$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa File: 67421A14E1D811EE8E6B407CC4F9AE02.roa (raw, json) Hash identifier: CjRQPSTqYcfGQmFtDGp3BWR79n74HOXwyw4bWb6OWoA= Subject key identifier: 99:C9:DD:14:D5:53:47:45:49:0E:86:CA:7A:81:0F:6B:D2:B3:76:F1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 192F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa Signing time: Thu 14 Mar 2024 07:56:46 +0000 ROA not before: Thu 14 Mar 2024 07:56:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152581 IP address blocks: 157.20.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6447 (0x192f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Mar 14 07:56:46 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65f2adbd-f44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:db:72:c8:63:bc:ea:20:7a:4e:ec:8e:6b: aa:54:23:0e:e7:35:8d:1b:61:1f:ae:07:61:f4:b5: 62:c7:dd:6c:e0:ba:2a:75:70:81:72:0a:f5:07:00: de:84:76:f3:c1:52:be:ea:c1:e5:00:7b:00:13:8e: 76:df:0c:99:85:2d:be:dd:82:df:27:0a:20:3a:43: e8:6c:eb:49:40:30:21:2d:0b:10:3d:b5:a5:e3:07: 1f:6a:a2:8c:3c:09:0d:13:ce:dc:72:48:3a:84:9f: 9c:67:15:c2:68:79:c4:ba:ee:7b:6e:2b:90:fb:8a: ef:ac:08:49:23:ec:d2:fb:a7:fa:db:cd:59:10:bf: d7:c8:a3:de:ec:73:4c:c4:bd:bc:e8:7f:10:9d:91: 11:fa:a9:30:18:bc:bb:cf:5b:ec:61:23:c9:e2:85: 88:53:83:5a:aa:da:a5:3e:99:c8:0f:86:9d:bf:d0: 49:78:c5:f4:e2:68:2f:c4:19:9d:73:9b:29:55:35: 64:48:e0:91:c7:72:e7:b7:83:f6:17:3f:a1:4c:b3: 62:c1:7c:91:2f:1d:d5:aa:9d:9c:c0:38:9f:08:c5: a8:49:3c:27:69:20:14:39:70:0c:22:ab:92:6d:90: 73:e6:01:02:8d:53:50:de:b3:33:85:67:36:5b:fb: e2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C9:DD:14:D5:53:47:45:49:0E:86:CA:7A:81:0F:6B:D2:B3:76:F1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.186.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:e9:f4:3f:66:4e:80:5a:b7:6e:83:4b:42:5a:2d:51:b5:89: 92:26:fb:31:51:a2:04:b4:46:3a:c3:5e:1b:df:d3:ce:56:53: f7:eb:49:34:27:f8:fe:fa:f9:ce:f4:e1:0e:87:05:31:d2:9c: 5b:a4:cd:ea:dc:1e:63:d6:df:c9:70:33:14:14:1f:68:ec:97: dc:6b:f6:e2:07:10:c9:5a:cc:9f:b4:73:18:c3:63:1c:07:b4: 2f:6b:34:d8:3a:07:8d:08:dc:5b:a6:9e:02:65:cc:21:f9:fe: 30:26:9a:77:7a:d3:93:d5:0b:f1:33:cd:3f:a9:88:b8:dd:e8: 22:06:61:39:cc:35:07:e7:9e:0b:3b:88:7e:70:4b:e2:92:a9: bd:04:2d:9d:40:c6:a7:fd:c4:3a:55:73:3e:54:68:33:a0:30: ba:08:65:8e:c4:43:03:6f:3f:81:e5:22:dd:29:e6:5e:94:7f: e9:5c:f4:8f:1e:ce:be:00:82:6a:31:5f:f7:ec:a4:78:ef:01: 3f:28:34:5d:c9:2c:c3:68:b5:77:b2:ae:54:c1:1a:51:da:f4: 3d:5f:7d:f2:5a:c3:e2:23:a7:72:84:63:63:fe:c2:08:68:cb: 00:ae:f2:56:4f:13:fe:ae:24:56:3f:c4:72:34:ea:47:de:6a: a5:cf:91:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMzE0MDc1NjQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYyYWRiZC1mNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMDbcshjvOogek7sjmuqVCMO5zWNG2Efrgdh9LVix91s4LoqdXCBcgr1BwDe hHbzwVK+6sHlAHsAE4523wyZhS2+3YLfJwogOkPobOtJQDAhLQsQPbWl4wcfaqKM PAkNE87cckg6hJ+cZxXCaHnEuu57biuQ+4rvrAhJI+zS+6f6281ZEL/XyKPe7HNM xL286H8QnZER+qkwGLy7z1vsYSPJ4oWIU4NaqtqlPpnID4adv9BJeMX04mgvxBmd c5spVTVkSOCRx3Lnt4P2Fz+hTLNiwXyRLx3Vqp2cwDifCMWoSTwnaSAUOXAMIquS bZBz5gECjVNQ3rMzhWc2W/viwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJnJ3RTV U0dFSQ6GynqBD2vSs3bxMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjc0MjFBMTRF MUQ4MTFFRThFNkI0MDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFLowDQYJKoZIhvcNAQELBQADggEBACzp9D9mToBat26D S0JaLVG1iZIm+zFRogS0RjrDXhvf085WU/frSTQn+P76+c704Q6HBTHSnFukzerc HmPW38lwMxQUH2jsl9xr9uIHEMlazJ+0cxjDYxwHtC9rNNg6B40I3FumngJlzCH5 /jAmmnd605PVC/EzzT+piLjd6CIGYTnMNQfnngs7iH5wS+KSqb0ELZ1Axqf9xDpV cz5UaDOgMLoIZY7EQwNvP4HlIt0p5l6Uf+lc9I8ezr4AgmoxX/fspHjvAT8oNF3J LMNotXeyrlTBGlHa9D1fffJaw+Ijp3KEY2P+wghoywCu8lZPE/6uJFY/xHI06kfe aqXPkcs= -----END CERTIFICATE-----Generated at Mon May 20 17:22:07 2024 by rpki-client on console-fra.rpki-client.org