$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa File: 2520E06EDC4911EEA18D6172C4F9AE02.roa (raw, json) Hash identifier: mvHJ2/72RNl47k1qkP/DmNKbAozY2GRVEEvmz/1+BWo= Subject key identifier: 9D:D0:13:5C:D4:D2:56:03:5A:E3:F5:3E:6A:32:98:19:E3:23:E2:6E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A12 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:09 +0000 ROA not before: Thu 30 May 2024 15:53:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152484 IP address blocks: 157.20.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6674 (0x1a12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0e4-bdd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3b:ec:dd:73:d5:22:f9:53:13:d8:c8:8d:34: f9:f2:04:1a:ba:38:3d:8e:9e:ac:79:85:cf:9a:08: d9:11:ed:b7:c0:6b:e3:d2:7a:3d:2a:4f:b1:38:cd: 05:65:1e:a1:12:69:96:20:3b:51:1a:99:b4:cd:6c: f8:2f:7e:ed:e6:af:c7:5a:e2:1f:65:6c:8a:a6:d3: 5a:62:7d:63:a1:89:42:cd:ef:0d:eb:30:8f:dd:09: 12:71:ea:cd:97:24:b0:55:04:1f:0d:ce:74:9d:be: a1:0d:ce:3e:f3:34:2a:73:b7:35:0c:07:9d:1c:2e: bd:be:8b:82:5d:c4:aa:da:bb:bb:a0:ad:b1:e0:72: 2c:0b:07:2f:26:66:d9:30:a1:3c:6a:2b:8e:a9:f0: 7d:dd:89:63:2b:e7:f7:e2:42:d6:6b:1e:6d:3d:57: 62:55:41:07:5b:3e:3e:0d:74:f4:36:27:7b:71:84: c6:6b:ba:2c:a3:ae:8d:95:d7:6c:09:7f:68:55:49: c2:fe:49:c9:72:c0:24:bf:c3:27:cd:60:15:62:ff: c0:fa:a4:74:ab:7a:87:d2:cc:13:24:67:ca:76:d0: 77:d9:1e:04:a6:82:86:e2:84:52:79:95:5a:59:ac: a5:45:4b:23:f8:50:6f:8c:5e:68:93:b6:fe:e7:ed: f9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D0:13:5C:D4:D2:56:03:5A:E3:F5:3E:6A:32:98:19:E3:23:E2:6E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.180.0/23 Signature Algorithm: sha256WithRSAEncryption 39:55:e6:9b:bf:3a:f1:b1:46:11:82:7b:2b:40:cb:b1:62:96: 22:b6:fb:88:62:25:7a:17:85:26:32:de:6f:5a:80:9f:71:7a: 1a:a4:a3:6d:9d:b0:8f:2a:3b:46:2f:b1:24:75:95:4b:11:78: 60:8d:61:95:5d:88:16:39:d7:73:55:99:b2:ca:f2:71:8c:20: 54:a6:44:d8:15:5c:4c:f2:b6:58:a9:52:87:ba:ae:d1:28:00: 35:de:aa:f8:18:37:77:79:50:66:49:f3:c5:e3:20:77:81:35: 97:f7:a9:cd:ec:16:fe:9d:ed:56:4c:3a:5b:5d:6f:3b:76:35: aa:ad:05:b8:60:ea:28:70:6e:9d:60:17:a4:a1:65:b0:0d:7d: 4e:e9:82:bb:a2:1d:7f:e9:f0:4e:61:f3:42:06:3f:9b:7b:8d: a9:e3:4b:0c:ca:a5:05:b1:88:73:6f:0e:fb:87:90:2d:5b:a7: 20:8b:97:9d:44:d8:9b:ee:35:a4:12:cb:d8:ac:4c:cf:56:dc: 6f:6c:bd:a8:28:2b:20:63:2a:bf:b8:1a:e5:4e:fc:cd:b9:59: 42:0b:0a:b3:55:ce:0f:f2:ab:27:d8:37:99:2c:4f:9f:25:30: 9b:cd:44:a8:25:72:91:00:3f:ea:74:00:69:cc:43:44:5e:97: 69:39:a9:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBlNC1iZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzvs3XPVIvlTE9jIjTT58gQaujg9jp6seYXPmgjZEe23wGvj0no9Kk+xOM0F ZR6hEmmWIDtRGpm0zWz4L37t5q/HWuIfZWyKptNaYn1joYlCze8N6zCP3QkScerN lySwVQQfDc50nb6hDc4+8zQqc7c1DAedHC69vouCXcSq2ru7oK2x4HIsCwcvJmbZ MKE8aiuOqfB93YljK+f34kLWax5tPVdiVUEHWz4+DXT0Nid7cYTGa7oso66Nldds CX9oVUnC/knJcsAkv8MnzWAVYv/A+qR0q3qH0swTJGfKdtB32R4EpoKG4oRSeZVa WaylRUsj+FBvjF5ok7b+5+35EQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ3QE1zU 0lYDWuP1PmoymBnjI+JuMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjUyMEUwNkVE QzQ5MTFFRUExOEQ2MTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFLQwDQYJKoZIhvcNAQELBQADggEBADlV5pu/OvGxRhGC eytAy7FiliK2+4hiJXoXhSYy3m9agJ9xehqko22dsI8qO0YvsSR1lUsReGCNYZVd iBY513NVmbLK8nGMIFSmRNgVXEzytlipUoe6rtEoADXeqvgYN3d5UGZJ88XjIHeB NZf3qc3sFv6d7VZMOltdbzt2NaqtBbhg6ihwbp1gF6ShZbANfU7pgruiHX/p8E5h 80IGP5t7janjSwzKpQWxiHNvDvuHkC1bpyCLl51E2JvuNaQSy9isTM9W3G9svago KyBjKr+4GuVO/M25WUILCrNVzg/yqyfYN5ksT58lMJvNRKglcpEAP+p0AGnMQ0Re l2k5qTo= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org