$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B07333C32B111EFB8050F30C4F9AE02.roa File: 9B07333C32B111EFB8050F30C4F9AE02.roa (raw, json) Hash identifier: tKezMriAm1+XmZdkNErxOMhU2Piht0TZYgsiPkbW2fU= Subject key identifier: A2:52:93:CB:A4:38:2E:5A:1A:77:10:3D:FE:46:13:FA:F0:B9:EB:9D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A6C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B07333C32B111EFB8050F30C4F9AE02.roa Signing time: Tue 25 Jun 2024 05:13:07 +0000 ROA not before: Tue 25 Jun 2024 05:13:07 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142485 IP address blocks: 157.66.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6764 (0x1a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 25 05:13:07 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=667a51e2-f604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b6:e0:41:f4:4a:0c:76:da:75:1c:9b:ae:fe: 36:2a:8f:48:d8:ea:01:a3:7b:9a:fe:2e:4e:37:12: a7:07:b7:20:62:6c:9e:95:a4:2e:03:e1:14:c0:05: ea:7b:cf:b4:a4:a3:38:3b:9b:79:85:56:0d:3b:e9: 88:0a:b5:2d:02:0e:4f:3a:9d:e8:d5:27:a6:21:2b: 4c:ce:50:a8:ee:2b:99:48:ed:c3:a4:07:9d:6f:4d: 2e:73:a9:c2:48:26:b2:79:06:ef:b1:9a:81:3b:bd: 24:65:44:b4:80:70:8a:18:b0:77:9c:b4:69:84:52: 83:59:2f:74:33:f6:f2:2c:ba:1d:ed:da:8c:4b:31: 4e:94:5f:5a:bb:89:ed:f7:12:cb:19:cc:c0:9b:43: f0:05:bc:ec:de:d5:62:ae:03:5f:a2:8e:78:21:48: d6:bc:7b:fc:06:35:8f:94:4c:d3:7e:a7:df:8e:46: 18:a8:b8:f7:ed:2f:f3:b6:db:c4:a4:c4:9e:05:0b: ae:7a:7f:6b:67:fc:a8:44:e6:8f:33:90:46:55:f7: 35:40:4b:4f:75:4f:86:e1:4e:db:30:76:2f:25:16: 6f:3b:80:b8:bc:ed:b0:75:52:1c:7e:48:e7:e2:a6: 08:37:66:3f:47:2f:06:82:76:11:04:76:38:29:b5: 7f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:52:93:CB:A4:38:2E:5A:1A:77:10:3D:FE:46:13:FA:F0:B9:EB:9D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B07333C32B111EFB8050F30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.78.0/23 Signature Algorithm: sha256WithRSAEncryption 77:ae:57:bf:a0:8b:a7:c4:ef:cd:70:08:51:c2:97:dc:dc:19: 31:4c:76:b0:c8:03:d9:b2:fb:aa:9b:95:56:77:2d:17:bb:b3: 69:84:57:4c:d2:3d:9e:19:1e:52:42:73:82:d2:e2:d2:25:1b: 62:ac:5d:48:12:21:bb:6e:c5:c4:20:e8:d9:d4:5d:4a:88:2a: 50:59:d3:c5:80:d3:7c:8e:9a:ce:3d:ca:06:50:ac:a4:1d:9d: 91:2f:4c:c0:6e:05:74:dd:4b:a9:a6:02:47:df:24:c8:ed:f0: 8a:a3:fb:2d:17:33:82:44:51:f3:09:81:ce:bd:40:ac:df:bc: f2:62:05:20:66:cb:6f:f0:ff:7a:d1:6e:23:23:2a:f7:20:7c: c3:d2:63:62:df:d0:d7:ea:e7:98:78:c8:2f:d9:38:73:b8:2f: b7:97:6b:97:38:94:cd:93:ad:97:44:d8:11:6e:ce:eb:ec:1f: 8d:c9:fb:fd:78:cb:0e:52:03:38:86:77:0f:b7:d8:ab:64:1a: b9:d8:24:8e:7b:8c:e3:ba:02:42:17:0d:fd:fa:82:cd:e1:a6: 97:98:56:7c:e7:04:3d:36:87:b0:08:4f:64:c4:ad:f3:ae:c5: 42:c0:fa:db:fd:d0:bd:d5:1f:48:86:9d:22:53:bd:b7:92:37: 0e:90:c8:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNjI1MDUxMzA3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNTFlMi1mNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rbgQfRKDHbadRybrv42Ko9I2OoBo3ua/i5ONxKnB7cgYmyelaQuA+EUwAXq e8+0pKM4O5t5hVYNO+mICrUtAg5POp3o1SemIStMzlCo7iuZSO3DpAedb00uc6nC SCayeQbvsZqBO70kZUS0gHCKGLB3nLRphFKDWS90M/byLLod7dqMSzFOlF9au4nt 9xLLGczAm0PwBbzs3tVirgNfoo54IUjWvHv8BjWPlEzTfqffjkYYqLj37S/zttvE pMSeBQuuen9rZ/yoROaPM5BGVfc1QEtPdU+G4U7bMHYvJRZvO4C4vO2wdVIcfkjn 4qYIN2Y/Ry8GgnYRBHY4KbV/vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKJSk8uk OC5aGncQPf5GE/rwueudMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUIwNzMzM0Mz MkIxMTFFRkI4MDUwRjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQk4wDQYJKoZIhvcNAQELBQADggEBAHeuV7+gi6fE781w CFHCl9zcGTFMdrDIA9my+6qblVZ3LRe7s2mEV0zSPZ4ZHlJCc4LS4tIlG2KsXUgS IbtuxcQg6NnUXUqIKlBZ08WA03yOms49ygZQrKQdnZEvTMBuBXTdS6mmAkffJMjt 8Iqj+y0XM4JEUfMJgc69QKzfvPJiBSBmy2/w/3rRbiMjKvcgfMPSY2Lf0Nfq55h4 yC/ZOHO4L7eXa5c4lM2TrZdE2BFuzuvsH43J+/14yw5SAziGdw+32KtkGrnYJI57 jOO6AkIXDf36gs3hppeYVnznBD02h7AIT2TErfOuxULA+tv90L3VH0iGnSJTvbeS Nw6QyLk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org