$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/13CA64E4C35B11EFA021A243C4F9AE02.roa File: 13CA64E4C35B11EFA021A243C4F9AE02.roa (raw, json) Hash identifier: 5MI/dy3CeBu3c0y6kiNTHQ5dzZw6aaKk/qPjJ9yJYEs= Subject key identifier: 56:C1:1E:08:49:20:70:E7:1B:BE:E3:B5:6C:90:89:58:DD:15:4E:65 Certificate issuer: /CN=A9135F07/serialNumber=4F9EFD43BA79A349455109DB200845A8908CDC5C Certificate serial: 04 Authority key identifier: 4F:9E:FD:43:BA:79:A3:49:45:51:09:DB:20:08:45:A8:90:8C:DC:5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T579Q7p5o0lFUQnbIAhFqJCM3Fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/13CA64E4C35B11EFA021A243C4F9AE02.roa Signing time: Thu 26 Dec 2024 09:21:58 +0000 ROA not before: Thu 26 Dec 2024 09:21:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 131331 IP address blocks: 157.20.40.0/24 maxlen: 24 157.20.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/T579Q7p5o0lFUQnbIAhFqJCM3Fw.crl rsync://rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/T579Q7p5o0lFUQnbIAhFqJCM3Fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T579Q7p5o0lFUQnbIAhFqJCM3Fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F07 Validity Not Before: Dec 26 09:21:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=676d2036-b963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:59:c4:b3:7e:3f:23:c9:f1:33:15:5e:63:a2: 89:f5:48:f4:ec:10:ee:34:a2:71:76:f8:fc:d4:7c: b6:a7:7b:f5:4e:15:50:f3:1c:10:15:42:11:11:9d: 85:ea:73:24:6f:ed:fc:59:0f:82:33:71:96:14:3a: f9:5d:55:dd:61:d4:2f:fe:6a:e2:f8:65:2e:02:44: 09:02:09:94:64:42:c3:87:31:d4:19:47:5f:03:dd: 76:bf:26:73:0f:2a:cc:f6:1a:1a:06:ec:ed:05:ba: 23:17:97:0a:b6:3f:36:97:1b:50:91:d2:8d:ac:f4: e9:7e:ae:83:4a:52:0c:20:04:55:c3:0e:fc:d7:7c: 6e:2d:94:f4:9c:68:8f:93:5e:73:96:fc:19:2d:e7: a4:1f:91:76:2c:e0:3b:32:9e:0b:24:fa:e7:52:b9: a2:f4:1a:f9:a7:d0:fb:ad:15:58:fa:b9:50:5e:61: 42:86:f0:63:87:28:6f:7c:a4:e7:b5:73:ad:c0:4a: 85:f2:e8:82:89:74:66:0e:70:94:00:d8:7c:d5:78: 25:25:c1:b7:0b:ca:b3:02:80:71:69:38:62:ca:0f: 89:27:ce:50:1d:85:33:2c:46:89:6a:a8:e2:0c:0a: 16:6c:c0:b0:58:25:a6:b7:e1:0f:6a:0f:5f:75:f1: cf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C1:1E:08:49:20:70:E7:1B:BE:E3:B5:6C:90:89:58:DD:15:4E:65 X509v3 Authority Key Identifier: keyid:4F:9E:FD:43:BA:79:A3:49:45:51:09:DB:20:08:45:A8:90:8C:DC:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/T579Q7p5o0lFUQnbIAhFqJCM3Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T579Q7p5o0lFUQnbIAhFqJCM3Fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F07/2F722A98C35A11EF8314C43FC4F9AE02/13CA64E4C35B11EFA021A243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.40.