$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa File: D161B1F0EA0411EE98A86A13C4F9AE02.roa (raw, json) Hash identifier: f2pihyA1YpP2RflE8vg3Re0S4oO3efRwgxKNq8an+xI= Subject key identifier: 63:DD:0C:4B:07:A0:A0:DE:9C:F8:2E:F9:3E:98:1C:57:7B:B8:03:8F Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 02 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa Signing time: Sun 24 Mar 2024 17:34:51 +0000 ROA not before: Sun 24 Mar 2024 17:34:51 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152593 IP address blocks: 157.20.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Mar 24 17:34:51 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6600643b-8e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b2:3d:53:65:cd:32:9a:2d:ab:4e:98:31:6f: a9:e3:f6:ce:00:af:76:98:a0:20:cc:df:86:61:75: 7f:c2:a1:87:a6:ac:51:2c:94:c2:fa:61:4e:f5:3a: 89:5e:82:50:8f:cd:33:05:9c:b4:2c:71:f8:10:d4: 92:e6:e0:62:a2:83:b4:49:45:b5:c6:d2:07:49:ec: 53:a0:2a:1a:36:7a:0c:a5:84:f7:4e:9a:19:f5:3c: 57:3a:81:44:0c:9a:f1:ac:cb:b5:d8:a4:0c:46:71: c7:8e:13:c5:c0:27:ab:11:16:ef:6b:ed:9a:61:c3: 19:3e:d0:28:f2:8e:fa:91:6f:8a:fa:10:c0:f1:98: 94:87:a7:1e:64:76:52:c2:67:df:2d:dd:db:67:cd: 9b:4f:e0:09:b4:ec:52:19:4d:c0:7f:27:83:c8:13: 44:e3:61:1f:77:67:91:99:5d:7e:c8:4b:39:20:df: 29:1d:d6:74:83:ac:c6:30:0c:a5:1a:51:84:50:17: fa:1f:af:d2:78:72:23:57:8f:fc:00:37:79:2d:cc: 13:56:d7:a0:92:57:e9:01:97:06:ff:c1:54:95:2d: 26:9f:db:a4:a1:0b:fa:5a:48:38:1d:28:c7:7a:43: 37:0e:0f:07:bc:8d:fc:be:8d:52:ca:a1:bf:d3:0a: 42:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DD:0C:4B:07:A0:A0:DE:9C:F8:2E:F9:3E:98:1C:57:7B:B8:03:8F X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.116.0/23 Signature Algorithm: sha256WithRSAEncryption 62:76:bb:16:47:a0:83:93:1a:58:8f:7f:59:2a:12:bf:0a:cd: e8:6a:72:f2:bf:99:b3:dd:ed:f5:e3:e9:95:1d:8b:94:b0:89: 07:89:6a:10:ca:6a:dd:78:72:da:4a:38:bb:7b:d2:62:64:dd: cf:74:66:0d:37:b4:e2:3e:7c:e8:34:17:36:be:cf:8f:b7:83: 34:d0:f2:36:92:33:53:52:ca:56:b8:ce:fb:6e:fe:dc:a3:18: ec:d1:ec:79:c0:51:41:b3:14:f7:e9:b7:fc:2c:9a:cc:78:8c: 44:80:cc:6e:2c:a6:dd:4d:05:75:2a:92:a6:61:e7:df:5a:cf: f9:52:1f:57:d7:8d:d9:8c:1c:a8:f9:27:ef:2e:27:cd:64:7f: 52:74:1c:d9:a1:70:bb:66:34:c9:d1:10:27:0d:b7:09:0b:8d: 3e:18:fc:94:ec:41:e5:f5:b2:61:97:b2:2f:6f:75:77:69:c1: cf:c7:64:d1:6a:b3:d0:a3:10:21:cf:43:10:db:02:78:ec:64: 9b:09:e0:46:4d:a1:33:da:a4:a5:fe:1d:8c:c9:5b:8b:2a:f2: a4:18:36:b1:41:d0:2e:06:a6:8d:08:2d:d6:ee:9e:eb:6d:6e: 2a:60:c3:6f:12:6c:6b:af:4a:2d:31:fb:16:cf:48:d7:a1:1c: 4b:fd:18:35 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Q0ZBRDExMC8GA1UEBRMoNUUyMzM5RDFFQUFGNTM0OUExMzhBNDc5N0RBODJEMEVC NERGQTlFQzAeFw0yNDAzMjQxNzM0NTFaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDA2NDNiLThlNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRsj1TZc0ymi2rTpgxb6nj9s4Ar3aYoCDM34ZhdX/CoYemrFEslML6YU71Oole glCPzTMFnLQscfgQ1JLm4GKig7RJRbXG0gdJ7FOgKho2egylhPdOmhn1PFc6gUQM mvGsy7XYpAxGcceOE8XAJ6sRFu9r7Zphwxk+0CjyjvqRb4r6EMDxmJSHpx5kdlLC Z98t3dtnzZtP4Am07FIZTcB/J4PIE0TjYR93Z5GZXX7ISzkg3ykd1nSDrMYwDKUa UYRQF/ofr9J4ciNXj/wAN3ktzBNW16CSV+kBlwb/wVSVLSaf26ShC/paSDgdKMd6 QzcODwe8jfy+jVLKob/TCkKLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUY90MSweg oN6c+C75PpgcV3u4A48wHwYDVR0jBBgwFoAUXiM50eqvU0mhOKR5fagtDrTfqeww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDRkFELzRDOTAwRjFDRUEw NDExRUU5MkQxMDYxMUM0RjlBRTAyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFl dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGlNNTBlcXZVMG1oT0tSNWZhZ3REclRmcWV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9EMTYxQjFGMEVB MDQxMUVFOThBODZBMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UdDANBgkqhkiG9w0BAQsFAAOCAQEAYna7Fkegg5MaWI9/ WSoSvwrN6Gpy8r+Zs93t9ePplR2LlLCJB4lqEMpq3Xhy2ko4u3vSYmTdz3RmDTe0 4j586DQXNr7Pj7eDNNDyNpIzU1LKVrjO+27+3KMY7NHsecBRQbMU9+m3/CyazHiM RIDMbiym3U0FdSqSpmHn31rP+VIfV9eN2YwcqPkn7y4nzWR/UnQc2aFwu2Y0ydEQ Jw23CQuNPhj8lOxB5fWyYZeyL291d2nBz8dk0Wqz0KMQIc9DENsCeOxkmwngRk2h M9qkpf4djMlbiyrypBg2sUHQLgamjQgt1u6e621uKmDDbxJsa69KLTH7Fs9I16Ec S/0YNQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:20 2024 by rpki-client on console-ams.rpki-client.org