$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa File: 2520E06EDC4911EEA18D6172C4F9AE02.roa (raw, json) Hash identifier: W1Cvoafk9vOHHgI+Nx1ce5t/DaD9MbR9bHF1afrGX5U= Subject key identifier: C9:6B:F7:58:B1:AC:8A:52:6E:33:21:53:F7:42:8A:0E:B5:59:6B:63 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1919 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa Signing time: Thu 07 Mar 2024 06:08:41 +0000 ROA not before: Thu 07 Mar 2024 06:08:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152484 IP address blocks: 157.20.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6425 (0x1919) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Mar 7 06:08:41 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e959e9-d0e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:06:a8:3c:75:dc:7e:74:db:db:c9:fd:5f:7c: 81:9b:31:25:6d:ad:33:26:62:76:f6:65:4f:cf:33: 43:43:6b:7b:0a:29:a3:f3:f8:09:56:d9:62:7d:84: 86:0f:a5:1d:65:db:55:b1:b3:75:79:49:6b:72:8a: c8:a3:21:25:e3:96:a2:91:55:3d:e0:1b:9b:3a:8c: 6a:98:91:41:73:f0:b3:a7:67:79:1c:1b:08:0c:f4: 4e:57:83:60:b8:36:47:5b:14:8c:5e:7c:b3:2c:1f: 71:bc:31:56:01:5a:60:8a:17:b9:73:64:4a:f5:03: ed:71:1c:af:75:84:e5:79:00:ab:94:94:50:11:73: fb:99:11:87:cc:77:f0:09:a0:4d:3f:e5:dc:c4:0d: fd:9b:58:92:3c:82:19:95:d0:3b:85:16:79:b0:61: 14:3c:24:41:5c:1e:0e:15:70:c5:79:12:14:22:2a: 6f:8b:01:13:88:bf:d0:b2:db:d7:55:fe:93:8f:c4: a0:76:b0:30:42:84:6a:1f:a9:99:c2:21:6f:41:28: 47:00:fc:14:19:c8:7b:3c:30:c2:7c:b3:77:e6:d8: 07:27:6c:87:3e:70:db:04:43:5a:1e:c8:9a:12:b5: 30:e7:a2:2c:b5:23:7c:4e:3a:c6:f0:1f:c6:d0:ae: 4f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6B:F7:58:B1:AC:8A:52:6E:33:21:53:F7:42:8A:0E:B5:59:6B:63 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.180.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:7d:0b:ff:9a:e8:fa:b1:b6:23:af:cd:17:3e:a5:11:15:2e: ff:71:cf:8b:b7:2f:e9:cf:ba:4c:c9:72:6a:36:c1:1e:47:0a: e9:12:8e:19:10:06:f0:c5:c6:0f:c1:b2:35:67:d8:a1:06:1a: 7a:61:f1:8a:4d:60:49:6c:7d:22:13:4b:02:be:11:91:77:a1: b3:40:95:73:3e:31:2a:f9:61:b9:58:6c:65:24:0c:d1:eb:ec: 08:63:ac:98:8c:08:50:a4:dc:99:7b:f2:5c:b6:8f:81:ba:11: a3:5a:98:27:ad:99:d0:f2:69:e0:39:91:f7:b7:b9:87:68:c9: 0a:b3:2a:65:7b:9a:70:9e:af:2b:cd:c6:61:55:b9:d1:69:af: 3f:53:e8:ac:53:b6:cb:6c:df:3b:6a:65:0a:84:fa:77:b6:e2: ad:c1:88:f0:fb:e4:9c:35:db:79:9e:5e:49:f8:c8:00:d0:89: d4:ef:71:64:64:53:89:e9:7e:99:f5:f6:6b:ae:70:00:36:b2: fa:06:92:97:83:2a:89:9a:a9:89:f6:9d:61:3e:21:f8:26:70: 45:11:3e:ee:08:9a:ab:7c:5f:84:36:08:e1:c4:24:ab:e6:b4: c3:1e:9b:e3:70:b2:f3:dc:78:24:33:56:c8:db:94:c2:4a:6e: 92:25:a7:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMzA3MDYwODQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU5NTllOS1kMGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwaoPHXcfnTb28n9X3yBmzElba0zJmJ29mVPzzNDQ2t7Cimj8/gJVtlifYSG D6UdZdtVsbN1eUlrcorIoyEl45aikVU94BubOoxqmJFBc/Czp2d5HBsIDPROV4Ng uDZHWxSMXnyzLB9xvDFWAVpgihe5c2RK9QPtcRyvdYTleQCrlJRQEXP7mRGHzHfw CaBNP+XcxA39m1iSPIIZldA7hRZ5sGEUPCRBXB4OFXDFeRIUIipviwETiL/QstvX Vf6Tj8SgdrAwQoRqH6mZwiFvQShHAPwUGch7PDDCfLN35tgHJ2yHPnDbBENaHsia ErUw56IstSN8TjrG8B/G0K5PPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMlr91ix rIpSbjMhU/dCig61WWtjMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjUyMEUwNkVE QzQ5MTFFRUExOEQ2MTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFLQwDQYJKoZIhvcNAQELBQADggEBAA59C/+a6PqxtiOv zRc+pREVLv9xz4u3L+nPukzJcmo2wR5HCukSjhkQBvDFxg/BsjVn2KEGGnph8YpN YElsfSITSwK+EZF3obNAlXM+MSr5YblYbGUkDNHr7AhjrJiMCFCk3Jl78ly2j4G6 EaNamCetmdDyaeA5kfe3uYdoyQqzKmV7mnCeryvNxmFVudFprz9T6KxTtsts3ztq ZQqE+ne24q3BiPD75Jw123meXkn4yADQidTvcWRkU4npfpn19muucAA2svoGkpeD KomaqYn2nWE+IfgmcEURPu4Imqt8X4Q2COHEJKvmtMMem+NwsvPceCQzVsjblMJK bpIlpw4= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org