$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa File: B0260988BDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: WkCC7y2ZhqXOlWJCYHuLhKAsPH20khqBa5nl7OMYdeI= Subject key identifier: 0B:7D:2A:68:6F:42:BB:95:C5:30:86:B8:34:1C:0F:C2:47:EB:2F:D0 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19DD Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:18 +0000 ROA not before: Thu 30 May 2024 15:52:18 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132524 IP address blocks: 158.144.0.0/21 maxlen: 24 158.144.8.0/23 maxlen: 24 158.144.10.0/24 maxlen: 24 158.144.21.0/24 maxlen: 24 158.144.22.0/23 maxlen: 24 158.144.24.0/24 maxlen: 24 158.144.26.0/23 maxlen: 24 158.144.28.0/22 maxlen: 24 158.144.32.0/21 maxlen: 24 158.144.40.0/23 maxlen: 24 158.144.47.0/24 maxlen: 24 158.144.48.0/20 maxlen: 24 158.144.64.0/18 maxlen: 24 158.144.128.0/19 maxlen: 24 158.144.160.0/22 maxlen: 24 158.144.184.0/24 maxlen: 24 158.144.192.0/24 maxlen: 24 158.144.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6621 (0x19dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:18 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0b2-8c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:44:86:25:b7:19:b1:bf:52:60:cf:29:3b:77: 18:c9:6a:4d:7b:14:a2:67:33:00:3f:7d:de:8c:be: bd:da:1f:68:fe:bf:08:a1:97:88:3c:54:67:0e:b3: 4e:f8:0a:c1:ec:d6:14:4d:0d:cb:5a:04:2d:36:b4: 42:36:31:a6:d8:44:1a:a2:a5:aa:66:09:ba:b7:d0: 5c:f7:f3:a6:28:bd:43:66:2f:96:a5:90:7d:29:d7: d2:16:f0:b9:a9:25:19:0a:81:44:1e:78:92:ad:2f: 32:b6:2d:1e:21:a7:a7:01:5b:78:16:80:cb:80:85: 1c:fe:47:72:b1:c8:cb:9a:f2:11:59:3d:58:df:f5: 64:bc:40:03:39:01:4c:f4:10:a0:c7:2c:35:8c:fc: 67:19:ba:11:a4:b6:6e:b3:8a:b6:c3:6c:53:0f:cd: 25:c9:88:62:9d:4c:69:7a:85:2e:6c:d1:ee:e5:9b: 68:21:be:6e:02:c7:2d:1f:2a:9c:fb:60:81:ee:e1: 54:1a:80:34:7f:d7:22:8c:8a:cc:c8:cf:29:1a:a7: b2:4d:b8:8c:16:9b:b6:0f:19:76:3c:1b:11:f4:20: 3d:91:44:4b:35:f2:2d:37:d3:99:c1:9a:dd:ae:a0: 03:e9:2a:a2:20:5b:54:c3:d9:e3:c5:ed:61:ee:82: 0c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7D:2A:68:6F:42:BB:95:C5:30:86:B8:34:1C:0F:C2:47:EB:2F:D0 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.144.0.0-158.144.10.255 158.144.21.0-158.144.24.255 158.144.26.0-158.144.41.255 158.144.47.0-158.144.163.255 158.144.184.0/24 158.144.192.0/24 158.144.200.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:c1:d1:07:77:0d:21:d5:47:63:ab:73:8f:6b:cd:89:79:1f: a2:1d:24:ba:43:8d:a8:2a:d7:8f:09:79:1a:0c:f1:89:c7:61: 9b:88:b3:7f:39:89:e6:30:62:2b:52:0f:be:bc:57:fb:6c:5c: f0:3d:09:6e:9f:12:ce:74:7b:8b:2c:f0:57:74:f1:d7:d8:a9: e1:ae:47:d2:22:fd:05:7d:ff:63:99:9c:08:5e:46:d3:74:74: 1b:0d:7e:96:bf:08:8b:a1:28:d2:d3:a0:b9:f4:42:c7:f3:16: e6:e8:ec:9f:6a:39:c6:02:a7:aa:78:03:04:ea:22:58:66:2f: 37:72:bc:23:8a:f6:0c:05:87:41:3f:2d:d7:de:4a:2f:45:32: 5e:a4:9e:9c:7f:58:92:98:c9:0c:f1:5d:d6:3c:a1:a7:f7:49: 16:aa:80:4c:04:67:29:5a:5c:95:7b:27:66:29:4c:4d:7f:19: 61:e8:e8:4a:d4:c2:bb:c1:12:0c:af:e0:4d:08:6c:88:df:6f: 80:70:bb:34:86:a9:b4:09:0a:2d:90:b1:f8:4c:14:e6:cf:e2: 7c:15:c6:4f:41:97:c6:04:f2:3d:b5:02:76:80:8c:64:20:eb: bd:b0:09:10:f5:e3:01:a4:da:ae:08:42:1d:bd:a3:43:70:7e: e1:9e:b1:9a -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgICGd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjE4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBiMi04YzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkSGJbcZsb9SYM8pO3cYyWpNexSiZzMAP33ejL692h9o/r8IoZeIPFRnDrNO +ArB7NYUTQ3LWgQtNrRCNjGm2EQaoqWqZgm6t9Bc9/OmKL1DZi+WpZB9KdfSFvC5 qSUZCoFEHniSrS8yti0eIaenAVt4FoDLgIUc/kdyscjLmvIRWT1Y3/VkvEADOQFM 9BCgxyw1jPxnGboRpLZus4q2w2xTD80lyYhinUxpeoUubNHu5ZtoIb5uAsctHyqc +2CB7uFUGoA0f9cijIrMyM8pGqeyTbiMFpu2Dxl2PBsR9CA9kURLNfItN9OZwZrd rqAD6SqiIFtUw9njxe1h7oIMSQIDAQABo4IC2DCCAtQwHQYDVR0OBBYEFAt9Kmhv QruVxTCGuDQcD8JH6y/QMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjAyNjA5ODhC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYgYIKwYBBQUHAQcBAf8E UzBRME8EAgABMEkwCwMDBJ6QAwQAnpAKMAwDBACekBUDBACekBgwDAMEAZ6QGgME AZ6QKDAMAwQAnpAvAwQCnpCgAwQAnpC4AwQAnpDAAwQCnpDIMA0GCSqGSIb3DQEB CwUAA4IBAQA9wdEHdw0h1Udjq3OPa82JeR+iHSS6Q42oKtePCXkaDPGJx2GbiLN/ OYnmMGIrUg++vFf7bFzwPQlunxLOdHuLLPBXdPHX2KnhrkfSIv0Fff9jmZwIXkbT dHQbDX6WvwiLoSjS06C59ELH8xbm6OyfajnGAqeqeAME6iJYZi83crwjivYMBYdB Py3X3kovRTJepJ6cf1iSmMkM8V3WPKGn90kWqoBMBGcpWlyVeydmKUxNfxlh6OhK 1MK7wRIMr+BNCGyI32+AcLs0hqm0CQotkLH4TBTmz+J8FcZPQZfGBPI9tQJ2gIxk IOu9sAkQ9eMBpNquCEIdvaNDcH7hnrGa -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org