$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa File: B341065EBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: lATuFiMqYRW9OIbe2llSKVJnGMs4/uGg/E/fugKMzIM= Subject key identifier: 66:82:4F:A0:6C:12:85:4E:C1:A5:8F:AD:DA:0A:E3:AA:09:81:08:65 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A31 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:37 +0000 ROA not before: Thu 30 May 2024 15:53:37 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55824 IP address blocks: 157.15.12.0/23 maxlen: 24 157.15.158.0/24 maxlen: 24 158.144.12.0/24 maxlen: 24 158.144.15.0/24 maxlen: 24 158.144.18.0/24 maxlen: 24 158.144.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6705 (0x1a31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:37 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a101-283e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bb:cb:2c:c7:2c:ac:dd:35:fc:6c:1d:0b:83: c2:b3:62:cc:32:5c:6f:89:67:2f:84:c0:3e:4d:a8: a5:80:23:2e:6c:70:74:04:67:e1:a1:d4:08:ab:e5: 52:4a:7b:d4:7a:5e:9a:78:f0:e8:a1:aa:0b:02:3c: 5e:27:a3:78:32:2a:70:3f:a8:77:72:89:d6:85:35: e4:dd:2a:bc:8b:2c:20:71:d4:42:96:38:f9:14:5c: 5c:68:7a:69:90:c7:37:05:55:bc:d2:cf:62:d9:5c: 69:fa:7e:36:8c:33:d3:78:66:37:f7:f5:26:78:dc: 37:f9:e1:2e:ab:66:d5:33:ba:39:92:20:30:fa:4c: f0:af:9c:73:50:40:8e:14:a8:93:de:ef:c6:a9:49: 51:17:51:a2:65:03:45:83:09:74:9d:4f:21:4e:16: 70:51:b0:c4:79:6a:da:fd:eb:fb:52:61:c7:73:56: 86:81:04:ae:f9:50:25:64:6b:86:a8:dc:fd:d4:0d: b3:f3:7f:58:94:28:1c:5e:44:b7:b5:c7:bc:62:ba: cc:c8:41:0a:2b:ba:2b:6b:14:7d:0f:8a:79:59:11: 5c:e4:e1:25:3f:43:83:69:4d:8d:e9:b3:14:a1:67: e4:b7:8a:1d:27:60:b1:ac:cd:0d:b2:44:02:92:8b: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:82:4F:A0:6C:12:85:4E:C1:A5:8F:AD:DA:0A:E3:AA:09:81:08:65 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.12.0/23 157.15.158.0/24 158.144.12.0/24 158.144.15.0/24 158.144.18.0/24 158.144.182.0/24 Signature Algorithm: sha256WithRSAEncryption 72:c1:3e:b8:95:d0:23:84:13:bb:0c:88:f3:1c:a1:04:1a:5c: 04:f0:c2:bb:37:6f:dc:fd:41:f4:de:93:fa:59:60:e7:eb:af: 70:2a:47:84:7b:6e:df:40:69:6a:f3:00:c9:f8:bf:61:ba:13: 0c:aa:ea:16:a2:33:2d:b0:b4:cf:44:1d:6c:3f:a1:82:43:8a: a3:56:95:61:27:d7:7c:ed:0f:5a:fa:20:81:b5:cd:61:73:b1: c9:3a:b6:e6:f7:ff:02:5b:f9:08:26:66:39:65:26:23:53:8d: 49:e6:19:fe:c3:07:27:fa:4c:00:8f:0b:1a:c1:11:85:8e:6b: ce:80:be:94:23:fb:24:f6:f3:88:77:09:d2:36:59:01:53:e5: ea:78:33:ad:16:0f:73:8e:a8:04:30:fd:73:99:48:9d:f1:09: c6:36:95:08:b3:7e:8b:a1:67:af:a4:24:0c:43:2e:67:95:37: 70:4e:d3:a2:26:f6:d5:5e:de:95:d7:47:e0:a3:cf:b2:de:f7: 19:bf:3e:36:f8:9d:e9:ca:e6:fc:33:74:aa:09:55:f2:c8:a4: 15:d7:88:d0:be:a2:1b:b2:df:3b:49:2f:8c:ec:14:a6:39:4d: 57:1e:69:68:28:fa:7e:31:9b:16:81:4b:59:cb:63:ad:e5:20: 39:d9:6b:c0 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICGjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzM3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTEwMS0yODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLvLLMcsrN01/GwdC4PCs2LMMlxviWcvhMA+TailgCMubHB0BGfhodQIq+VS SnvUel6aePDooaoLAjxeJ6N4MipwP6h3conWhTXk3Sq8iywgcdRCljj5FFxcaHpp kMc3BVW80s9i2Vxp+n42jDPTeGY39/UmeNw3+eEuq2bVM7o5kiAw+kzwr5xzUECO FKiT3u/GqUlRF1GiZQNFgwl0nU8hThZwUbDEeWra/ev7UmHHc1aGgQSu+VAlZGuG qNz91A2z839YlCgcXkS3tce8YrrMyEEKK7oraxR9D4p5WRFc5OElP0ODaU2N6bMU oWfkt4odJ2CxrM0NskQCkoseWwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFGaCT6Bs EoVOwaWPrdoK46oJgQhlMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjM0MTA2NUVC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAGdDwwDBACdD54DBACekAwDBACekA8DBACekBIDBACekLYw DQYJKoZIhvcNAQELBQADggEBAHLBPriV0COEE7sMiPMcoQQaXATwwrs3b9z9QfTe k/pZYOfrr3AqR4R7bt9AaWrzAMn4v2G6Ewyq6haiMy2wtM9EHWw/oYJDiqNWlWEn 13ztD1r6IIG1zWFzsck6tub3/wJb+QgmZjllJiNTjUnmGf7DByf6TACPCxrBEYWO a86AvpQj+yT284h3CdI2WQFT5ep4M60WD3OOqAQw/XOZSJ3xCcY2lQizfouhZ6+k JAxDLmeVN3BO06Im9tVe3pXXR+Cjz7Le9xm/Pjb4nenK5vwzdKoJVfLIpBXXiNC+ ohuy3ztJL4zsFKY5TVceaWgo+n4xmxaBS1nLY63lIDnZa8A= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org