$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa File: 122C6942D9CE11EEB6EA7F6CC4F9AE02.roa (raw, json) Hash identifier: tvAepCJ9vU9LlsSGa7be0kh+waK/rq2mEdxPZDyL1PU= Subject key identifier: 1A:C8:04:C1:1C:E1:31:70:90:B8:B2:F3:0A:76:A1:4E:87:FB:D5:68 Certificate issuer: /CN=A9169BAF/serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Certificate serial: 08 Authority key identifier: AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa Signing time: Thu 07 Mar 2024 07:59:15 +0000 ROA not before: Thu 07 Mar 2024 07:59:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152107 IP address blocks: 157.20.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BAF/serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Validity Not Before: Mar 7 07:59:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e973d3-639c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ce:b6:20:09:e3:1f:fa:da:ff:d9:ac:eb:5d: e4:ec:46:c0:d8:7f:b0:3d:84:b3:a2:58:f7:fe:7b: 6c:94:6b:c8:41:91:25:f7:1c:2f:75:42:d5:cf:8a: 80:0e:4e:17:5d:91:15:ce:6b:b6:86:dd:c9:86:d2: 90:8b:58:d0:5c:36:5d:33:25:b7:01:9c:11:3c:39: 0e:32:be:39:e6:92:09:8e:ca:d5:56:5a:ad:e2:fb: 4b:a9:62:71:02:54:1e:93:73:71:76:b3:93:8e:75: 1c:d1:7a:e6:0e:94:8e:b3:42:e5:f6:70:a1:0f:e6: d1:ce:11:04:67:55:13:58:fe:e2:cb:de:e2:4d:61: ed:4b:c0:9c:74:99:27:5c:0a:ce:ae:bc:6c:82:73: 43:58:11:31:d7:31:ec:5a:8f:55:15:dc:f9:df:3a: 1d:09:40:b2:fc:e5:c6:24:f4:ab:4d:be:e4:03:e0: 28:8c:98:a0:a9:dd:ca:b0:fe:16:24:c1:1b:6a:59: 71:f3:c0:ad:32:33:e3:4a:35:46:7d:d9:94:07:46: 98:dd:73:99:fd:ea:d2:63:29:a7:cd:f9:21:e2:fa: a4:b7:64:39:64:1d:f2:cb:80:60:3a:b6:a2:99:a7: fc:4a:e8:f5:3e:b2:6e:f6:47:4d:79:8d:36:d4:63: 6f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C8:04:C1:1C:E1:31:70:90:B8:B2:F3:0A:76:A1:4E:87:FB:D5:68 X509v3 Authority Key Identifier: keyid:AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.143.0/24 Signature Algorithm: sha256WithRSAEncryption 79:1f:b5:3a:97:1b:a4:6e:1c:2d:df:61:01:5e:40:9f:57:93: 43:87:ed:64:e6:c7:32:62:e6:d1:eb:38:b2:18:c5:6a:c5:cb: a3:0e:e3:d3:0e:41:4c:5a:d4:c2:89:f3:be:1f:86:32:0b:12: 3f:f2:22:8b:f3:cc:89:63:23:62:75:98:5d:34:97:01:eb:41: d5:3c:29:ed:dd:1e:d3:15:6c:46:1f:8f:f0:03:9a:32:5f:35: 08:76:01:d1:d5:b4:27:90:ac:56:c9:31:a3:34:1b:b4:64:9c: 6f:20:f3:d5:8f:40:27:b7:3a:5a:cc:0b:36:12:ad:14:37:7a: 22:a9:25:65:92:8f:ac:0d:89:f7:c6:8c:a6:20:27:1e:a9:87: dc:94:fb:25:f2:8e:69:0e:7a:ea:19:7d:c2:25:c2:c9:5c:b5: 2e:e5:77:70:81:bd:2d:f6:f1:6a:53:66:4d:d2:03:c0:d5:64: b1:2c:0a:d7:13:97:5b:d3:8b:18:5a:08:93:bd:28:f5:f8:d7: da:f7:0e:f3:61:eb:6f:8e:42:9f:f6:ec:5d:3a:45:48:9e:02: b6:28:49:74:71:68:80:f2:ff:82:d6:48:bd:a6:7f:2a:1e:11: ee:bc:4b:ea:ae:27:69:42:9d:d5:d1:fe:c2:5e:4b:23:82:59: 96:a1:aa:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUJBRjExMC8GA1UEBRMoQUQxNjEyNDBFOTdBMzJEMTAzMDk5QkE3OEEwMjhDRDA5 RjVGNUI5MzAeFw0yNDAzMDcwNzU5MTVaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTk3M2QzLTYzOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzzrYgCeMf+tr/2azrXeTsRsDYf7A9hLOiWPf+e2yUa8hBkSX3HC91QtXPioAO ThddkRXOa7aG3cmG0pCLWNBcNl0zJbcBnBE8OQ4yvjnmkgmOytVWWq3i+0upYnEC VB6Tc3F2s5OOdRzReuYOlI6zQuX2cKEP5tHOEQRnVRNY/uLL3uJNYe1LwJx0mSdc Cs6uvGyCc0NYETHXMexaj1UV3PnfOh0JQLL85cYk9KtNvuQD4CiMmKCp3cqw/hYk wRtqWXHzwK0yM+NKNUZ92ZQHRpjdc5n96tJjKafN+SHi+qS3ZDlkHfLLgGA6tqKZ p/xK6PU+sm72R015jTbUY2/DAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGsgEwRzh MXCQuLLzCnahTof71WgwHwYDVR0jBBgwFoAUrRYSQOl6MtEDCZunigKM0J9fW5Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QkFGL0FFRjcwNDkwRDlC RTExRUVBQzVCRDM2REM0RjlBRTAyL3JSWVNRT2w2TXRFRENadW5pZ0tNMEo5Zlc1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclJZU1FPbDZNdEVEQ1p1bmlnS00wSjlmVzVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUJBRi9BRUY3MDQ5MEQ5QkUxMUVFQUM1QkQzNkRDNEY5QUUwMi8xMjJDNjk0MkQ5 Q0UxMUVFQjZFQTdGNkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0UjzANBgkqhkiG9w0BAQsFAAOCAQEAeR+1OpcbpG4cLd9h AV5An1eTQ4ftZObHMmLm0es4shjFasXLow7j0w5BTFrUwonzvh+GMgsSP/Iii/PM iWMjYnWYXTSXAetB1Twp7d0e0xVsRh+P8AOaMl81CHYB0dW0J5CsVskxozQbtGSc byDz1Y9AJ7c6WswLNhKtFDd6IqklZZKPrA2J98aMpiAnHqmH3JT7JfKOaQ566hl9 wiXCyVy1LuV3cIG9LfbxalNmTdIDwNVksSwK1xOXW9OLGFoIk70o9fjX2vcO82Hr b45Cn/bsXTpFSJ4CtihJdHFogPL/gtZIvaZ/Kh4R7rxL6q4naUKd1dH+wl5LI4JZ lqGq7A== -----END CERTIFICATE-----Generated at Thu Jun 13 10:58:42 2024 by rpki-client on console-ams.rpki-client.org