$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa File: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (raw, json) Hash identifier: cdCSroyK5NaH86UWTZp1A50DBpPNefJMH+Nhzc4lYoU= Subject key identifier: 44:03:84:93:35:81:C2:2F:4C:49:47:65:3E:44:E3:B8:D3:7C:ED:09 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 02D4 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa Signing time: Wed 31 Jan 2024 03:34:46 +0000 ROA not before: Wed 31 Jan 2024 03:34:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55520 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jan 31 03:34:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65b9bfd6-3e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fe:3f:66:86:e8:10:86:8a:df:1d:16:89:aa: b8:ef:ee:c8:5a:d2:f4:fc:9b:b5:c5:9a:b4:32:dd: 44:b8:e5:01:fd:dd:22:2f:6f:1a:15:b4:f7:14:c7: 12:38:73:6f:55:c4:fc:e9:b9:4f:67:75:27:80:e6: 9e:03:d2:21:9a:78:79:09:1d:15:ac:0a:94:1c:05: db:35:48:3c:a4:20:d9:a4:c1:4d:f8:65:f0:88:60: 54:1f:81:36:13:5e:ae:55:07:92:48:f0:07:ce:6b: 52:ee:e1:b0:7f:d1:42:7a:34:d4:c2:cd:57:3e:17: 43:21:95:2a:76:75:76:9d:00:ac:10:5d:a6:15:8d: b7:11:42:c5:e1:72:74:38:83:c1:e7:3c:8a:c4:88: 55:eb:d8:18:17:56:79:20:18:c8:cb:3f:f6:5b:68: 0c:de:26:96:33:d3:70:40:8c:51:57:26:fe:2d:0f: 12:35:8b:37:a8:c7:05:cf:4b:42:31:60:5c:22:18: c5:e1:35:72:87:27:bf:7f:3b:c3:17:31:b8:d9:a7: dd:ad:36:92:42:3a:1c:2c:e8:d3:4e:c0:ad:48:dc: 43:7c:77:0b:f7:7e:d4:29:42:ac:65:f5:b6:01:aa: 8d:f6:a4:75:89:e7:38:91:67:57:a8:8b:1c:fa:37: 40:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:03:84:93:35:81:C2:2F:4C:49:47:65:3E:44:E3:B8:D3:7C:ED:09 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption 04:a6:6d:3e:c8:9a:7e:40:5e:be:cb:b9:7d:5c:12:ef:5d:db: d2:25:fb:9d:88:77:19:bc:3f:ad:e8:4e:b6:78:d2:cd:e3:26: 0d:45:02:03:9b:24:bd:90:d8:da:9d:c8:da:27:bd:4e:07:75: 04:35:46:35:68:a8:fa:4b:f8:8c:bc:f4:6b:2e:54:f1:a3:a3: 61:54:0d:3a:bf:67:6a:58:23:6c:46:a2:b8:b0:14:02:38:eb: ee:2d:19:d8:65:5c:d1:23:1c:54:cf:9c:1e:68:a6:15:d4:75: b5:ad:6f:74:e8:36:52:88:b6:7d:26:83:8d:91:e6:50:e2:9e: 34:d2:b3:28:f4:cd:8b:87:18:9f:d7:0f:bb:b7:20:1c:59:31: 70:2d:b2:36:30:c7:14:3c:18:f6:7f:db:cd:c8:73:d6:1b:fd: 84:e1:d9:cc:f0:4f:98:7b:5b:52:b3:78:09:75:ec:7b:e0:3d: e6:73:73:d2:9b:fc:de:6c:06:8b:5f:d5:49:bb:f9:66:fc:b6: 75:65:50:13:5c:da:15:35:dd:e7:ee:f8:f8:9e:d8:d3:ae:50: 1b:b4:7d:28:eb:15:03:b7:8c:1e:1d:af:76:69:b3:55:f3:0a: 57:15:bc:79:33:47:83:6d:15:df:e4:71:07:00:82:6f:63:ca: d0:07:b0:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjQwMTMxMDMzNDQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YmZkNi0zZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2f4/ZoboEIaK3x0Wiaq47+7IWtL0/Ju1xZq0Mt1EuOUB/d0iL28aFbT3FMcS OHNvVcT86blPZ3UngOaeA9Ihmnh5CR0VrAqUHAXbNUg8pCDZpMFN+GXwiGBUH4E2 E16uVQeSSPAHzmtS7uGwf9FCejTUws1XPhdDIZUqdnV2nQCsEF2mFY23EULF4XJ0 OIPB5zyKxIhV69gYF1Z5IBjIyz/2W2gM3iaWM9NwQIxRVyb+LQ8SNYs3qMcFz0tC MWBcIhjF4TVyhye/fzvDFzG42afdrTaSQjocLOjTTsCtSNxDfHcL937UKUKsZfW2 AaqN9qR1iec4kWdXqIsc+jdAHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEQDhJM1 gcIvTElHZT5E47jTfO0JMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvN0U4NDQyQjY4 RkU1MTFFQzk0RDk4QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/xQwDQYJKoZIhvcNAQELBQADggEBAASmbT7Imn5AXr7L uX1cEu9d29Il+52Idxm8P63oTrZ40s3jJg1FAgObJL2Q2NqdyNonvU4HdQQ1RjVo qPpL+Iy89GsuVPGjo2FUDTq/Z2pYI2xGoriwFAI46+4tGdhlXNEjHFTPnB5ophXU dbWtb3ToNlKItn0mg42R5lDinjTSsyj0zYuHGJ/XD7u3IBxZMXAtsjYwxxQ8GPZ/ 283Ic9Yb/YTh2czwT5h7W1KzeAl17HvgPeZzc9Kb/N5sBotf1Um7+Wb8tnVlUBNc 2hU13efu+Pie2NOuUBu0fSjrFQO3jB4dr3Zps1XzClcVvHkzR4NtFd/kcQcAgm9j ytAHsEA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:56 2024 by rpki-client on console-fra.rpki-client.org