$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa File: 98E195B8006911EF9D4A377FC4F9AE02.roa (raw, json) Hash identifier: ZHCJ8jE5AB796EXmGdc9egR7TpDLYc7bKZ4NYZzGuq0= Subject key identifier: 43:6B:AB:22:E5:06:3E:41:60:69:51:78:CD:FB:41:31:58:87:ED:F0 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A19 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa Signing time: Thu 30 May 2024 15:53:15 +0000 ROA not before: Thu 30 May 2024 15:53:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152499 IP address blocks: 157.66.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6681 (0x1a19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0eb-f7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:53:e4:ae:2b:5b:55:4f:90:17:5b:8a:e8: 7d:70:5d:92:3c:7b:1c:05:0b:ea:c8:09:72:ce:1f: 8d:d5:32:ee:f9:6e:89:40:47:1b:22:6a:c0:6e:a4: 99:41:db:dc:5c:af:ab:a2:9c:02:47:b6:c7:e9:d5: c3:db:2f:d4:55:3a:31:e5:f6:c3:44:bc:f7:26:0b: 53:c9:ed:c6:b1:17:7d:d4:3e:2c:6f:74:5c:21:89: a0:af:09:e4:84:fd:e0:7d:d9:16:2a:0e:7d:8c:b5: 20:13:5d:cf:a0:c1:83:7b:d3:11:72:ff:99:2c:bd: 60:a2:eb:51:76:32:78:60:bb:a1:e6:65:13:da:fa: dd:d0:c0:c1:2b:c8:47:fe:0c:e5:86:64:14:6d:ce: 7c:17:79:ff:bf:96:73:b1:9d:37:c5:b5:46:06:e4: 76:89:a6:5a:e7:30:e2:87:d2:55:d5:70:bd:58:82: ec:b9:74:05:c4:03:c1:06:3f:27:67:82:31:d1:ff: 89:71:a6:b9:1b:2b:0f:b8:e9:7b:79:e7:8a:74:bc: 88:4e:e5:1d:af:c2:b6:db:06:84:92:f8:e5:67:29: 42:04:43:26:31:23:ac:63:67:88:fd:a8:93:73:55: e8:fe:60:68:15:62:e2:84:f3:3a:e1:52:84:fb:ea: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6B:AB:22:E5:06:3E:41:60:69:51:78:CD:FB:41:31:58:87:ED:F0 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98E195B8006911EF9D4A377FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.146.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:ae:16:a6:b2:4c:06:5c:30:7f:33:f7:67:61:d3:56:53:b2: 31:e1:a8:96:68:db:7a:e4:bb:9b:d3:e0:60:e3:84:e3:dc:24: 2f:de:fa:93:96:3e:27:0f:f5:b9:7a:72:10:0c:a8:3f:d6:ac: 8c:e6:ea:13:ec:2a:f5:26:dc:e4:c1:21:74:11:03:2f:cf:8e: 4c:ca:a4:06:cb:2f:ef:00:3c:b9:fc:2d:d1:24:06:93:a5:ce: b2:29:26:0b:cc:10:5f:f5:77:38:7c:89:f4:61:6c:1e:67:6f: c0:71:db:99:de:21:fc:da:9f:3f:bb:82:b1:3a:9c:bc:2f:d0: 87:70:0c:86:6f:be:12:ac:2c:60:11:a0:9d:91:f9:20:ce:f5: 0d:8d:55:6a:c7:ab:18:e5:2d:24:80:d8:13:26:f3:38:9e:87: bb:e5:5e:c4:ae:39:cf:90:ae:c3:3d:cc:04:35:97:3e:3c:12: 3e:ec:01:19:dc:45:57:73:6e:96:a9:30:69:c4:eb:f1:d5:a8: c4:04:fa:cf:39:4e:06:68:34:e6:a5:ab:9b:6f:44:86:54:0f: d8:46:fc:f4:b3:22:05:e4:7e:13:82:08:8d:14:f1:c2:68:fa: 73:52:b6:ad:e8:34:d6:ee:c6:66:67:c6:b4:c5:46:2c:4b:cc: 58:bc:cd:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzE1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBlYi1mN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XJT5K4rW1VPkBdbiuh9cF2SPHscBQvqyAlyzh+N1TLu+W6JQEcbImrAbqSZ QdvcXK+ropwCR7bH6dXD2y/UVTox5fbDRLz3JgtTye3GsRd91D4sb3RcIYmgrwnk hP3gfdkWKg59jLUgE13PoMGDe9MRcv+ZLL1goutRdjJ4YLuh5mUT2vrd0MDBK8hH /gzlhmQUbc58F3n/v5ZzsZ03xbVGBuR2iaZa5zDih9JV1XC9WILsuXQFxAPBBj8n Z4Ix0f+Jcaa5GysPuOl7eeeKdLyITuUdr8K22waEkvjlZylCBEMmMSOsY2eI/aiT c1Xo/mBoFWLihPM64VKE++pm0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFENrqyLl Bj5BYGlReM37QTFYh+3wMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOThFMTk1Qjgw MDY5MTFFRjlENEEzNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQpIwDQYJKoZIhvcNAQELBQADggEBAE2uFqayTAZcMH8z 92dh01ZTsjHhqJZo23rku5vT4GDjhOPcJC/e+pOWPicP9bl6chAMqD/WrIzm6hPs KvUm3OTBIXQRAy/PjkzKpAbLL+8APLn8LdEkBpOlzrIpJgvMEF/1dzh8ifRhbB5n b8Bx25neIfzanz+7grE6nLwv0IdwDIZvvhKsLGARoJ2R+SDO9Q2NVWrHqxjlLSSA 2BMm8zieh7vlXsSuOc+QrsM9zAQ1lz48Ej7sARncRVdzbpapMGnE6/HVqMQE+s85 TgZoNOalq5tvRIZUD9hG/PSzIgXkfhOCCI0U8cJo+nNStq3oNNbuxmZnxrTFRixL zFi8zV0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org