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:a2:2d:46:a8:f0:64:2a:e2:bd:00:c9:25:ce:57:9d:a7:6f: 9d:19:1d:b8:ae:8b:6c:e8:ac:05:11:25:c9:52:1c:ec:6a:4b: 3a:e7:0b:f7:23:1e:6a:d3:10:fb:91:97:09:81:75:56:80:a3: 3f:94:da:3d:69:8c:54:4d:8c:6f:8c:33:6d:32:9c:ca:63:9e: be:d2:44:14:5a:75:ec:ea:11:ae:d3:1b:3e:c5:01:82:dc:b9: e7:95:a8:ce:18:2a:97:af:89:d2:6f:a2:3d:1d:29:9c:fb:20: 7e:9a:67:6a:af:06:5b:38:e7:54:80:47:cf:43:0f:26:8f:56: 57:60:f4:d0:44:0e:ed:c7:04:0f:c1:74:c7:01:70:9d:67:4c: 8c:9c:eb:0f:c3:15:23:d4:ab:04:d9:c2:02:05:e2:19:92:2e: 6a:29:26:a7:f7:f9:8e:63:c7:b9:f4:25:f7:30:10:32:31:fb: 7c:f4:3f:01:19:77:dc:46:ba:43:15:fd:0c:1a:b1:7a:41:4f: 31:4b:87:32:d9:e5:98:a1:94:10:e8:8b:b5:00:f7:f7:52:6c: 94:be:9a:e4:4d:87:ef:fa:06:82:60:d1:a6:2c:f2:79:9b:02: b9:72:b6:43:fd:29:84:c1:bd:3f:5c:7c:0b:06:0c:fe:75:7e: 44:7b:0c:8a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUYwNzExMC8GA1UEBRMoNEY5RUZENDNCQTc5QTM0OTQ1NTEwOURCMjAwODQ1QTg5 MDhDREM1QzAeFw0yNDEyMjYwOTIxNThaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmQyMDM2LWI5NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0WcSzfj8jyfEzFV5joon1SPTsEO40onF2+PzUfLane/VOFVDzHBAVQhERnYXq cyRv7fxZD4IzcZYUOvldVd1h1C/+auL4ZS4CRAkCCZRkQsOHMdQZR18D3Xa/JnMP Ksz2GhoG7O0FuiMXlwq2PzaXG1CR0o2s9Ol+roNKUgwgBFXDDvzXfG4tlPScaI+T XnOW/Bkt56QfkXYs4Dsyngsk+udSuaL0Gvmn0PutFVj6uVBeYUKG8GOHKG98pOe1 c63ASoXy6IKJdGYOcJQA2HzVeCUlwbcLyrMCgHFpOGLKD4knzlAdhTMsRolqqOIM ChZswLBYJaa34Q9qD1918c9vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVsEeCEkg cOcbvuO1bJCJWN0VTmUwHwYDVR0jBBgwFoAUT579Q7p5o0lFUQnbIAhFqJCM3Fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1RjA3LzJGNzIyQTk4QzM1 QTExRUY4MzE0QzQzRkM0RjlBRTAyL1Q1NzlRN3A1bzBsRlVRbmJJQWhGcUpDTTNG dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVDU3OVE3cDVvMGxGVVFuYklBaEZxSkNNM0Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwNy8yRjcyMkE5OEMzNUExMUVGODMxNEM0M0ZDNEY5QUUwMi8xM0NBNjRFNEMz NUIxMUVGQTAyMUEyNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UKDANBgkqhkiG9w0BAQsFAAOCAQEAXqItRqjwZCrivQDJ Jc5XnadvnRkduK6LbOisBRElyVIc7GpLOucL9yMeatMQ+5GXCYF1VoCjP5TaPWmM VE2Mb4wzbTKcymOevtJEFFp17OoRrtMbPsUBgty555Wozhgql6+J0m+iPR0pnPsg fppnaq8GWzjnVIBHz0MPJo9WV2D00EQO7ccED8F0xwFwnWdMjJzrD8MVI9SrBNnC AgXiGZIuaikmp/f5jmPHufQl9zAQMjH7fPQ/ARl33Ea6QxX9DBqxekFPMUuHMtnl mKGUEOiLtQD391JslL6a5E2H7/oGgmDRpizyeZsCuXK2Q/0phMG9P1x8CwYM/nV+ RHsMig== -----END CERTIFICATE-----Generated at Wed Feb 5 22:46:24 2025 by rpki-client