$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa File: 98E195B8006911EF9D4A377FC4F9AE02.roa (raw, json) Hash identifier: EojOehWfXinKpx+yq3VNb7GfBjZgGKfavlX/+utD/bI= Subject key identifier: 73:52:FE:69:23:60:36:4C:65:FD:30:9E:83:E7:0B:BA:11:EB:25:AB Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1974 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa Signing time: Mon 22 Apr 2024 05:31:41 +0000 ROA not before: Mon 22 Apr 2024 05:31:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152499 IP address blocks: 157.66.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6516 (0x1974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 22 05:31:41 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6625f63d-5b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:81:e7:60:49:07:bb:1a:19:58:92:d9:48:ec: 22:27:be:db:25:86:4d:1a:17:d6:cf:fd:c7:3e:f0: d8:4e:2f:44:28:11:b7:36:0a:23:1f:36:7a:81:03: 26:aa:68:b1:53:0c:2f:c2:f4:f7:5c:e4:33:45:37: 91:50:42:a9:46:0e:09:c1:cf:4e:09:71:fe:bd:90: 73:b7:eb:21:f2:94:c3:32:74:50:3a:51:56:32:eb: 7a:d1:02:44:78:14:b7:ee:61:9c:ff:94:f0:2b:ea: 0a:36:4e:5e:ae:63:ce:25:84:39:be:e0:16:f8:6b: 7e:fa:80:bf:f7:e3:96:5e:c1:80:8c:03:57:ee:23: ff:7f:ff:c6:9f:09:53:36:4f:ab:3d:7e:a7:4d:39: 2f:14:25:cb:14:8e:4e:64:f6:c8:73:2a:99:7b:40: f4:a4:e0:58:3d:7d:20:a8:5c:40:99:11:83:18:53: 7a:16:20:2c:46:38:a3:68:bc:72:04:8f:34:f2:05: 3b:d2:00:7c:ca:48:3c:d3:7f:1f:ac:07:42:38:13: 85:cf:b0:21:78:7c:76:c7:62:39:fd:de:62:da:a1: b2:f5:1d:b0:94:29:4d:b9:5d:4c:7b:43:2c:95:d1: b1:a0:98:36:ff:e5:de:4a:88:03:b5:2f:56:f8:b9: b4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:52:FE:69:23:60:36:4C:65:FD:30:9E:83:E7:0B:BA:11:EB:25:AB X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.146.0/23 Signature Algorithm: sha256WithRSAEncryption 81:99:b8:92:ca:99:8e:21:d7:8c:db:10:bb:0c:af:88:b4:b9: cc:9f:1b:72:a9:f8:e1:d8:72:74:ac:19:cb:89:ef:5d:48:ec: 67:b9:85:b8:f8:c6:b8:e9:94:4b:a2:a3:8e:aa:85:c7:9e:84: 7a:09:ab:86:26:83:41:3b:8c:50:b2:d8:f6:cd:53:09:c3:80: 4d:e5:66:a1:f7:fb:38:6a:9d:a2:54:d9:bd:9d:32:d7:85:06: 19:a7:c4:c2:b3:ab:b4:d4:d0:7c:1a:e4:74:a2:5c:cc:76:8c: 43:70:bb:58:af:96:e0:68:dd:c5:aa:c9:a0:29:59:64:0f:18: b6:8f:18:60:33:21:fe:42:0d:c4:48:fa:dc:17:ec:2e:e6:7f: 97:af:ba:60:76:d1:d3:9c:85:9f:32:58:14:8d:ad:d2:9f:bd: 13:0e:2c:2d:aa:26:a1:96:e4:3a:0f:5e:ee:9b:46:f6:fe:8a: 05:a0:3f:66:4f:c7:ff:d4:e7:32:9f:4e:18:d0:9e:4d:56:4a: f7:27:1a:1d:c0:ac:94:a6:1d:e5:b6:68:45:8f:2b:90:fd:dc: 9c:b8:ea:b0:e1:52:43:0a:8d:d8:df:17:c0:2c:96:55:8e:f9: 18:61:f6:ed:06:82:4b:31:ec:1b:63:97:01:48:05:a9:11:cb: 9d:96:3a:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDIyMDUzMTQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI1ZjYzZC01YjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YHnYEkHuxoZWJLZSOwiJ77bJYZNGhfWz/3HPvDYTi9EKBG3NgojHzZ6gQMm qmixUwwvwvT3XOQzRTeRUEKpRg4Jwc9OCXH+vZBzt+sh8pTDMnRQOlFWMut60QJE eBS37mGc/5TwK+oKNk5ermPOJYQ5vuAW+Gt++oC/9+OWXsGAjANX7iP/f//GnwlT Nk+rPX6nTTkvFCXLFI5OZPbIcyqZe0D0pOBYPX0gqFxAmRGDGFN6FiAsRjijaLxy BI808gU70gB8ykg8038frAdCOBOFz7AheHx2x2I5/d5i2qGy9R2wlClNuV1Me0Ms ldGxoJg2/+XeSogDtS9W+Lm0DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNS/mkj YDZMZf0wnoPnC7oR6yWrMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOThFMTk1Qjgw MDY5MTFFRjlENEEzNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQpIwDQYJKoZIhvcNAQELBQADggEBAIGZuJLKmY4h14zb ELsMr4i0ucyfG3Kp+OHYcnSsGcuJ711I7Ge5hbj4xrjplEuio46qhceehHoJq4Ym g0E7jFCy2PbNUwnDgE3lZqH3+zhqnaJU2b2dMteFBhmnxMKzq7TU0Hwa5HSiXMx2 jENwu1ivluBo3cWqyaApWWQPGLaPGGAzIf5CDcRI+twX7C7mf5evumB20dOchZ8y WBSNrdKfvRMOLC2qJqGW5DoPXu6bRvb+igWgP2ZPx//U5zKfThjQnk1WSvcnGh3A rJSmHeW2aEWPK5D93Jy46rDhUkMKjdjfF8AsllWO+Rhh9u0Ggksx7BtjlwFIBakR y52WOik= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org