$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa File: ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa (raw, json) Hash identifier: 7KeTZX545IABA5t2arvNc6G1Z+gSO4ocpijqenr2MLo= Subject key identifier: 6D:14:A2:12:8F:9A:8E:1B:75:AD:C9:81:DF:34:23:B7:78:F4:2A:38 Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: 04 Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa Signing time: Sat 17 Feb 2024 19:06:36 +0000 ROA not before: Sat 17 Feb 2024 19:06:36 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 139901 IP address blocks: 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Validity Not Before: Feb 17 19:06:36 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d103bc-06aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:be:e5:e2:5d:f7:db:88:a0:79:f4:3f:19: 23:26:47:6d:20:73:63:e2:61:a9:9c:7a:80:c3:e2: 0c:fb:6e:f4:4a:0e:f9:96:8d:1a:c8:1a:ab:ff:99: 05:a5:89:1e:f9:e6:59:33:cf:29:d6:f9:8e:d9:f9: 71:3c:d8:21:91:72:e4:0a:bc:2f:6c:f1:e2:d3:d4: a5:a3:ab:fd:aa:26:d1:b9:5e:48:10:ab:4f:c9:f9: 73:d9:3e:15:8a:7d:8d:67:92:b7:8e:99:a0:ec:2a: ea:64:75:f6:20:aa:2f:c6:88:07:25:36:03:36:f6: 73:70:84:1a:3c:3b:0e:b7:9f:c9:3b:bf:3e:c4:85: e1:0f:09:a6:f7:22:34:5b:b1:a5:49:0f:f3:62:29: 97:71:02:4c:29:95:1f:59:81:fa:73:c6:6c:a6:ef: 6a:d4:4b:24:4d:ab:14:04:e9:02:d0:dd:27:53:50: c4:91:ad:3d:f1:a8:44:7f:44:e7:a9:a8:db:73:2f: be:6f:1f:24:e4:c5:32:c8:9c:c6:36:4b:a2:e7:3d: b1:ff:42:24:22:a8:e1:83:50:38:74:c3:fc:66:5a: 84:8b:8f:98:a7:8c:f3:5d:0b:0b:00:de:0a:fa:f8: ba:9d:b5:11:29:85:b2:64:5d:31:bb:dc:79:4c:1b: f5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:14:A2:12:8F:9A:8E:1B:75:AD:C9:81:DF:34:23:B7:78:F4:2A:38 X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.43.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:a7:a8:5d:66:e8:45:cc:b0:62:9a:8c:1b:6e:a9:7d:e5:49: ac:7c:79:db:47:e7:7a:39:d2:7d:ac:df:42:d1:7a:ee:21:36: 6b:7c:6d:4b:7c:bc:b8:1a:5e:27:b9:f1:86:cc:fa:4e:ef:07: eb:12:a8:56:ae:d8:2a:8b:ac:44:d8:ce:7a:36:84:c0:73:6b: e9:1c:d6:b4:0b:ad:2c:38:d5:36:96:f6:21:9d:91:91:e0:6f: f7:0c:5f:6b:00:67:18:4a:6a:cd:c3:f9:01:99:7e:00:25:fd: 32:98:1a:fb:78:14:c1:d9:0d:b7:f9:82:c3:76:a9:d7:26:f6: 57:8e:27:62:e9:3e:80:dc:d8:ff:16:9b:ee:31:8f:3a:49:02: 72:b9:ba:d8:d0:b9:fb:98:22:27:4a:16:e3:4d:86:83:db:d7: c4:73:e8:67:c0:dc:4d:fd:3a:21:0e:26:09:61:49:d5:7d:83: 94:ca:f5:d7:02:e6:8c:7b:43:3b:8f:74:58:85:61:0b:37:44: 1e:fc:5b:07:ef:1c:2f:32:cb:b0:3d:18:f2:59:d7:66:d9:7e: bb:04:13:51:b1:53:16:b9:eb:ec:7b:12:79:5f:6e:55:5a:2a: 2d:15:d1:b3:0b:e2:a6:7a:91:4d:21:90:f6:43:7c:fc:d7:24: af:9b:fb:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjRCRTExMC8GA1UEBRMoN0IxRkIxQkEzQjBFQzhDQTVFNUMxM0FFQkNGQzZFQkE4 RDIwRUFBNzAeFw0yNDAyMTcxOTA2MzZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDEwM2JjLTA2YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUnL7l4l3324igefQ/GSMmR20gc2PiYamceoDD4gz7bvRKDvmWjRrIGqv/mQWl iR755lkzzynW+Y7Z+XE82CGRcuQKvC9s8eLT1KWjq/2qJtG5XkgQq0/J+XPZPhWK fY1nkreOmaDsKupkdfYgqi/GiAclNgM29nNwhBo8Ow63n8k7vz7EheEPCab3IjRb saVJD/NiKZdxAkwplR9Zgfpzxmym72rUSyRNqxQE6QLQ3SdTUMSRrT3xqER/ROep qNtzL75vHyTkxTLInMY2S6LnPbH/QiQiqOGDUDh0w/xmWoSLj5injPNdCwsA3gr6 +LqdtREphbJkXTG73HlMG/XVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbRSiEo+a jht1rcmB3zQjt3j0KjgwHwYDVR0jBBgwFoAUex+xujsOyMpeXBOuvPxuuo0g6qcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNEJFLzZGMkZEMzM4Q0NG NzExRUU5RTg5RDY3QUM0RjlBRTAyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZXgteHVqc095TXBlWEJPdXZQeHV1bzBnNnFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjRCRS82RjJGRDMzOENDRjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi9BQkNDRUJCNkNE QzcxMUVFOEEyNjJDNEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0UKzANBgkqhkiG9w0BAQsFAAOCAQEAD6eoXWboRcywYpqM G26pfeVJrHx520fnejnSfazfQtF67iE2a3xtS3y8uBpeJ7nxhsz6Tu8H6xKoVq7Y KousRNjOejaEwHNr6RzWtAutLDjVNpb2IZ2RkeBv9wxfawBnGEpqzcP5AZl+ACX9 Mpga+3gUwdkNt/mCw3ap1yb2V44nYuk+gNzY/xab7jGPOkkCcrm62NC5+5giJ0oW 402Gg9vXxHPoZ8DcTf06IQ4mCWFJ1X2DlMr11wLmjHtDO490WIVhCzdEHvxbB+8c LzLLsD0Y8lnXZtl+uwQTUbFTFrnr7HsSeV9uVVoqLRXRswvipnqRTSGQ9kN8/Nck r5v7+g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org