$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/E76A785EB0E511EE89CA4229C4F9AE02.roa File: E76A785EB0E511EE89CA4229C4F9AE02.roa (raw, json) Hash identifier: 0zQIkbgbdMtbgw4BcfszLKyGTHFOvkOJrOv0LQBbILQ= Subject key identifier: 2C:88:72:8E:CA:D6:A4:0A:7A:D4:35:EB:A1:43:E4:11:B8:5D:D6:F2 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19FF Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/E76A785EB0E511EE89CA4229C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:50 +0000 ROA not before: Thu 30 May 2024 15:52:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151706 IP address blocks: 157.10.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6655 (0x19ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:50 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0d2-41fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:b2:5b:72:da:5b:4d:c9:da:e6:2f:b3:63: 12:85:a5:a4:5b:6b:d5:2f:a8:23:a0:51:5f:99:d9: 2b:b8:69:54:01:28:b9:2e:4b:f3:64:52:e9:1d:33: df:83:61:67:c1:e8:42:83:a2:5b:6c:17:60:82:bc: 3c:f3:a9:2e:54:71:4f:f3:eb:ae:92:8a:78:a7:15: bc:fa:74:18:9e:cf:ca:41:93:2c:5e:ee:8d:de:e6: f9:78:d3:62:cf:70:65:af:91:69:d1:cc:5b:a1:2e: ab:f2:56:05:c5:bd:c3:4c:04:4f:8d:eb:6a:f3:d4: bb:26:8b:44:2d:46:13:98:3f:f1:05:9a:69:32:5a: ad:a3:a5:c1:82:6a:7b:be:b5:33:93:c0:15:1e:b4: a8:9c:40:e8:06:46:62:9e:16:36:09:d2:93:2b:62: a2:72:96:85:16:3d:c5:25:a3:f6:28:26:34:f0:19: a5:c9:89:e4:99:81:97:6f:cd:17:86:28:7c:8c:3b: 94:48:ee:32:0f:ca:3f:eb:70:96:6a:57:41:8d:0a: 55:35:ba:e5:f6:91:ad:41:9c:04:33:a4:3e:7f:10: 37:05:9b:e3:10:c5:93:0c:15:a7:c1:ca:7f:e8:a3: 72:43:8c:43:81:f1:87:65:e4:30:88:ca:aa:ba:92: 7f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:88:72:8E:CA:D6:A4:0A:7A:D4:35:EB:A1:43:E4:11:B8:5D:D6:F2 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/E76A785EB0E511EE89CA4229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.168.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:c2:17:d6:1b:bf:62:e6:99:6e:e2:15:09:d2:e7:58:05:87: 0a:9e:77:e5:46:1e:aa:1f:3e:b4:c7:f7:30:ac:e9:85:d4:4f: 15:a8:cb:8d:2f:9e:b7:a6:f1:76:5d:74:8e:62:9a:2d:ff:fa: 87:75:8d:21:c0:af:4f:3a:61:71:01:56:c9:96:11:e0:a1:74: 01:9a:2b:22:be:e0:04:07:1d:14:9c:b1:39:3d:42:7a:0f:34: 00:ed:74:a6:7e:d3:97:d5:7c:28:4f:5d:66:b2:60:ef:b0:87: be:ad:66:81:5d:30:2a:ec:78:3e:2d:85:54:c5:13:b4:0c:15: c5:38:19:f8:a6:55:d3:f8:68:de:d8:05:54:78:78:92:20:8c: d5:c3:2b:22:0c:39:bc:17:7a:77:d8:5e:fe:b3:57:34:62:11: ea:30:4c:3a:3b:bc:59:34:ec:7b:8f:b0:aa:45:71:e7:ec:8a: a9:08:c5:7a:1a:45:96:b9:81:89:31:4f:16:b1:01:d8:9b:4d: 2e:e6:89:1b:94:6a:be:e3:d7:a6:cc:91:60:2c:a2:6f:08:00: f4:0e:5f:32:49:a4:65:75:27:1f:7e:f6:85:8a:62:b5:42:11: 3c:27:3d:4a:c9:2a:db:7d:bc:de:d7:1c:d0:78:da:5e:9f:b1: 9b:04:ab:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjUwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBkMi00MWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthWyW3LaW03J2uYvs2MShaWkW2vVL6gjoFFfmdkruGlUASi5LkvzZFLpHTPf g2FnwehCg6JbbBdggrw886kuVHFP8+uukop4pxW8+nQYns/KQZMsXu6N3ub5eNNi z3Blr5Fp0cxboS6r8lYFxb3DTARPjetq89S7JotELUYTmD/xBZppMlqto6XBgmp7 vrUzk8AVHrSonEDoBkZinhY2CdKTK2KicpaFFj3FJaP2KCY08BmlyYnkmYGXb80X hih8jDuUSO4yD8o/63CWaldBjQpVNbrl9pGtQZwEM6Q+fxA3BZvjEMWTDBWnwcp/ 6KNyQ4xDgfGHZeQwiMqqupJ/rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCyIco7K 1qQKetQ166FD5BG4XdbyMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTc2QTc4NUVC MEU1MTFFRTg5Q0E0MjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCqgwDQYJKoZIhvcNAQELBQADggEBAC/CF9Ybv2LmmW7i FQnS51gFhwqed+VGHqofPrTH9zCs6YXUTxWoy40vnrem8XZddI5imi3/+od1jSHA r086YXEBVsmWEeChdAGaKyK+4AQHHRScsTk9QnoPNADtdKZ+05fVfChPXWayYO+w h76tZoFdMCrseD4thVTFE7QMFcU4GfimVdP4aN7YBVR4eJIgjNXDKyIMObwXenfY Xv6zVzRiEeowTDo7vFk07HuPsKpFcefsiqkIxXoaRZa5gYkxTxaxAdibTS7miRuU ar7j16bMkWAsom8IAPQOXzJJpGV1Jx9+9oWKYrVCETwnPUrJKtt9vN7XHNB42l6f sZsEq48= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org