$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa File: 0386A52403A911EF851C9E18C4F9AE02.roa (raw, json) Hash identifier: MXeUkkuB0/YmFbLzK5wMGGkGNckzkET6qVj1cSCQht0= Subject key identifier: 56:FE:60:14:09:6C:47:45:89:47:33:0F:56:34:72:42:F2:E3:A3:03 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A2A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:31 +0000 ROA not before: Thu 30 May 2024 15:53:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152582 IP address blocks: 157.20.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6698 (0x1a2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0fb-5251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c7:dc:68:b2:af:2e:24:00:1f:65:01:63:f2: 88:cf:df:89:74:50:b2:90:a1:2d:f6:34:56:dc:2c: d8:f2:f0:b4:0f:17:70:2b:89:99:d5:24:df:5b:05: 84:27:4e:2f:52:b7:60:84:53:4c:4d:2d:48:b1:e5: 12:ff:2b:84:b3:de:ec:2c:82:3e:ad:83:df:35:a8: 82:f6:ed:09:dc:2d:53:ad:fb:25:f5:0b:ff:f5:f6: d5:d2:10:89:b9:49:11:95:fc:3e:3c:b3:0d:3b:63: 93:09:87:57:36:dd:d5:66:35:ca:fb:07:fd:00:3f: b4:90:b9:7b:bf:bc:ef:28:52:f5:aa:51:60:74:83: a3:59:bd:60:46:d4:b5:dc:07:92:1d:94:24:2e:29: 13:69:9e:28:2b:70:2f:c4:14:03:41:64:f0:2f:ba: ac:99:2c:f2:20:de:89:95:34:d5:43:96:42:27:a5: 4b:68:ab:14:42:aa:c8:39:82:3b:cd:f3:9a:fd:1e: 99:d8:3b:20:ff:46:cd:7e:8a:08:95:25:56:ad:4d: 7e:c0:c9:59:b4:7e:b9:8d:51:ff:c6:f7:08:e8:e6: 30:ea:55:a9:5d:ed:a9:b3:ef:f6:b4:2c:3b:fb:83: 6e:12:8e:8f:76:ac:07:41:64:27:ae:f2:0a:e8:02: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FE:60:14:09:6C:47:45:89:47:33:0F:56:34:72:42:F2:E3:A3:03 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.202.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:9f:8e:ab:2f:fc:f8:e5:6e:c9:51:6f:2c:e6:2b:f0:b1:09: 7d:fc:58:3a:c2:58:96:ce:64:5a:c5:c3:be:b1:0f:dd:36:95: 2e:cc:58:77:96:f6:3b:e7:8c:f0:ab:9f:50:d7:87:86:f7:27: 2b:76:89:fc:63:6a:ba:ae:0f:76:37:4f:a2:0f:5e:41:ce:2e: a4:a5:d2:2d:f3:ed:7b:bc:5c:04:7a:c4:c5:c8:70:4d:2a:d0: 83:a5:ba:a4:a9:39:b5:39:81:cb:dc:1e:19:84:4e:d1:bb:9a: 01:25:15:d8:69:a8:07:58:af:34:b8:f0:48:4e:a2:58:cb:b0: de:ec:dc:84:6d:0a:f0:8d:35:df:03:2d:78:2e:91:f3:ed:00: f8:2f:61:e3:6a:c4:dd:ae:bb:3a:b5:bf:65:c6:54:2a:f7:48: bf:cb:30:b3:aa:bb:96:d4:ec:f1:2d:ec:43:11:3f:fa:08:88: 9d:dd:f8:49:3b:56:3e:3b:09:19:06:b4:0b:2b:f2:3f:0d:a3: 38:f7:16:37:bd:19:03:04:ce:c1:b4:3d:1d:a1:3f:6d:3d:8d: 0b:ab:35:67:3c:02:aa:2a:86:76:9a:c5:a3:10:ff:be:a9:53: 20:ce:cc:ee:89:63:72:09:2b:be:75:ca:e8:a3:97:5b:c0:d0: e1:7a:61:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBmYi01MjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosfcaLKvLiQAH2UBY/KIz9+JdFCykKEt9jRW3CzY8vC0DxdwK4mZ1STfWwWE J04vUrdghFNMTS1IseUS/yuEs97sLII+rYPfNaiC9u0J3C1Trfsl9Qv/9fbV0hCJ uUkRlfw+PLMNO2OTCYdXNt3VZjXK+wf9AD+0kLl7v7zvKFL1qlFgdIOjWb1gRtS1 3AeSHZQkLikTaZ4oK3AvxBQDQWTwL7qsmSzyIN6JlTTVQ5ZCJ6VLaKsUQqrIOYI7 zfOa/R6Z2Dsg/0bNfooIlSVWrU1+wMlZtH65jVH/xvcI6OYw6lWpXe2ps+/2tCw7 +4NuEo6PdqwHQWQnrvIK6AKlYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFb+YBQJ bEdFiUczD1Y0ckLy46MDMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDM4NkE1MjQw M0E5MTFFRjg1MUM5RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMowDQYJKoZIhvcNAQELBQADggEBAE+fjqsv/PjlbslR byzmK/CxCX38WDrCWJbOZFrFw76xD902lS7MWHeW9jvnjPCrn1DXh4b3Jyt2ifxj arquD3Y3T6IPXkHOLqSl0i3z7Xu8XAR6xMXIcE0q0IOluqSpObU5gcvcHhmETtG7 mgElFdhpqAdYrzS48EhOoljLsN7s3IRtCvCNNd8DLXgukfPtAPgvYeNqxN2uuzq1 v2XGVCr3SL/LMLOqu5bU7PEt7EMRP/oIiJ3d+Ek7Vj47CRkGtAsr8j8Nozj3Fje9 GQMEzsG0PR2hP209jQurNWc8AqoqhnaaxaMQ/76pUyDOzO6JY3IJK751yuijl1vA 0OF6YQo= -----END CERTIFICATE-----Generated at Fri May 31 16:40:59 2024 by rpki-client on console-ams.rpki-client.org