157.10.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6341 (0x18c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 31 09:38:24 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65ba150f-0d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:db:d2:72:36:2c:91:6e:2b:ad:98:2e:7d: 02:aa:0f:dc:e2:d5:80:7e:49:b6:3b:2c:a0:56:63: 0a:15:a1:83:e5:5c:eb:8c:f9:40:24:f1:8a:99:45: cc:7d:1a:9b:2a:29:3b:55:80:38:04:4a:a4:54:c4: 0e:7b:84:5d:32:18:41:f0:c6:c9:83:1a:f5:c2:cf: 7f:71:39:34:05:b8:04:bc:25:5e:a8:40:79:6e:bd: 22:df:19:c4:46:8e:44:70:2d:11:27:87:56:75:76: 2a:2b:36:ca:60:c9:47:88:1c:5a:c2:84:9c:67:83: fd:c3:3b:89:e8:61:04:af:1c:15:e0:7d:d6:43:67: 26:a3:5c:dd:0c:8b:6b:81:ef:81:f6:dc:72:aa:be: 3f:d2:3e:4e:9c:a3:43:86:00:8d:0a:1a:f8:94:f6: 5d:2d:bd:f2:2d:79:3f:6a:27:a9:c2:f4:e7:a3:a2: 9e:74:28:15:b4:6b:2e:47:bb:56:bf:d4:b4:d7:e7: 74:83:2b:eb:76:9f:f0:0f:f6:1c:25:10:ec:7d:e4: 77:85:be:6e:be:af:18:79:d5:61:b8:4e:17:3c:77: b6:26:b4:b5:ca:b3:92:eb:b6:b5:4a:d4:f0:c5:2e: 0b:eb:05:65:9d:57:03:88:64:b9:61:5e:ac:b3:1f: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E7:9D:CE:7E:26:BD:2D:F2:F3:08:5F:4E:2A:67:BE:9C:49:9C:43 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A2414A8C01C11EEAB088B48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.56.0/23 Signature Algorithm: sha256WithRSAEncryption cf:22:d3:3e:86:7a:eb:eb:13:cf:0c:94:20:4f:b3:25:6d:f2: 7a:36:ff:99:76:d3:40:0e:89:f0:f2:72:7f:2f:dc:79:0e:c3: 68:31:f0:9f:a0:5b:65:03:a5:c7:d0:4c:96:f6:40:3c:d5:42: 8a:4a:e0:7d:7a:2a:78:c0:26:b9:a8:0d:2c:7c:4a:6a:bd:25: 86:87:3f:3d:d5:38:54:87:cf:8d:d4:7f:93:2c:2a:31:d2:eb: 40:6b:75:05:30:0f:13:61:a9:d4:e3:9f:f8:1e:0b:74:e1:c5: e1:5b:98:ac:0e:1c:9b:88:fb:69:a2:8f:a2:97:58:bc:6b:75: e2:fb:0a:6b:51:1d:e1:6a:fd:2f:a5:43:dd:42:59:a5:42:10: 0f:1d:10:7e:d2:c9:ca:7b:18:0f:ca:30:21:8a:58:73:b2:91: ab:de:54:32:87:8c:a2:72:64:77:f2:8d:4c:60:23:3d:f3:8f: 6d:fb:cd:81:e5:45:f4:35:6e:01:49:4b:14:9a:5a:55:7a:74: 93:b9:c3:c0:a9:8c:13:b8:d6:46:2f:60:1f:7d:78:2a:69:ae: ed:cd:c1:38:20:51:b9:71:29:1d:fb:ff:ad:3e:be:53:e9:da: d6:bb:a6:2b:f3:1f:a9:db:d0:2a:11:a1:ec:19:cc:2f:90:5d: 25:cb:27:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMTMxMDkzODI0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhMTUwZi0wZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEfb0nI2LJFuK62YLn0Cqg/c4tWAfkm2OyygVmMKFaGD5VzrjPlAJPGKmUXM fRqbKik7VYA4BEqkVMQOe4RdMhhB8MbJgxr1ws9/cTk0BbgEvCVeqEB5br0i3xnE Ro5EcC0RJ4dWdXYqKzbKYMlHiBxawoScZ4P9wzuJ6GEErxwV4H3WQ2cmo1zdDItr ge+B9txyqr4/0j5OnKNDhgCNChr4lPZdLb3yLXk/aiepwvTno6KedCgVtGsuR7tW v9S01+d0gyvrdp/wD/YcJRDsfeR3hb5uvq8YedVhuE4XPHe2JrS1yrOS67a1StTw xS4L6wVlnVcDiGS5YV6ssx/oqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB7nnc5+ Jr0t8vMIX04qZ76cSZxDMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0EyNDE0QThD MDFDMTFFRUFCMDg4QjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCjgwDQYJKoZIhvcNAQELBQADggEBAM8i0z6GeuvrE88M lCBPsyVt8no2/5l200AOifDycn8v3HkOw2gx8J+gW2UDpcfQTJb2QDzVQopK4H16 KnjAJrmoDSx8Smq9JYaHPz3VOFSHz43Uf5MsKjHS60BrdQUwDxNhqdTjn/geC3Th xeFbmKwOHJuI+2mij6KXWLxrdeL7CmtRHeFq/S+lQ91CWaVCEA8dEH7Sycp7GA/K MCGKWHOykaveVDKHjKJyZHfyjUxgIz3zj237zYHlRfQ1bgFJSxSaWlV6dJO5w8Cp jBO41kYvYB99eCppru3NwTggUblxKR37/60+vlPp2ta7pivzH6nb0CoRoewZzC+Q XSXLJ8A= -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org