$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/80DF22B2013311EFB38DC94FC4F9AE02.roa File: 80DF22B2013311EFB38DC94FC4F9AE02.roa (raw, json) Hash identifier: 1khcEc9Qmtk1Zgn0NIXHUtaopVe+fkqgt/0K5dj0mhQ= Subject key identifier: D3:3E:33:94:02:A4:E1:19:3F:CD:F6:FE:1B:DA:A7:88:91:C0:32:2C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 197E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/80DF22B2013311EFB38DC94FC4F9AE02.roa Signing time: Tue 23 Apr 2024 05:36:59 +0000 ROA not before: Tue 23 Apr 2024 05:36:59 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152488 IP address blocks: 157.66.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6526 (0x197e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 23 05:36:59 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=662748fb-4ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:85:c1:69:2c:60:e4:ba:44:29:da:08:db:23: 65:fa:30:db:c2:e9:00:80:4a:0d:50:a3:33:30:b4: f4:9a:fe:76:72:66:dc:e6:b1:15:e7:ba:3a:53:b9: 41:2b:42:b9:18:a3:58:4f:d5:9e:e2:1a:43:80:da: 54:49:00:c7:7a:cb:13:ff:d3:a3:59:3f:8c:a1:ba: 6b:a1:2c:03:05:e0:80:fc:2d:e0:40:69:a4:09:b3: 11:60:8b:46:75:cc:b6:93:5d:98:a0:9c:7e:39:fe: ba:e8:01:f8:3a:28:8a:4b:16:d4:63:d8:ee:18:d1: f6:08:00:a0:08:cb:ca:54:12:37:8e:f4:4a:ba:a0: e3:75:1a:e0:7f:ea:e1:8c:9e:dc:f3:c9:df:a1:46: 9a:13:f4:6f:49:21:42:58:10:a0:ac:af:d3:c7:f2: 6a:38:93:e2:9a:6c:e8:83:ed:69:05:68:25:d4:3a: 81:a1:9e:55:b6:a9:70:70:74:55:63:3c:20:c0:69: 13:5e:94:b7:2f:11:15:12:2a:d6:ec:f0:e1:ba:a3: f0:3a:b4:48:1b:c0:3b:17:c3:00:52:bf:d2:68:3d: 59:57:52:df:0f:52:2f:67:23:99:1e:11:63:5c:47: 62:8e:56:3c:12:fc:ae:c4:fb:ab:fd:50:98:bc:04: 3d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3E:33:94:02:A4:E1:19:3F:CD:F6:FE:1B:DA:A7:88:91:C0:32:2C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/80DF22B2013311EFB38DC94FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.144.0/23 Signature Algorithm: sha256WithRSAEncryption 60:d3:36:0b:1d:e5:ce:30:d0:1c:ba:a0:09:74:40:1b:aa:af: 16:5a:f6:28:b4:b5:f6:43:64:e2:a4:a2:8e:9c:79:e5:ba:a7: 9c:bd:9a:bf:c2:ea:24:7d:be:67:1a:39:da:63:f1:23:f7:53: 71:06:9a:cf:79:05:ff:6a:3b:7d:c1:c3:a7:64:bc:2f:c8:88: af:31:51:a7:04:e1:14:67:cc:83:e5:16:c1:7f:a8:ef:d8:fd: 41:3f:12:9b:29:41:fb:9c:e2:68:55:26:39:c1:89:4c:3e:28: 8d:77:71:53:c8:da:fa:4e:c5:a2:db:d9:31:3e:ba:8b:ae:d1: cc:64:a6:df:3d:6f:87:ef:a5:ae:4b:64:f0:8f:4c:b7:3e:42: ba:5b:a2:69:54:50:85:69:75:62:c5:28:e0:63:78:db:75:1b: ee:82:06:a0:82:2a:a0:c8:1c:0a:a5:9f:9e:a8:54:84:f2:be: 87:99:be:ac:4a:06:88:cb:51:ce:ec:aa:50:83:74:11:58:f5: 2b:36:48:09:15:87:e5:11:42:5c:4a:56:bc:b0:ac:26:7f:2d: 89:77:fa:56:27:4d:aa:bf:72:d7:8b:b2:fc:6f:a6:c9:2a:38: d8:35:fb:c1:6a:6b:8a:01:1c:7e:a2:00:67:9c:fd:60:4b:16: e4:13:8b:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDIzMDUzNjU5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3NDhmYi00Y2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24XBaSxg5LpEKdoI2yNl+jDbwukAgEoNUKMzMLT0mv52cmbc5rEV57o6U7lB K0K5GKNYT9We4hpDgNpUSQDHessT/9OjWT+MobproSwDBeCA/C3gQGmkCbMRYItG dcy2k12YoJx+Of666AH4OiiKSxbUY9juGNH2CACgCMvKVBI3jvRKuqDjdRrgf+rh jJ7c88nfoUaaE/RvSSFCWBCgrK/Tx/JqOJPimmzog+1pBWgl1DqBoZ5VtqlwcHRV YzwgwGkTXpS3LxEVEirW7PDhuqPwOrRIG8A7F8MAUr/SaD1ZV1LfD1IvZyOZHhFj XEdijlY8EvyuxPur/VCYvAQ9/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNM+M5QC pOEZP832/hvap4iRwDIsMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODBERjIyQjIw MTMzMTFFRkIzOERDOTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQpAwDQYJKoZIhvcNAQELBQADggEBAGDTNgsd5c4w0By6 oAl0QBuqrxZa9ii0tfZDZOKkoo6ceeW6p5y9mr/C6iR9vmcaOdpj8SP3U3EGms95 Bf9qO33Bw6dkvC/IiK8xUacE4RRnzIPlFsF/qO/Y/UE/EpspQfuc4mhVJjnBiUw+ KI13cVPI2vpOxaLb2TE+uouu0cxkpt89b4fvpa5LZPCPTLc+QrpbomlUUIVpdWLF KOBjeNt1G+6CBqCCKqDIHAqln56oVITyvoeZvqxKBojLUc7sqlCDdBFY9Ss2SAkV h+URQlxKVrywrCZ/LYl3+lYnTaq/cteLsvxvpskqONg1+8Fqa4oBHH6iAGec/WBL FuQTi/k= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org