$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa File: 805DA0BCCCF811EEA9723F27C4F9AE02.roa (raw, json) Hash identifier: D/+xv8jzE11lKaO3hHiOnEDdZgBcBo0atzPE35sFdcc= Subject key identifier: B2:07:23:EB:30:4D:C5:32:22:B6:3F:DB:BD:F5:89:BC:3C:82:A7:E6 Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: 02 Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa Signing time: Fri 16 Feb 2024 18:23:38 +0000 ROA not before: Fri 16 Feb 2024 18:23:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152482 IP address blocks: 157.20.42.0/23 maxlen: 23 157.20.42.0/24 maxlen: 24 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Validity Not Before: Feb 16 18:23:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65cfa829-75e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:d8:9e:bf:95:18:97:6d:b7:de:51:e0:30: ba:1e:80:86:9c:75:51:cb:5a:d5:49:83:aa:e3:e1: 43:cf:d7:a0:8d:2a:81:be:43:90:63:54:c8:34:e8: 32:b0:f8:34:33:75:74:ce:28:d3:fc:62:60:b4:e6: b3:22:49:c0:66:25:be:83:8e:49:e8:4a:50:a0:14: 04:84:d4:ca:97:8f:8f:07:59:3c:cf:66:8d:d3:b4: e7:24:a8:b7:74:58:fa:ab:ca:5c:16:5a:83:a6:77: d9:fb:c7:73:80:9d:8a:00:69:6c:5e:e1:d7:03:a9: ce:87:12:2a:52:ad:96:74:19:f4:f8:5e:d2:fb:93: 33:de:97:5a:de:2f:61:ee:54:b3:02:a2:9d:66:25: 93:fd:35:48:db:f6:ce:77:ed:62:79:f1:28:93:af: e1:d9:11:b7:86:1a:12:5b:b1:f6:d1:ea:6c:5e:f1: 84:ee:93:c2:50:40:3c:de:74:46:ee:a0:3b:a3:23: d8:ec:44:6c:3e:30:12:20:4b:34:32:a7:42:fe:55: e4:89:e7:82:9f:2b:af:23:e9:9e:85:d9:1c:51:f0: b7:b9:6b:6d:f6:cb:6b:95:0f:d0:e2:ee:1c:f2:db: b2:18:d9:8f:03:80:20:7d:a9:63:ef:85:52:70:0d: 17:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:07:23:EB:30:4D:C5:32:22:B6:3F:DB:BD:F5:89:BC:3C:82:A7:E6 X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.42.0/23 Signature Algorithm: sha256WithRSAEncryption 37:01:c5:64:cc:5b:80:02:73:84:e1:5c:e9:05:46:97:0e:77: de:83:96:56:11:8d:f6:19:f3:c7:30:45:50:bb:b6:6a:58:ab: 46:04:58:da:dc:84:41:54:6d:a2:ef:03:1e:e4:91:cf:a1:69: 79:eb:93:4e:88:5b:ba:60:44:4e:83:d5:4b:ce:23:7b:2c:a7: ac:c0:1d:f1:ae:a3:ca:78:91:d1:69:c3:e5:42:23:36:7b:eb: 5f:83:3c:40:21:30:b9:3f:11:f8:b7:35:b1:c7:f4:7d:b0:18: 64:ec:39:26:7e:c4:6d:ef:88:61:d8:df:6d:7e:5a:ee:68:55: c5:57:37:27:9b:d8:62:c5:9b:03:3a:6a:24:fa:1a:a9:23:85: bd:ed:29:fa:29:bb:f4:12:b9:ff:ec:82:b3:04:ce:01:74:97: a5:c4:79:bd:f1:03:7f:e0:98:56:5b:b8:f5:16:53:29:f6:02: e3:24:79:d2:ed:15:99:d8:46:f2:09:d8:cc:4f:1d:3a:c4:66: f8:04:63:1d:08:f4:16:c8:f1:7d:34:39:b6:9e:47:8a:fc:ef: 18:30:1e:91:b3:e6:13:b4:8b:4f:7d:b0:2e:25:60:40:bf:b6: e8:81:49:81:ff:24:aa:cb:dd:9f:d4:49:c2:8c:bf:1c:cb:7a: b3:86:76:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjRCRTExMC8GA1UEBRMoN0IxRkIxQkEzQjBFQzhDQTVFNUMxM0FFQkNGQzZFQkE4 RDIwRUFBNzAeFw0yNDAyMTYxODIzMzhaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Y2ZhODI5LTc1ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsf9iev5UYl2233lHgMLoegIacdVHLWtVJg6rj4UPP16CNKoG+Q5BjVMg06DKw +DQzdXTOKNP8YmC05rMiScBmJb6DjknoSlCgFASE1MqXj48HWTzPZo3TtOckqLd0 WPqrylwWWoOmd9n7x3OAnYoAaWxe4dcDqc6HEipSrZZ0GfT4XtL7kzPel1reL2Hu VLMCop1mJZP9NUjb9s537WJ58SiTr+HZEbeGGhJbsfbR6mxe8YTuk8JQQDzedEbu oDujI9jsRGw+MBIgSzQyp0L+VeSJ54KfK68j6Z6F2RxR8Le5a232y2uVD9Di7hzy 27IY2Y8DgCB9qWPvhVJwDReRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsgcj6zBN xTIitj/bvfWJvDyCp+YwHwYDVR0jBBgwFoAUex+xujsOyMpeXBOuvPxuuo0g6qcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNEJFLzZGMkZEMzM4Q0NG NzExRUU5RTg5RDY3QUM0RjlBRTAyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZXgteHVqc095TXBlWEJPdXZQeHV1bzBnNnFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjRCRS82RjJGRDMzOENDRjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi84MDVEQTBCQ0ND RjgxMUVFQTk3MjNGMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UKjANBgkqhkiG9w0BAQsFAAOCAQEANwHFZMxbgAJzhOFc 6QVGlw533oOWVhGN9hnzxzBFULu2alirRgRY2tyEQVRtou8DHuSRz6FpeeuTTohb umBEToPVS84jeyynrMAd8a6jyniR0WnD5UIjNnvrX4M8QCEwuT8R+Lc1scf0fbAY ZOw5Jn7Ebe+IYdjfbX5a7mhVxVc3J5vYYsWbAzpqJPoaqSOFve0p+im79BK5/+yC swTOAXSXpcR5vfEDf+CYVlu49RZTKfYC4yR50u0VmdhG8gnYzE8dOsRm+ARjHQj0 FsjxfTQ5tp5HivzvGDAekbPmE7SLT32wLiVgQL+26IFJgf8kqsvdn9RJwoy/HMt6 s4Z2Gw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org