$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa File: B3DA6A4CBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: E1pnqGlS+oAQi9TLWPrDMdheUKBm1Y7yBOhVsQuTHx0= Subject key identifier: F7:4D:6F:EF:66:43:18:9B:A8:2D:9E:6E:AE:FF:15:1C:AC:9A:4A:7C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 17E6 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa Signing time: Wed 10 May 2023 15:51:53 +0000 ROA not before: Wed 10 May 2023 15:51:53 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58758 IP address blocks: 158.144.42.0/24 maxlen: 24 158.144.43.0/24 maxlen: 24 158.144.44.0/24 maxlen: 24 158.144.183.0/24 maxlen: 24 158.144.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6118 (0x17e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 10 15:51:53 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bbd99-3d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:93:bc:bd:19:97:b0:0f:f8:18:fd:ae:58:a7: 7c:27:d0:82:f2:4b:f5:af:86:96:f2:b4:b8:f0:1e: d9:5b:b1:92:d1:c4:b3:5e:34:20:d6:50:64:66:65: 86:09:c0:aa:cb:1a:59:91:cb:54:a6:0f:e0:a2:ca: 51:57:af:39:c9:55:53:ee:50:0a:22:2e:34:7f:b4: 21:b2:a3:a1:b4:11:7f:2c:1d:1b:89:b8:ea:16:be: b1:06:f6:1b:51:36:92:da:f1:2e:e8:9d:6c:b4:c1: 2f:83:91:8d:29:1d:2f:d3:af:fb:80:8b:10:82:98: e8:ba:f2:9e:f0:75:27:29:42:32:5d:2d:f3:65:35: 8a:04:ca:5b:b6:3f:ca:69:96:1a:51:1b:97:b4:25: 33:b5:d7:8c:cd:00:4a:ce:e3:5a:f7:74:74:9a:f6: c7:35:e1:80:4b:74:e2:0e:42:a7:a6:45:06:7e:cd: 5e:bf:61:03:43:cc:7c:89:77:1f:78:19:f4:0e:2d: d5:bc:39:51:a6:19:da:ba:79:ec:e4:82:43:bf:70: 56:b7:6b:e8:83:6b:2f:64:95:c0:bc:9f:1d:14:49: 6b:ad:bc:44:de:9d:36:ff:e5:3e:f8:5a:d7:c1:8a: bc:a3:c1:32:60:2c:00:8f:24:f3:cc:73:20:66:c8: 0b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4D:6F:EF:66:43:18:9B:A8:2D:9E:6E:AE:FF:15:1C:AC:9A:4A:7C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.144.42.0-158.144.44.255 158.144.183.0/24 158.144.185.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:7f:5d:2c:51:75:38:5f:b1:1b:4e:cb:de:6b:a3:45:c2:e3: 2a:91:d1:bb:91:45:5d:da:b3:33:c0:cf:19:4c:18:11:9f:96: b7:e8:0e:61:42:a1:9b:aa:8d:18:d6:1c:db:af:b9:c0:a3:27: 0c:88:44:44:35:56:b3:8f:07:c2:08:20:a6:6a:7a:3f:83:ac: a1:c2:f0:39:a8:46:72:cf:75:1f:3a:e3:f6:5f:ab:d6:95:0e: b7:a4:e0:27:04:55:c8:2a:c8:6b:08:46:cb:59:83:7f:e0:2c: 03:5a:2d:4f:6c:87:03:c7:2e:5b:72:85:29:d2:6e:60:21:a1: d9:7c:d4:8e:eb:8d:82:c8:fd:35:f3:77:54:03:1f:28:03:32: 3a:55:fc:07:eb:48:75:64:82:1b:75:a1:67:e9:12:a3:b7:76: bb:3e:18:04:73:98:f6:5b:14:ec:fe:cc:b5:da:34:1e:8f:54: 6b:cc:17:12:f7:8a:f9:66:b8:99:cf:dc:b6:3e:d2:ad:eb:96: 18:d0:1f:37:ed:9b:34:c4:58:48:54:73:75:26:5c:57:61:49: f1:33:23:c3:e5:d2:f0:46:19:f4:63:d4:5b:a8:e5:b2:73:d6: 41:c4:53:bd:ad:fd:55:11:eb:02:fd:b8:39:e6:ec:8b:1b:dc: 04:5e:ed:9f -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICF+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjMwNTEwMTU1MTUzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYmQ5OS0zZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZO8vRmXsA/4GP2uWKd8J9CC8kv1r4aW8rS48B7ZW7GS0cSzXjQg1lBkZmWG CcCqyxpZkctUpg/gospRV685yVVT7lAKIi40f7QhsqOhtBF/LB0bibjqFr6xBvYb UTaS2vEu6J1stMEvg5GNKR0v06/7gIsQgpjouvKe8HUnKUIyXS3zZTWKBMpbtj/K aZYaURuXtCUztdeMzQBKzuNa93R0mvbHNeGAS3TiDkKnpkUGfs1ev2EDQ8x8iXcf eBn0Di3VvDlRphnaunns5IJDv3BWt2vog2svZJXAvJ8dFElrrbxE3p02/+U++FrX wYq8o8EyYCwAjyTzzHMgZsgLowIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFPdNb+9m QxibqC2ebq7/FRysmkp8MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjNEQTZBNENC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAZ6QKgMEAJ6QLAMEAJ6QtwMEAJ6QuTANBgkqhkiG9w0B AQsFAAOCAQEAGn9dLFF1OF+xG07L3mujRcLjKpHRu5FFXdqzM8DPGUwYEZ+Wt+gO YUKhm6qNGNYc26+5wKMnDIhERDVWs48Hwgggpmp6P4OsocLwOahGcs91Hzrj9l+r 1pUOt6TgJwRVyCrIawhGy1mDf+AsA1otT2yHA8cuW3KFKdJuYCGh2XzUjuuNgsj9 NfN3VAMfKAMyOlX8B+tIdWSCG3WhZ+kSo7d2uz4YBHOY9lsU7P7Mtdo0Ho9Ua8wX EveK+Wa4mc/ctj7SreuWGNAfN+2bNMRYSFRzdSZcV2FJ8TMjw+XS8EYZ9GPUW6jl snPWQcRTva39VRHrAv24OebsixvcBF7tnw== -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org