$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa File: B341065EBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: hRmcAJkD5vxvTD4QmwpmCpHWz1XswjC+w6OFTW/N9mU= Subject key identifier: BB:10:8F:EE:7E:81:D1:F6:37:DA:57:C6:B8:9A:B2:0D:FC:08:0A:26 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1968 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa Signing time: Thu 18 Apr 2024 08:40:20 +0000 ROA not before: Thu 18 Apr 2024 08:40:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 55824 IP address blocks: 157.15.12.0/23 maxlen: 24 157.15.158.0/24 maxlen: 24 158.144.12.0/24 maxlen: 24 158.144.15.0/24 maxlen: 24 158.144.18.0/24 maxlen: 24 158.144.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6504 (0x1968) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 18 08:40:20 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6620dc74-6651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a7:99:8f:d8:f9:f0:88:4e:b5:4a:ae:03:2d: 93:01:d6:4c:0d:28:73:9f:05:85:3c:76:db:ed:07: f4:3e:5d:bc:1f:3a:3f:2c:4d:01:e7:46:7d:2e:5d: aa:61:ae:84:ff:e5:4c:ed:30:62:42:41:00:e4:e6: 6e:84:66:95:0b:4a:ab:49:0d:b4:59:93:8b:0e:a1: 4a:2e:aa:08:56:bc:99:bb:63:4f:8c:87:2f:15:a4: 56:fa:50:00:fb:31:10:d6:cd:63:ed:8f:c0:09:59: ec:1e:81:03:09:e0:34:e0:49:30:d2:3a:55:29:74: d7:4c:dc:c7:03:02:b7:30:5c:29:15:12:49:1e:57: 93:f4:aa:1c:e1:e2:48:f7:66:17:42:f7:0c:77:b4: 92:f1:83:74:b9:49:32:d4:ad:cd:74:d8:f6:43:f3: 46:73:56:dd:b1:68:0d:5a:fc:1a:c7:ec:df:2b:3a: 78:2a:87:d5:8f:2d:ec:13:8b:2d:5a:78:db:3a:6d: 68:51:04:90:37:5e:2c:26:4a:9f:51:35:62:5a:53: 0a:bf:e5:9b:8a:b4:99:cb:46:ca:31:66:d3:60:d9: 05:1a:33:90:bb:23:f1:cf:b1:ed:57:c9:7c:89:f9: ae:eb:fc:d7:5f:38:1c:29:40:6d:90:c2:45:17:f1: 7f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:10:8F:EE:7E:81:D1:F6:37:DA:57:C6:B8:9A:B2:0D:FC:08:0A:26 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.12.0/23 157.15.158.0/24 158.144.12.0/24 158.144.15.0/24 158.144.18.0/24 158.144.182.0/24 Signature Algorithm: sha256WithRSAEncryption c1:30:2a:34:44:38:f6:d9:7e:76:7b:9c:00:8b:74:9a:75:4d: 92:20:32:b4:d8:90:b9:72:59:64:9e:c4:48:16:3a:58:a6:1f: 6c:67:a7:9e:11:c5:86:99:78:7c:66:e5:09:35:d2:4b:67:86: 2a:d8:11:cc:fe:ca:59:b4:d5:fb:83:54:51:33:e9:41:88:5e: 3c:d6:f2:7f:4f:5c:f5:38:c4:4b:3a:dc:fe:96:72:82:f2:5d: da:1f:47:89:a9:cb:00:5a:b2:90:7a:7e:6b:ea:10:bd:00:99: ed:30:54:1b:5b:27:6a:30:62:43:08:95:0f:f8:c4:81:dc:1e: f1:f4:49:43:4e:d8:82:a0:8b:7c:ac:14:d8:80:d3:ec:ce:78: c2:69:8a:e3:3d:af:c5:29:b5:9a:40:8c:66:63:12:27:db:cc: f3:75:c6:4f:28:f0:c0:c9:5e:05:6a:79:d9:24:09:e7:76:dc: 36:dd:63:0c:01:1e:93:a2:7b:c7:6d:f5:bd:f5:7a:74:79:49: 05:6d:6d:fd:73:e1:59:0a:51:f3:f9:b3:cf:b8:64:7b:fe:9c: 1e:94:3a:5c:ed:a0:b3:ac:71:22:e9:a3:20:76:e4:22:47:80: bc:f9:31:d7:58:d0:d8:ad:08:b7:35:ce:4f:36:4c:1b:a5:9b: 8f:a4:33:05 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICGWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDE4MDg0MDIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIwZGM3NC02NjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46eZj9j58IhOtUquAy2TAdZMDShznwWFPHbb7Qf0Pl28Hzo/LE0B50Z9Ll2q Ya6E/+VM7TBiQkEA5OZuhGaVC0qrSQ20WZOLDqFKLqoIVryZu2NPjIcvFaRW+lAA +zEQ1s1j7Y/ACVnsHoEDCeA04Ekw0jpVKXTXTNzHAwK3MFwpFRJJHleT9Koc4eJI 92YXQvcMd7SS8YN0uUky1K3NdNj2Q/NGc1bdsWgNWvwax+zfKzp4KofVjy3sE4st WnjbOm1oUQSQN14sJkqfUTViWlMKv+WbirSZy0bKMWbTYNkFGjOQuyPxz7HtV8l8 ifmu6/zXXzgcKUBtkMJFF/F/tQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFLsQj+5+ gdH2N9pXxriasg38CAomMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjM0MTA2NUVC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAGdDwwDBACdD54DBACekAwDBACekA8DBACekBIDBACekLYw DQYJKoZIhvcNAQELBQADggEBAMEwKjREOPbZfnZ7nACLdJp1TZIgMrTYkLlyWWSe xEgWOlimH2xnp54RxYaZeHxm5Qk10ktnhirYEcz+ylm01fuDVFEz6UGIXjzW8n9P XPU4xEs63P6WcoLyXdofR4mpywBaspB6fmvqEL0Ame0wVBtbJ2owYkMIlQ/4xIHc HvH0SUNO2IKgi3ysFNiA0+zOeMJpiuM9r8UptZpAjGZjEifbzPN1xk8o8MDJXgVq edkkCed23DbdYwwBHpOie8dt9b31enR5SQVtbf1z4VkKUfP5s8+4ZHv+nB6UOlzt oLOscSLpoyB25CJHgLz5MddY0NitCLc1zk82TBulm4+kMwU= -----END CERTIFICATE-----Generated at Mon May 20 17:22:07 2024 by rpki-client on console-fra.rpki-client.org