$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa File: 0386A52403A911EF851C9E18C4F9AE02.roa (raw, json) Hash identifier: q9mvIg7yXr7NkEfZAMvmhYcaWscxGPEr9qNcbX132og= Subject key identifier: 20:6A:BB:69:81:D3:7D:F3:6A:CC:EE:7B:68:FE:50:53:E1:AF:4B:A5 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 198E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa Signing time: Fri 26 Apr 2024 08:43:12 +0000 ROA not before: Fri 26 Apr 2024 08:43:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152582 IP address blocks: 157.20.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6542 (0x198e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 26 08:43:12 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=662b691f-19c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:04:03:16:7e:08:a2:82:11:9b:d4:54:1e:57: c9:e6:1b:95:ae:e2:e7:40:71:77:d5:38:32:85:03: 4d:47:68:b6:3a:fc:4f:a8:96:6d:d4:80:14:58:28: a0:91:ea:8a:2f:b1:85:bf:f3:e5:2d:df:95:69:6d: 33:d0:85:2d:e9:11:95:06:f1:8c:3a:9f:71:08:a5: 94:e2:00:3a:d8:e5:df:77:6c:9f:40:b4:5a:be:63: 26:1c:59:90:8b:27:0a:cf:92:e7:5b:24:f7:32:9d: 8c:fd:b5:8d:ab:6e:23:02:dd:18:ba:af:82:98:d0: 5b:01:84:7e:6e:f6:9e:b7:15:7e:cb:99:a8:33:a5: 74:a2:6f:77:b7:00:0e:8f:40:40:f6:73:6a:c6:7a: 9c:a1:bd:0b:32:f2:7d:bf:09:00:75:aa:e6:2d:52: a2:7d:c6:e2:52:06:24:31:29:5a:4d:63:66:1d:26: ff:eb:d1:3a:f8:a4:57:1f:21:a8:75:0e:d2:1e:bc: 03:30:9a:d5:82:06:41:d6:57:a8:e6:4f:8c:f4:9f: 3e:db:56:f2:34:d0:a7:68:54:8c:a2:5f:77:d5:3a: 8e:5d:fc:66:94:68:e3:61:dd:cf:e3:3e:1e:a5:b9: ee:68:c0:3e:c8:cf:53:10:5d:89:73:2a:67:b2:0f: 2d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6A:BB:69:81:D3:7D:F3:6A:CC:EE:7B:68:FE:50:53:E1:AF:4B:A5 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0386A52403A911EF851C9E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.202.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:01:81:7e:51:7a:9a:c2:19:8b:b4:9f:4c:ee:a4:b3:12:e3: b2:aa:8c:60:e3:cd:2d:cb:a7:c0:c7:d6:a3:c0:a9:02:7c:78: 2a:9a:5f:a5:85:05:e1:00:ed:2f:5d:0d:f5:ab:07:15:bb:ec: e4:76:2d:bd:75:2a:97:84:36:d7:78:97:e6:f6:21:00:92:62: cd:ce:30:0d:13:49:f4:4d:ba:62:7f:a5:1d:5b:d6:7b:e7:9b: 58:3c:8d:73:61:9d:a8:07:3f:0f:91:69:79:9b:f5:39:b7:e6: 32:01:c2:3d:65:89:7d:6e:c8:8a:29:59:32:b3:70:dd:11:38: af:d2:42:2a:60:2e:87:2e:e8:b5:0f:f7:d4:42:ef:92:79:00: a0:fb:7b:d6:a8:f7:61:a9:7d:e3:52:00:33:eb:02:db:26:54: 3b:b7:9b:eb:9d:0b:f4:64:49:a5:9b:44:4d:86:98:2e:dd:28: f8:7d:e3:bc:5a:f5:42:4f:0e:80:23:2e:71:da:0d:09:3e:0f: 17:1b:e0:e7:fb:08:e4:01:c9:f5:99:36:d3:1b:ac:2b:22:6e: 73:8c:87:04:45:81:d0:61:05:2c:53:f8:a8:52:ac:36:8e:25: bc:9a:b3:98:93:0d:27:76:eb:f5:aa:08:0e:8e:b0:e6:f1:d7: 00:f3:3e:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNDI2MDg0MzEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJiNjkxZi0xOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gQDFn4IooIRm9RUHlfJ5huVruLnQHF31TgyhQNNR2i2OvxPqJZt1IAUWCig keqKL7GFv/PlLd+VaW0z0IUt6RGVBvGMOp9xCKWU4gA62OXfd2yfQLRavmMmHFmQ iycKz5LnWyT3Mp2M/bWNq24jAt0Yuq+CmNBbAYR+bvaetxV+y5moM6V0om93twAO j0BA9nNqxnqcob0LMvJ9vwkAdarmLVKifcbiUgYkMSlaTWNmHSb/69E6+KRXHyGo dQ7SHrwDMJrVggZB1leo5k+M9J8+21byNNCnaFSMol931TqOXfxmlGjjYd3P4z4e pbnuaMA+yM9TEF2Jcypnsg8tOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCBqu2mB 033zaszue2j+UFPhr0ulMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDM4NkE1MjQw M0E5MTFFRjg1MUM5RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMowDQYJKoZIhvcNAQELBQADggEBAIwBgX5ReprCGYu0 n0zupLMS47KqjGDjzS3Lp8DH1qPAqQJ8eCqaX6WFBeEA7S9dDfWrBxW77OR2Lb11 KpeENtd4l+b2IQCSYs3OMA0TSfRNumJ/pR1b1nvnm1g8jXNhnagHPw+RaXmb9Tm3 5jIBwj1liX1uyIopWTKzcN0ROK/SQipgLocu6LUP99RC75J5AKD7e9ao92GpfeNS ADPrAtsmVDu3m+udC/RkSaWbRE2GmC7dKPh947xa9UJPDoAjLnHaDQk+Dxcb4Of7 COQByfWZNtMbrCsibnOMhwRFgdBhBSxT+KhSrDaOJbyas5iTDSd26/WqCA6OsObx 1wDzPs4= -----END CERTIFICATE-----Generated at Thu May 16 16:14:33 2024 by rpki-client on console-fra.rpki-client.org