$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3F70542169111EF9B147C3AC4F9AE02.roa File: C3F70542169111EF9B147C3AC4F9AE02.roa (raw, json) Hash identifier: h3lQLN+kHHBLOI5G1kPjudhjYQSD56o8t9yDrua4k44= Subject key identifier: C6:53:AF:F0:84:78:62:A0:61:B8:B6:6E:64:5B:57:28:C2:35:D8:89 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A27 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3F70542169111EF9B147C3AC4F9AE02.roa Signing time: Thu 30 May 2024 15:53:28 +0000 ROA not before: Thu 30 May 2024 15:53:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152571 IP address blocks: 157.66.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6695 (0x1a27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:28 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0f8-e216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5b:75:be:2f:91:28:aa:45:32:51:fc:b0:d6: 29:84:8a:cc:4b:d7:75:74:fb:a3:96:c7:16:10:2c: c5:24:47:a7:34:38:06:d4:bc:f6:fd:a7:84:8e:92: ad:b7:cd:bb:0b:e3:0f:84:b5:3b:83:96:ce:17:d9: b7:b5:ed:59:bb:00:48:83:13:fd:d9:bd:24:c9:b5: 20:65:c2:0a:2d:ca:ef:7c:92:91:f6:0a:5f:6f:80: b7:96:dd:30:9c:a4:56:59:49:19:6b:2b:81:e9:97: 3b:d6:39:8d:b7:99:59:ad:7c:04:43:7c:5d:50:54: b5:c0:7a:38:00:fa:da:f2:c1:62:ea:e7:61:c2:a2: d1:10:b8:ff:81:80:5b:1a:4c:36:0b:c8:cf:f4:65: 75:c9:5d:38:b8:f4:39:24:2c:fd:da:2f:6b:a8:1e: cb:21:ce:ef:23:8e:04:0c:17:b3:58:e7:5b:28:19: 2b:db:fd:ab:2e:17:e7:61:ba:c3:42:08:3e:eb:76: 50:5a:7f:45:f5:65:e4:6f:7d:68:27:e7:36:fc:fa: ae:9b:88:ca:e8:ef:4f:68:ac:06:3f:e5:f4:60:ff: 96:9d:6d:e2:c5:68:bc:4d:87:9d:45:7e:37:e1:ee: c6:f9:d9:c5:65:f6:77:01:a4:16:b8:85:ea:33:47: 17:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:53:AF:F0:84:78:62:A0:61:B8:B6:6E:64:5B:57:28:C2:35:D8:89 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3F70542169111EF9B147C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.150.0/23 Signature Algorithm: sha256WithRSAEncryption 44:0d:0f:97:a6:4c:67:bc:6e:63:38:a2:57:0d:eb:05:a3:0e: a7:10:de:8e:6a:bb:19:de:8a:16:14:71:e9:d6:90:e9:09:a5: b0:1c:ec:37:34:80:c4:63:77:fe:88:14:2b:38:10:56:98:a3: b3:37:87:3b:46:91:66:19:e7:6c:63:87:3e:f2:e8:89:05:4b: 38:6e:67:0e:89:59:69:fa:89:78:5a:62:00:65:92:bc:b1:f5: 16:5f:e4:52:0a:cf:8d:46:b2:b2:b4:1f:cf:48:ee:1f:4e:05: 1b:af:77:46:ca:c0:7f:f6:16:c0:23:b3:f8:b0:98:b9:c6:06: 8c:82:cf:2a:30:24:4b:c6:47:67:ae:a9:81:81:3d:fd:0b:0b: fa:b9:49:65:60:31:5b:f3:de:92:a0:ce:c2:f5:21:f4:c8:bb: 59:39:db:d0:93:97:0e:64:f0:a9:7d:8a:44:04:51:b4:6d:ad: d9:03:37:e2:27:f8:03:96:80:4e:83:d2:c5:0b:3b:63:82:7f: 90:df:0c:54:50:53:21:60:39:0e:7f:72:a4:ed:4d:02:73:16: 6c:09:45:10:c4:d2:cf:17:99:73:91:d9:ea:13:9b:7c:0b:58: 72:4c:98:6c:8a:56:01:16:b1:87:30:90:2b:d6:f6:a6:f3:54: cf:be:89:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzI4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBmOC1lMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFt1vi+RKKpFMlH8sNYphIrMS9d1dPujlscWECzFJEenNDgG1Lz2/aeEjpKt t827C+MPhLU7g5bOF9m3te1ZuwBIgxP92b0kybUgZcIKLcrvfJKR9gpfb4C3lt0w nKRWWUkZayuB6Zc71jmNt5lZrXwEQ3xdUFS1wHo4APra8sFi6udhwqLRELj/gYBb Gkw2C8jP9GV1yV04uPQ5JCz92i9rqB7LIc7vI44EDBezWOdbKBkr2/2rLhfnYbrD Qgg+63ZQWn9F9WXkb31oJ+c2/Pqum4jK6O9PaKwGP+X0YP+WnW3ixWi8TYedRX43 4e7G+dnFZfZ3AaQWuIXqM0cXlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMZTr/CE eGKgYbi2bmRbVyjCNdiJMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzNGNzA1NDIx NjkxMTFFRjlCMTQ3QzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQpYwDQYJKoZIhvcNAQELBQADggEBAEQND5emTGe8bmM4 olcN6wWjDqcQ3o5quxneihYUcenWkOkJpbAc7Dc0gMRjd/6IFCs4EFaYo7M3hztG kWYZ52xjhz7y6IkFSzhuZw6JWWn6iXhaYgBlkryx9RZf5FIKz41GsrK0H89I7h9O BRuvd0bKwH/2FsAjs/iwmLnGBoyCzyowJEvGR2euqYGBPf0LC/q5SWVgMVvz3pKg zsL1IfTIu1k529CTlw5k8Kl9ikQEUbRtrdkDN+In+AOWgE6D0sULO2OCf5DfDFRQ UyFgOQ5/cqTtTQJzFmwJRRDE0s8XmXOR2eoTm3wLWHJMmGyKVgEWsYcwkCvW9qbz VM++iQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org