$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa File: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: iquf1jLmI/5hIALZdOdH20RZr48fjxEqckCcFT9dYVA= Subject key identifier: 0E:6B:C4:69:BE:07:A0:AD:78:F6:E4:73:EB:71:70:E0:5B:72:02:AC Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 03 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa Signing time: Wed 28 Feb 2024 02:01:36 +0000 ROA not before: Wed 28 Feb 2024 02:01:36 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134245 IP address blocks: 157.20.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Feb 28 02:01:36 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65de9400-9639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:1d:98:13:05:1d:b8:82:f7:b3:e6:0a:2e: 06:8c:4a:0a:80:b1:3a:a2:9a:dc:be:bc:4a:cb:36: c0:52:26:0d:89:1e:16:7e:26:e9:eb:94:e7:bb:99: 93:48:d5:a8:83:37:4f:81:90:fd:88:0a:9e:e9:34: e1:b6:2f:11:c9:df:26:9b:4a:3c:f9:4f:3c:b3:a3: 19:ce:26:37:f2:d5:2c:3a:e5:b1:3b:24:cc:d1:36: 8f:6f:db:9e:c8:d1:ee:3e:b8:eb:06:f0:b9:20:ef: e7:57:bd:7b:e8:5e:ae:c1:fb:d1:5c:bf:14:83:aa: 7b:57:09:58:6c:88:d8:90:ee:a6:72:c0:57:dc:34: 99:67:30:69:eb:56:cc:e3:2b:03:f2:c0:d2:c1:0f: 69:87:63:c8:58:d0:0d:aa:cd:53:13:c2:24:d4:4d: 2c:8f:af:05:9f:d0:c9:76:e5:ac:a7:bb:42:16:d1: bb:47:78:c3:38:ad:8e:93:7e:ea:8a:b0:64:65:ed: bf:ee:7d:71:01:db:d2:7a:f7:92:03:03:fb:34:45: 77:21:b0:b3:de:1a:4b:4f:15:45:10:d2:5a:ae:fa: 92:98:70:8c:62:1f:77:2f:96:82:34:03:4c:70:6a: 22:02:2f:11:d5:cb:2a:0a:a7:1a:b5:9a:a7:69:02: 90:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6B:C4:69:BE:07:A0:AD:78:F6:E4:73:EB:71:70:E0:5B:72:02:AC X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.112.0/23 Signature Algorithm: sha256WithRSAEncryption a1:34:1e:eb:6f:05:35:11:6e:6a:19:14:cc:48:9f:42:f2:2c: 76:80:18:13:fe:30:72:e3:f4:a6:18:79:c7:b2:ab:3e:fc:63: 7b:f0:f6:6c:ec:3a:3f:89:b3:68:ca:56:6d:49:0a:8a:de:55: 1a:6f:82:ba:1b:fb:1c:ae:ee:a6:74:82:8e:5d:22:23:91:32: 32:ca:e6:31:30:d6:a9:e8:77:ce:a6:82:b6:b5:cb:96:e6:78: ea:7c:44:0d:73:2b:90:a4:59:4e:d2:42:e5:2f:87:f5:7f:d8: fb:80:02:2e:33:9d:63:ee:f7:78:ab:56:3f:b9:6d:92:72:7c: 5e:3a:17:37:a8:1b:af:9c:04:48:da:6d:ed:ce:47:58:61:e8: 7b:3c:ef:36:cb:1e:74:0d:9d:6f:9f:0d:00:04:c9:c8:2b:d0: 7f:9c:dd:a3:07:6d:2b:38:f4:64:93:e8:70:33:a5:f9:22:b7: cd:a3:9f:2f:d0:e0:2e:1c:65:e9:6a:d8:50:f3:da:77:46:3d: 66:24:51:d2:86:d1:ab:1e:4c:5e:15:8f:47:1f:dd:b3:6e:fe: a7:06:6a:f5:bc:5d:1a:76:ac:57:b0:47:80:38:a0:e0:4d:e7: 20:1d:51:ba:53:89:52:3f:6a:42:5f:1e:b0:b4:f7:dd:1a:42: b2:35:d0:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzA2ODExMC8GA1UEBRMoOEIxQTgwNjVCRTg4QUE2QzFCQTNGRURCNTRFMDg3RTdE MkFEQjRERTAeFw0yNDAyMjgwMjAxMzZaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGU5NDAwLTk2MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFjB2YEwUduIL3s+YKLgaMSgqAsTqimty+vErLNsBSJg2JHhZ+JunrlOe7mZNI 1aiDN0+BkP2ICp7pNOG2LxHJ3yabSjz5TzyzoxnOJjfy1Sw65bE7JMzRNo9v257I 0e4+uOsG8Lkg7+dXvXvoXq7B+9FcvxSDqntXCVhsiNiQ7qZywFfcNJlnMGnrVszj KwPywNLBD2mHY8hY0A2qzVMTwiTUTSyPrwWf0Ml25aynu0IW0btHeMM4rY6TfuqK sGRl7b/ufXEB29J695IDA/s0RXchsLPeGktPFUUQ0lqu+pKYcIxiH3cvloI0A0xw aiICLxHVyyoKpxq1mqdpApDjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDmvEab4H oK149uRz63Fw4FtyAqwwHwYDVR0jBBgwFoAUixqAZb6Iqmwbo/7bVOCH59KttN4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMDY4L0Q3N0I5RDY2RDVD NDExRUU4OUMxOTcwREM0RjlBRTAyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRO NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXhxQVpiNklxbXdib183YlZPQ0g1OUt0dE40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC9ENzdCOUQ2NkQ1QzQxMUVFODlDMTk3MERDNEY5QUUwMi80RDY5RDJEMkQ1 REQxMUVFQTVCMUM3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UcDANBgkqhkiG9w0BAQsFAAOCAQEAoTQe628FNRFuahkU zEifQvIsdoAYE/4wcuP0phh5x7KrPvxje/D2bOw6P4mzaMpWbUkKit5VGm+Cuhv7 HK7upnSCjl0iI5EyMsrmMTDWqeh3zqaCtrXLluZ46nxEDXMrkKRZTtJC5S+H9X/Y +4ACLjOdY+73eKtWP7ltknJ8XjoXN6gbr5wESNpt7c5HWGHoezzvNssedA2db58N AATJyCvQf5zdowdtKzj0ZJPocDOl+SK3zaOfL9DgLhxl6WrYUPPad0Y9ZiRR0obR qx5MXhWPRx/ds27+pwZq9bxdGnasV7BHgDig4E3nIB1RulOJUj9qQl8esLT33RpC sjXQkA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:34 2024 by rpki-client on console-ams.rpki-client.org