$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa File: B0260988BDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: x8Ncmxo5rTTsHkbt0IeB6Tqmm3KaZdQtE0136TPii4Q= Subject key identifier: 0B:E4:67:47:67:0B:E7:79:8E:10:15:A7:29:90:F9:0A:11:44:20:92 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 17DE Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa Signing time: Wed 10 May 2023 15:51:43 +0000 ROA not before: Wed 10 May 2023 15:51:43 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132524 IP address blocks: 158.144.0.0/21 maxlen: 24 158.144.8.0/23 maxlen: 24 158.144.10.0/24 maxlen: 24 158.144.21.0/24 maxlen: 24 158.144.22.0/23 maxlen: 24 158.144.24.0/24 maxlen: 24 158.144.26.0/23 maxlen: 24 158.144.28.0/22 maxlen: 24 158.144.32.0/21 maxlen: 24 158.144.40.0/23 maxlen: 24 158.144.47.0/24 maxlen: 24 158.144.48.0/20 maxlen: 24 158.144.64.0/18 maxlen: 24 158.144.128.0/19 maxlen: 24 158.144.160.0/22 maxlen: 24 158.144.184.0/24 maxlen: 24 158.144.192.0/24 maxlen: 24 158.144.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6110 (0x17de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 10 15:51:43 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bbd8f-9001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:07:23:74:5f:c7:50:a2:2f:31:9b:f8:aa:22: e3:30:5e:f3:5d:9a:9f:5f:6c:b0:b9:e8:07:b0:20: df:5f:5c:f2:70:fa:7c:cc:fe:44:b7:eb:59:da:d7: 2e:b6:07:2f:3b:44:5b:9a:36:8b:07:1e:ca:19:fa: 2a:71:39:26:96:d4:46:b6:25:77:2e:d4:1c:74:fd: 72:5e:58:e0:65:e4:79:5d:cf:23:f9:15:8b:2c:06: 6d:90:d1:7f:f8:74:ca:81:a1:04:94:d7:18:23:3f: b9:66:c8:41:a5:b6:cb:30:a6:ed:68:49:95:69:20: 94:4a:72:a6:b7:67:af:31:eb:cc:9a:21:5a:1f:96: 9c:63:39:47:51:1a:ec:f2:38:db:3b:54:4e:1c:95: 54:32:26:4a:01:25:9b:c7:0d:9b:eb:5e:df:2b:89: f9:f3:20:95:fd:f9:a5:81:38:7a:d8:76:e7:e9:cd: 50:6a:80:73:51:ff:3b:d5:e9:9b:ce:43:5c:5a:55: 13:47:2f:a6:ea:21:34:9c:a9:6d:5b:36:3a:59:3b: b7:ac:ad:c4:e0:b6:f7:29:4c:ef:08:99:d7:3f:3b: b6:e1:09:c2:9c:f0:7e:0e:ad:fa:9f:23:e1:1a:5d: 62:18:1b:c7:dd:a6:2e:ea:f4:4a:7b:0e:70:48:24: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E4:67:47:67:0B:E7:79:8E:10:15:A7:29:90:F9:0A:11:44:20:92 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0260988BDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.144.0.0-158.144.10.255 158.144.21.0-158.144.24.255 158.144.26.0-158.144.41.255 158.144.47.0-158.144.163.255 158.144.184.0/24 158.144.192.0/24 158.144.200.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:bc:02:1a:6c:f4:80:17:d0:6b:7b:e2:81:b8:e9:e7:4b:e6: 6a:2b:dc:1c:a5:9c:27:b7:3e:9a:4b:31:86:ed:af:d3:f8:19: ca:e9:0b:da:c8:3f:0f:5e:c8:28:d9:c2:c5:ce:f5:a7:ae:c4: 03:ee:3e:fa:65:16:3d:73:ac:14:32:c8:36:41:e1:4b:11:15: 30:85:6c:85:4b:70:9f:6c:c6:b3:69:34:d3:63:c5:1d:83:a6: cf:bd:8d:dd:b4:a3:69:3e:59:9b:20:eb:80:b7:fb:97:fe:30: be:93:54:bb:7e:63:74:76:a7:74:07:47:d1:5a:d3:bc:a8:d5: 82:0e:e6:62:f4:12:d3:7c:63:76:17:9b:39:2b:ec:c9:23:46: 36:e7:4a:15:fc:9f:e8:47:c3:13:1a:a1:65:eb:f8:22:81:c1: 07:1c:55:91:c0:b7:7c:8f:aa:76:1b:5c:65:55:9a:21:29:82: 3e:39:7d:6c:70:3f:0b:6e:fe:09:87:c4:09:ec:07:f5:11:61: 1e:4e:a8:66:08:2f:96:08:84:b5:de:20:49:57:2d:a2:f7:89: b0:52:0d:5f:4c:95:89:6a:47:aa:c2:35:32:f0:43:b1:1a:dd: 4e:8e:0c:79:d9:5a:fe:44:0d:18:da:d1:7e:50:52:0d:ca:e4: 40:0e:74:17 -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgICF94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjMwNTEwMTU1MTQzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYmQ4Zi05MDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQcjdF/HUKIvMZv4qiLjMF7zXZqfX2ywuegHsCDfX1zycPp8zP5Et+tZ2tcu tgcvO0RbmjaLBx7KGfoqcTkmltRGtiV3LtQcdP1yXljgZeR5Xc8j+RWLLAZtkNF/ +HTKgaEElNcYIz+5ZshBpbbLMKbtaEmVaSCUSnKmt2evMevMmiFaH5acYzlHURrs 8jjbO1ROHJVUMiZKASWbxw2b617fK4n58yCV/fmlgTh62Hbn6c1QaoBzUf871emb zkNcWlUTRy+m6iE0nKltWzY6WTu3rK3E4Lb3KUzvCJnXPzu24QnCnPB+Dq36nyPh Gl1iGBvH3aYu6vRKew5wSCQAhQIDAQABo4IC2DCCAtQwHQYDVR0OBBYEFAvkZ0dn C+d5jhAVpymQ+QoRRCCSMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjAyNjA5ODhC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYgYIKwYBBQUHAQcBAf8E UzBRME8EAgABMEkwCwMDBJ6QAwQAnpAKMAwDBACekBUDBACekBgwDAMEAZ6QGgME AZ6QKDAMAwQAnpAvAwQCnpCgAwQAnpC4AwQAnpDAAwQCnpDIMA0GCSqGSIb3DQEB CwUAA4IBAQCdvAIabPSAF9Bre+KBuOnnS+ZqK9wcpZwntz6aSzGG7a/T+BnK6Qva yD8PXsgo2cLFzvWnrsQD7j76ZRY9c6wUMsg2QeFLERUwhWyFS3CfbMazaTTTY8Ud g6bPvY3dtKNpPlmbIOuAt/uX/jC+k1S7fmN0dqd0B0fRWtO8qNWCDuZi9BLTfGN2 F5s5K+zJI0Y250oV/J/oR8MTGqFl6/gigcEHHFWRwLd8j6p2G1xlVZohKYI+OX1s cD8Lbv4Jh8QJ7Af1EWEeTqhmCC+WCIS13iBJVy2i94mwUg1fTJWJakeqwjUy8EOx Gt1Ojgx52Vr+RA0Y2tF+UFINyuRADnQX -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org