$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa File: 255842A2EFF411EE853CC833C4F9AE02.roa (raw, json) Hash identifier: St0Nfe2F2dQzltMPivJaPsXHEdMGkKnojTPQWotC9ks= Subject key identifier: 6F:42:43:AE:DC:92:A4:A4:88:C5:3D:60:87:0A:FA:83:A8:AB:66:35 Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 02 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa Signing time: Mon 01 Apr 2024 06:50:38 +0000 ROA not before: Mon 01 Apr 2024 06:50:38 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 38203 IP address blocks: 157.20.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 08:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Apr 1 06:50:38 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660a593d-fb66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bd:9f:cb:bd:c2:ad:38:3d:0a:a2:0e:0b:c1: dd:c0:e7:b1:0d:6e:7b:09:45:69:ee:8d:2f:9e:72: 7f:93:47:bb:97:ce:af:8b:80:0b:0e:e1:e0:bb:a4: 2a:5a:cf:a3:37:ef:55:9e:e3:6f:e2:b1:17:8e:a1: 00:98:c6:80:fc:fc:a5:21:b5:12:23:38:4b:3c:67: dc:2b:7f:8f:0d:38:2a:47:ec:24:6d:1b:20:39:d3: 4c:5d:bc:41:7f:6e:b0:94:47:80:c3:7d:14:b1:79: 4a:57:fd:f8:80:68:22:f0:5b:c9:99:f1:61:3b:a0: 5e:81:66:03:93:33:d1:b7:55:36:ec:02:62:a1:28: 0b:7e:0c:50:a7:cc:5b:03:64:50:b5:0b:f4:ff:d2: e8:43:89:25:b4:fb:68:84:50:dd:59:36:81:6e:dc: 9d:96:86:94:be:07:1a:ce:8a:cf:98:5b:73:4d:74: 8b:47:4a:ba:80:f2:74:63:8b:7f:a0:de:f5:6b:8c: ff:33:b7:59:51:5c:2f:53:28:4a:0e:a1:3b:3b:14: 62:35:9a:3b:80:ff:51:7e:5d:f5:84:6f:45:c1:18: fd:bc:83:bb:e3:c4:28:7c:60:ae:50:8e:ce:48:be: 92:58:ab:7f:6e:c1:11:d3:d9:09:eb:c7:7e:79:17: f1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:42:43:AE:DC:92:A4:A4:88:C5:3D:60:87:0A:FA:83:A8:AB:66:35 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.148.0/23 Signature Algorithm: sha256WithRSAEncryption 73:fb:e4:a5:76:ff:4b:92:bf:5b:6a:1d:6c:39:51:53:e0:b1: 1e:ac:dd:a2:a6:c2:a9:18:16:13:63:7d:c8:4b:b4:35:fc:35: af:bd:24:76:77:78:6d:8f:7c:c1:cf:4c:c2:9d:5d:3d:87:df: cc:4a:00:6e:49:9e:f1:f1:4d:86:ac:58:22:f5:c2:de:ae:00: ec:25:95:d2:93:b3:7f:27:be:97:fd:c5:86:7c:9b:d4:92:9a: a1:bf:03:29:42:3a:d0:75:8c:af:ae:ff:96:fb:14:7e:4a:a9: ca:14:6b:c9:ea:2a:c8:c2:a5:61:f4:5c:98:1b:05:78:b2:70: bf:ff:7d:54:db:76:89:fb:ea:7e:fb:06:26:21:1f:86:da:8a: 47:2c:41:f1:16:3e:fd:50:4a:b2:6e:52:72:fb:2f:ce:5b:6e: d6:d3:1b:43:bc:73:b8:5d:32:99:5e:f5:e1:86:d7:74:35:25: f7:c9:20:bc:6b:36:73:4d:4d:1f:97:8e:81:11:cf:dc:ad:ae: 04:e6:3b:1e:e3:66:4b:08:26:be:4a:80:2b:1f:14:b7:e4:25: 81:31:c8:23:1d:4d:43:0a:ff:7c:3e:42:02:73:fe:01:7d:54: 14:c3:b4:36:b4:cd:d7:61:08:6b:6f:61:77:81:40:72:eb:9f: cd:45:f9:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTg1RTExMC8GA1UEBRMoNzJEMUY2NzlDOTZEMjA1QzJENDcxQzk0QTgwREVGNjBE OTExMjYxQzAeFw0yNDA0MDEwNjUwMzhaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGE1OTNkLWZiNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7vZ/LvcKtOD0Kog4Lwd3A57ENbnsJRWnujS+ecn+TR7uXzq+LgAsO4eC7pCpa z6M371We42/isReOoQCYxoD8/KUhtRIjOEs8Z9wrf48NOCpH7CRtGyA500xdvEF/ brCUR4DDfRSxeUpX/fiAaCLwW8mZ8WE7oF6BZgOTM9G3VTbsAmKhKAt+DFCnzFsD ZFC1C/T/0uhDiSW0+2iEUN1ZNoFu3J2WhpS+BxrOis+YW3NNdItHSrqA8nRji3+g 3vVrjP8zt1lRXC9TKEoOoTs7FGI1mjuA/1F+XfWEb0XBGP28g7vjxCh8YK5Qjs5I vpJYq39uwRHT2Qnrx355F/GdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUb0JDrtyS pKSIxT1ghwr6g6irZjUwHwYDVR0jBBgwFoAUctH2ecltIFwtRxyUqA3vYNkRJhww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFODVFLzVCQzEyNjdBRUZG MzExRUU5NzdDQUMzMUM0RjlBRTAyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpo dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY3RIMmVjbHRJRnd0Unh5VXFBM3ZZTmtSSmh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi8yNTU4NDJBMkVG RjQxMUVFODUzQ0M4MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UlDANBgkqhkiG9w0BAQsFAAOCAQEAc/vkpXb/S5K/W2od bDlRU+CxHqzdoqbCqRgWE2N9yEu0Nfw1r70kdnd4bY98wc9Mwp1dPYffzEoAbkme 8fFNhqxYIvXC3q4A7CWV0pOzfye+l/3Fhnyb1JKaob8DKUI60HWMr67/lvsUfkqp yhRryeoqyMKlYfRcmBsFeLJwv/99VNt2ifvqfvsGJiEfhtqKRyxB8RY+/VBKsm5S cvsvzltu1tMbQ7xzuF0ymV714YbXdDUl98kgvGs2c01NH5eOgRHP3K2uBOY7HuNm SwgmvkqAKx8Ut+QlgTHIIx1NQwr/fD5CAnP+AX1UFMO0NrTN12EIa29hd4FAcuuf zUX5HQ== -----END CERTIFICATE-----Generated at Fri May 3 10:34:08 2024 by rpki-client on console-ams.rpki-client.org