$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C219C6EEAC8F11EF84BC2754C4F9AE02.roa File: C219C6EEAC8F11EF84BC2754C4F9AE02.roa (raw, json) Hash identifier: bRQ1vtETbC9xwIkajoXkMNJOWF0sRYi/TcWoPslCm58= Subject key identifier: 06:6B:EE:4D:2B:37:70:7F:16:33:27:50:88:49:0B:12:5F:71:E8:4C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1BFD Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C219C6EEAC8F11EF84BC2754C4F9AE02.roa Signing time: Wed 27 Nov 2024 07:18:11 +0000 ROA not before: Wed 27 Nov 2024 07:18:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135722 IP address blocks: 160.22.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7165 (0x1bfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Nov 27 07:18:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6746c7b3-e71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fa:61:c3:af:33:4e:b9:00:b7:cc:ca:88:dc: 14:4e:46:f4:b4:6e:cb:c5:2d:85:0d:10:dc:26:ee: 48:79:98:43:dc:f3:e6:bf:82:f5:ee:7d:17:26:8f: 59:fd:aa:18:a0:cc:9e:21:43:ae:d4:e0:b3:6d:7e: 30:a9:b2:e8:ff:3f:d8:ef:48:49:2f:5e:fe:10:1d: a8:66:93:b8:39:44:17:34:1b:c8:31:59:7a:7a:ce: 00:25:06:19:0a:2a:20:60:e7:33:eb:9e:8b:2d:2f: 59:de:f3:e3:33:53:64:e8:c4:ff:5e:08:b7:33:6d: a9:85:b5:ed:4e:ec:05:84:b9:0f:30:84:b3:5a:17: 1b:10:6d:08:36:51:fd:4b:5e:b8:63:7f:b1:a5:67: 7c:7d:f3:c3:81:b1:fe:89:47:c1:79:a1:69:18:87: e2:0c:bf:3e:bf:69:e5:38:08:cd:97:88:90:4d:80: 7d:dd:0b:29:f5:63:69:df:a9:b1:00:bc:bb:4a:6d: 86:03:04:d7:9d:1c:55:b5:71:b4:c3:3e:ca:8e:c5: df:3d:2b:3b:8b:24:15:62:1e:2c:f0:9a:9b:2a:d0: 5b:33:84:25:f1:e9:e9:7f:38:7b:d5:8e:08:fa:bf: af:c9:f5:67:9f:a9:19:58:22:e0:68:c1:32:95:24: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6B:EE:4D:2B:37:70:7F:16:33:27:50:88:49:0B:12:5F:71:E8:4C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C219C6EEAC8F11EF84BC2754C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.153.0/24 Signature Algorithm: sha256WithRSAEncryption a2:51:ef:cb:cf:a0:0a:18:0b:4a:81:43:bb:74:ba:47:0a:85: 8e:e0:41:cb:6e:6c:51:32:98:2e:e5:2f:88:34:aa:6c:18:88: f2:76:67:8d:49:72:7b:97:cf:b3:ee:97:bf:59:6a:53:ac:04: c7:7f:04:20:b7:7e:96:8b:a1:63:13:90:e0:c4:12:e9:2a:b0: 78:ab:c8:7c:68:39:ed:7a:dd:dd:41:96:c2:f0:ce:cd:d6:da: f0:b0:15:e9:13:9b:ce:6e:2e:fb:9d:6b:50:1c:35:f2:19:ac: 8d:02:88:4a:bd:a0:f7:9d:1a:09:c0:b9:12:09:34:5e:32:fc: 9e:1e:20:8f:81:0a:88:42:ea:52:6f:9a:55:b6:5c:d7:d8:89: f1:66:cd:b6:24:e8:2e:e5:35:64:cb:73:ff:e6:1e:60:6a:a3: ae:45:f8:c5:c9:3a:c2:10:7d:1c:fe:3e:95:5e:ed:b8:c0:db: e4:06:76:e0:c4:21:02:b6:09:20:1d:a5:5e:06:d8:f5:74:4b: f8:89:1b:e7:1e:04:2d:d3:59:b8:ef:f3:d3:05:b0:78:50:a9: bb:b0:71:a5:c0:c6:ed:17:30:e7:8e:58:9b:5b:61:ca:ea:a9: b1:2d:06:a5:e7:98:8b:1e:99:6f:5e:a1:ee:8f:15:cd:9b:2d: 2e:23:1c:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMTI3MDcxODExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2YzdiMy1lNzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fphw68zTrkAt8zKiNwUTkb0tG7LxS2FDRDcJu5IeZhD3PPmv4L17n0XJo9Z /aoYoMyeIUOu1OCzbX4wqbLo/z/Y70hJL17+EB2oZpO4OUQXNBvIMVl6es4AJQYZ CiogYOcz656LLS9Z3vPjM1Nk6MT/Xgi3M22phbXtTuwFhLkPMISzWhcbEG0INlH9 S164Y3+xpWd8ffPDgbH+iUfBeaFpGIfiDL8+v2nlOAjNl4iQTYB93Qsp9WNp36mx ALy7Sm2GAwTXnRxVtXG0wz7KjsXfPSs7iyQVYh4s8JqbKtBbM4Ql8enpfzh71Y4I +r+vyfVnn6kZWCLgaMEylSSLxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAZr7k0r N3B/FjMnUIhJCxJfcehMMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzIxOUM2RUVB QzhGMTFFRjg0QkMyNzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpkwDQYJKoZIhvcNAQELBQADggEBAKJR78vPoAoYC0qB Q7t0ukcKhY7gQctubFEymC7lL4g0qmwYiPJ2Z41JcnuXz7Pul79ZalOsBMd/BCC3 fpaLoWMTkODEEukqsHiryHxoOe163d1BlsLwzs3W2vCwFekTm85uLvuda1AcNfIZ rI0CiEq9oPedGgnAuRIJNF4y/J4eII+BCohC6lJvmlW2XNfYifFmzbYk6C7lNWTL c//mHmBqo65F+MXJOsIQfRz+PpVe7bjA2+QGduDEIQK2CSAdpV4G2PV0S/iJG+ce BC3TWbjv89MFsHhQqbuwcaXAxu0XMOeOWJtbYcrqqbEtBqXnmIsemW9eoe6PFc2b LS4jHHE= -----END CERTIFICATE-----Generated at Sat Apr 5 06:57:40 2025 by rpki-client