$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1F5DC028E03D11EE97D9C02BC4F9AE02.roa File: 1F5DC028E03D11EE97D9C02BC4F9AE02.roa (raw, json) Hash identifier: qlcZAZNGhRA/0k+CyMonNn/IQ3GNodJjD1ZP2n9eodI= Subject key identifier: DE:D5:9D:8F:F0:6D:0A:2F:63:90:87:7D:AB:29:A1:2F:BB:AF:57:EF Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A28 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1F5DC028E03D11EE97D9C02BC4F9AE02.roa Signing time: Thu 30 May 2024 15:53:29 +0000 ROA not before: Thu 30 May 2024 15:53:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152578 IP address blocks: 157.20.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 15:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6696 (0x1a28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0f9-3a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fe:99:1f:b3:43:f1:30:5e:81:92:03:eb:bf: f8:db:e8:da:fc:85:f9:66:7d:b8:eb:f5:19:54:b4: e4:16:2b:2c:78:d4:7b:91:aa:0d:0f:6d:ba:8e:7e: 8f:56:8b:68:a0:97:96:45:6f:5b:83:7c:5b:cd:2f: 35:6f:f0:23:78:66:cc:0a:83:b1:bb:26:78:92:91: 50:58:2b:64:8a:54:6c:0e:14:21:7a:33:96:ae:0a: e0:a6:8f:83:8d:15:73:f4:ec:b5:aa:bf:77:72:12: 4f:7c:d2:cd:ae:3b:a9:72:27:44:54:8f:51:57:b2: 39:65:71:ab:49:dc:32:13:6e:14:29:31:80:13:75: b4:c9:e3:cd:39:82:d6:9d:ed:df:b5:6d:1b:11:08: f0:e6:58:fd:e4:bf:39:f2:32:25:d9:ed:69:44:ab: 78:df:a1:f3:b5:de:75:60:f6:7a:c1:58:9a:8d:84: fa:1b:d5:d9:30:82:4c:63:f7:10:32:dd:0d:19:39: 9a:85:9a:36:cd:5c:e0:ea:70:e1:b5:b7:3c:83:9e: 0c:98:5b:df:a1:38:fe:15:ca:22:cd:30:a6:a7:bc: d3:e2:7c:fe:f7:ea:a9:fb:00:68:eb:94:46:59:62: f1:d5:a1:63:de:c4:73:27:bc:d0:3d:fc:3f:5f:d5: 9f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D5:9D:8F:F0:6D:0A:2F:63:90:87:7D:AB:29:A1:2F:BB:AF:57:EF X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1F5DC028E03D11EE97D9C02BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.168.0/23 Signature Algorithm: sha256WithRSAEncryption 19:39:a3:90:25:cd:01:c9:fd:01:4d:30:f3:1b:f3:f8:d0:81: 05:64:98:af:2e:e9:b7:29:72:d8:5c:ea:4b:fd:78:3f:dd:b1: 77:0b:1a:c5:59:e1:88:d3:5d:be:51:3a:b4:a1:11:0c:b6:c2: b6:7a:29:ee:ca:ef:24:2a:15:9c:00:76:f0:b1:40:b7:50:35: 8c:b6:4b:83:db:c9:d6:69:13:ac:a4:f5:4d:f4:bd:d1:2c:db: 30:d2:bd:57:74:d0:c2:4f:85:af:e8:fc:af:76:f7:f7:f8:a1: f4:35:80:0b:5f:1b:2a:f6:a1:ba:fb:aa:31:08:33:6d:dd:3c: a1:85:6e:ac:f9:23:09:7b:7e:84:62:e5:d2:7d:5d:7b:14:7c: 81:93:f1:09:36:ee:b5:63:a1:b5:20:f6:80:ca:9b:03:5f:3b: 8c:ad:23:f3:5d:72:0f:c5:bb:0b:b0:38:52:28:71:99:27:7a: aa:34:13:5a:05:d3:06:b7:af:36:9c:ea:15:18:42:18:56:31: 34:a6:d5:ee:ef:4b:20:43:7e:66:4d:a2:de:4d:9b:7f:52:67: 6f:0b:3c:a5:05:fc:79:ca:7b:43:93:b4:78:f7:ae:1e:87:51: ec:01:75:25:46:ae:91:1d:81:a7:3d:bd:42:a0:64:f6:d0:3f: 6d:2b:7f:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBmOS0zYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf6ZH7ND8TBegZID67/42+ja/IX5Zn246/UZVLTkFisseNR7kaoND226jn6P VotooJeWRW9bg3xbzS81b/AjeGbMCoOxuyZ4kpFQWCtkilRsDhQhejOWrgrgpo+D jRVz9Oy1qr93chJPfNLNrjupcidEVI9RV7I5ZXGrSdwyE24UKTGAE3W0yePNOYLW ne3ftW0bEQjw5lj95L858jIl2e1pRKt436Hztd51YPZ6wViajYT6G9XZMIJMY/cQ Mt0NGTmahZo2zVzg6nDhtbc8g54MmFvfoTj+FcoizTCmp7zT4nz+9+qp+wBo65RG WWLx1aFj3sRzJ7zQPfw/X9Wf7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN7VnY/w bQovY5CHfaspoS+7r1fvMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUY1REMwMjhF MDNEMTFFRTk3RDlDMDJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFKgwDQYJKoZIhvcNAQELBQADggEBABk5o5AlzQHJ/QFN MPMb8/jQgQVkmK8u6bcpcthc6kv9eD/dsXcLGsVZ4YjTXb5ROrShEQy2wrZ6Ke7K 7yQqFZwAdvCxQLdQNYy2S4PbydZpE6yk9U30vdEs2zDSvVd00MJPha/o/K929/f4 ofQ1gAtfGyr2obr7qjEIM23dPKGFbqz5Iwl7foRi5dJ9XXsUfIGT8Qk27rVjobUg 9oDKmwNfO4ytI/Ndcg/FuwuwOFIocZkneqo0E1oF0wa3rzac6hUYQhhWMTSm1e7v SyBDfmZNot5Nm39SZ28LPKUF/HnKe0OTtHj3rh6HUewBdSVGrpEdgac9vUKgZPbQ P20rf08= -----END CERTIFICATE-----Generated at Fri Jun 14 19:09:31 2024 by rpki-client on console-ams.rpki-client.org