$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A693ED6306D11EF92B63C23C4F9AE02.roa File: 2A693ED6306D11EF92B63C23C4F9AE02.roa (raw, json) Hash identifier: jmA3b4HHwtRHk8mq9Cxg43AB5H2h/+4fKxXxtFTqyxA= Subject key identifier: 15:F5:35:1F:31:B7:79:CC:DF:09:EB:FD:73:63:CE:7B:A3:5E:A4:02 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9305 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A693ED6306D11EF92B63C23C4F9AE02.roa Signing time: Sat 22 Jun 2024 07:58:10 +0000 ROA not before: Sat 22 Jun 2024 07:58:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135266 IP address blocks: 157.119.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37637 (0x9305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 22 07:58:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66768411-1e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f8:00:e9:eb:fd:eb:31:3c:9e:37:2c:8b:c5: 01:f1:ff:08:5e:9f:f8:d0:f0:af:43:e0:b7:b5:33: 30:77:81:bb:3f:b9:32:41:13:ac:60:99:f3:10:01: f3:eb:d8:f1:d2:84:ae:3c:45:c6:08:9b:ec:d4:b8: 93:b6:ed:c0:21:02:d3:ec:be:8b:58:a9:18:5e:4f: ec:83:8f:98:82:92:71:d0:c3:1d:a1:7e:00:3a:c0: d5:c6:aa:6d:15:44:a7:64:76:bb:79:34:fd:b9:3f: bc:c3:73:ad:28:3c:54:3f:01:7e:00:a3:5a:72:d8: 70:fb:9d:e0:86:3a:7d:d3:dc:bf:5c:57:56:26:f2: 6e:3c:51:53:fb:6a:97:3c:45:c2:3d:fa:93:6a:3a: 48:1d:b2:2a:6d:ac:0f:dd:f1:28:a6:f6:4f:46:df: d3:7c:e0:fc:ac:96:7e:65:24:97:d8:f7:bf:b9:e5: a1:9b:c9:2b:36:59:ae:d7:57:78:c0:23:36:e1:47: ff:42:3e:a8:c3:d0:7b:81:0f:dd:c5:ed:de:38:9b: 3f:8f:00:f5:22:13:0e:52:ca:c0:aa:64:39:83:fa: 68:85:66:72:7f:16:8f:8d:74:0c:35:35:19:58:ba: fa:45:d5:1e:81:3b:a7:45:ed:4c:2b:86:b9:8e:cb: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F5:35:1F:31:B7:79:CC:DF:09:EB:FD:73:63:CE:7B:A3:5E:A4:02 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A693ED6306D11EF92B63C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.117.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:f6:37:ac:c1:2b:06:b8:e5:78:ac:bc:5e:6e:16:62:c5:b7: cb:a1:b7:bc:fc:02:4f:da:56:f2:79:d4:b0:bf:e2:52:1d:ad: f3:7c:3b:86:d0:1a:a3:33:a6:8d:3e:d7:b4:bb:17:a9:7d:4c: 23:30:48:fb:c4:d8:83:e3:98:25:66:34:7b:9f:e7:2f:7f:77: d9:40:40:75:2d:3d:96:42:15:e2:a4:6e:10:bc:6f:8a:84:4b: 40:dd:9e:bc:86:04:9f:46:03:81:77:2d:22:c1:e9:c6:f3:d7: 4b:60:45:3d:af:0a:93:19:55:7f:7c:75:ae:6f:d5:d1:51:9a: 45:89:3e:ba:00:89:f5:66:62:20:79:97:07:18:8e:53:b0:32: a6:d0:61:10:b0:2f:dc:70:24:6f:59:8c:6c:ad:91:39:59:7d: a7:08:40:db:f8:3f:43:8a:ce:0d:17:7c:81:52:8c:b7:ed:82: 4a:ea:7d:15:ea:a6:56:3e:fa:09:67:a3:10:dd:19:ba:79:b1: a8:86:28:e5:0d:37:06:21:f6:da:4c:28:26:b0:12:4e:0f:a1: 1e:b3:c1:2c:dc:09:40:c6:78:5d:a7:01:15:ee:fc:fd:83:19: da:1c:9a:4c:37:f5:88:ab:64:32:6c:6c:48:d6:c7:53:15:06: db:8f:95:44 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJMFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDYyMjA3NTgxMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY3Njg0MTEtMWUzZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM34AOnr/esxPJ43LIvFAfH/CF6f+NDwr0Pgt7UzMHeBuz+5MkETrGCZ8xAB 8+vY8dKErjxFxgib7NS4k7btwCEC0+y+i1ipGF5P7IOPmIKScdDDHaF+ADrA1caq bRVEp2R2u3k0/bk/vMNzrSg8VD8BfgCjWnLYcPud4IY6fdPcv1xXVibybjxRU/tq lzxFwj36k2o6SB2yKm2sD93xKKb2T0bf03zg/KyWfmUkl9j3v7nloZvJKzZZrtdX eMAjNuFH/0I+qMPQe4EP3cXt3jibP48A9SITDlLKwKpkOYP6aIVmcn8Wj410DDU1 GVi6+kXVHoE7p0XtTCuGuY7LIscCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQV9TUf Mbd5zN8J6/1zY857o16kAjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJBNjkzRUQ2 MzA2RDExRUY5MkI2M0MyM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAnXd1MA0GCSqGSIb3DQEBCwUAA4IBAQA/9jeswSsGuOV4 rLxebhZixbfLobe8/AJP2lbyedSwv+JSHa3zfDuG0BqjM6aNPte0uxepfUwjMEj7 xNiD45glZjR7n+cvf3fZQEB1LT2WQhXipG4QvG+KhEtA3Z68hgSfRgOBdy0iwenG 89dLYEU9rwqTGVV/fHWub9XRUZpFiT66AIn1ZmIgeZcHGI5TsDKm0GEQsC/ccCRv WYxsrZE5WX2nCEDb+D9Dis4NF3yBUoy37YJK6n0V6qZWPvoJZ6MQ3Rm6ebGohijl DTcGIfbaTCgmsBJOD6Ees8Es3AlAxnhdpwEV7vz9gxnaHJpMN/WIq2QybGxI1sdT FQbbj5VE -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:32 2024 by rpki-client on console-fra.rpki-client.org