$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa File: FD990E7AF0B311EE9923BC84C4F9AE02.roa (raw, json) Hash identifier: UunbX0mH3OsfQ0HkJCqaF4weWk5/aIz4Kwft7QzCBww= Subject key identifier: 4B:31:C1:5E:96:EF:F8:41:66:F2:2C:FB:89:57:F7:CC:13:09:DE:AB Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 02 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa Signing time: Tue 02 Apr 2024 05:43:54 +0000 ROA not before: Tue 02 Apr 2024 05:43:54 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152604 IP address blocks: 157.20.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Apr 2 05:43:54 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660b9b1a-a4ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:2b:76:4e:f3:69:9a:62:a2:6b:ba:f1:4c: 47:d2:26:f5:12:19:6d:db:e9:f7:09:8b:6c:79:3f: 58:da:31:83:55:e5:9c:2b:dd:48:2d:bc:0a:c5:3b: cd:75:80:fb:97:f5:0d:af:d2:b2:72:5a:5c:7e:0e: 8c:86:fd:95:be:60:f2:86:2f:bd:cd:ba:71:1c:d4: c9:9f:2e:28:92:57:56:36:d2:f5:85:b8:75:ed:1a: 56:35:95:1c:75:1f:16:12:2e:8b:25:30:22:b1:61: 61:88:3a:d9:93:71:34:22:a7:b9:30:05:30:d3:62: 68:97:fc:8a:c4:28:9d:06:8d:a7:1e:ad:fb:b6:16: 4e:cc:82:f0:be:af:c8:a7:4c:79:fd:90:59:6d:c9: a2:d8:0f:7b:e2:a3:e9:b3:f6:b2:30:d7:5a:2d:17: d4:60:cb:5e:57:0d:ec:05:ff:9d:95:08:ec:d0:05: 25:6a:51:af:ad:9d:48:16:7b:50:3e:a9:46:9a:ad: a0:8e:24:03:f2:9c:b5:09:4c:0e:b3:ce:4b:f3:7b: 20:8c:65:d5:b6:57:a4:d2:65:9d:65:94:87:87:51: 45:8c:44:32:32:0c:cb:72:46:a4:34:30:b8:d7:91: 91:f3:4a:4f:2b:85:99:44:17:42:3c:f4:95:ea:6b: 07:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:31:C1:5E:96:EF:F8:41:66:F2:2C:FB:89:57:F7:CC:13:09:DE:AB X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.140.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:3b:67:cd:60:62:fe:87:67:75:ee:8f:ec:90:dc:ad:6f:19: d4:e9:f6:12:58:1b:e5:d5:c8:98:95:e6:4d:eb:52:90:38:17: a3:06:93:d8:29:ec:1c:13:ac:09:0e:bc:ae:32:c3:f6:f6:32: 8d:2a:17:21:20:f6:83:e9:0f:95:13:05:6d:24:a3:de:04:b1: f7:f1:ee:f4:98:2e:6b:ed:38:c9:d4:1b:d1:1c:44:9d:85:c3: 26:94:cf:8e:58:69:1e:d3:5f:af:1c:7c:28:d7:46:2c:cf:5b: 7c:50:60:32:a4:b8:50:22:c2:32:99:79:39:4e:39:c6:68:86: 07:c9:a5:2a:66:40:ac:1f:7e:d5:a6:59:42:4e:70:5b:fa:73: 57:28:5c:25:27:5b:6a:9a:8e:30:69:91:7f:a5:9b:cd:b9:45: b5:d6:a4:f2:a9:d9:e1:0c:1b:85:07:f7:a9:f9:51:af:6c:82: 35:80:6a:31:a1:d1:e1:92:59:5d:62:f6:52:d9:f6:45:c6:8b: 8f:47:b1:8e:7b:46:e1:4a:da:c2:c6:2e:db:0a:7a:ae:6d:a0: 3e:02:7e:62:c1:6c:e3:db:57:fd:c6:91:e9:ea:76:b6:3f:29: 80:0a:d4:55:f3:69:8e:ed:7b:20:db:15:df:dc:f3:fd:91:27: 2f:c4:1a:c2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTg4MjExMC8GA1UEBRMoNUJDNDk0RTg5RDBBNDE1NUI1NTI1MzYzRDEyMzVDNUVE QzBGREUyRjAeFw0yNDA0MDIwNTQzNTRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGI5YjFhLWE0YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Lyt2TvNpmmKia7rxTEfSJvUSGW3b6fcJi2x5P1jaMYNV5Zwr3UgtvArFO811 gPuX9Q2v0rJyWlx+DoyG/ZW+YPKGL73NunEc1MmfLiiSV1Y20vWFuHXtGlY1lRx1 HxYSLoslMCKxYWGIOtmTcTQip7kwBTDTYmiX/IrEKJ0Gjacerfu2Fk7MgvC+r8in THn9kFltyaLYD3vio+mz9rIw11otF9Rgy15XDewF/52VCOzQBSVqUa+tnUgWe1A+ qUaaraCOJAPynLUJTA6zzkvzeyCMZdW2V6TSZZ1llIeHUUWMRDIyDMtyRqQ0MLjX kZHzSk8rhZlEF0I89JXqaweJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSzHBXpbv +EFm8iz7iVf3zBMJ3qswHwYDVR0jBBgwFoAUW8SU6J0KQVW1UlNj0SNcXtwP3i8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxODgyL0E4QzI1MUVBRjBC MzExRUVBNEM3MkY4NEM0RjlBRTAyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNp OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVzhTVTZKMEtRVlcxVWxOajBTTmNYdHdQM2k4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9BOEMyNTFFQUYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9GRDk5MEU3QUYw QjMxMUVFOTkyM0JDODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UjDANBgkqhkiG9w0BAQsFAAOCAQEAbjtnzWBi/odnde6P 7JDcrW8Z1On2Elgb5dXImJXmTetSkDgXowaT2CnsHBOsCQ68rjLD9vYyjSoXISD2 g+kPlRMFbSSj3gSx9/Hu9Jgua+04ydQb0RxEnYXDJpTPjlhpHtNfrxx8KNdGLM9b fFBgMqS4UCLCMpl5OU45xmiGB8mlKmZArB9+1aZZQk5wW/pzVyhcJSdbapqOMGmR f6WbzblFtdak8qnZ4QwbhQf3qflRr2yCNYBqMaHR4ZJZXWL2Utn2RcaLj0exjntG 4UrawsYu2wp6rm2gPgJ+YsFs49tX/caR6ep2tj8pgArUVfNpju17INsV39zz/ZEn L8Qawg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org