$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa File: 67421A14E1D811EE8E6B407CC4F9AE02.roa (raw, json) Hash identifier: iqsuE1i1EPoYZ3vs8QpVSnH6Mg+roDDwN9yBpgVYVkE= Subject key identifier: 7A:24:C3:67:9D:A3:07:4B:7F:8A:6A:18:72:C4:76:77:E9:CE:80:FA Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A29 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa Signing time: Thu 30 May 2024 15:53:30 +0000 ROA not before: Thu 30 May 2024 15:53:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152581 IP address blocks: 157.20.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6697 (0x1a29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:53:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0fa-0db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:48:d6:96:8b:e5:58:ff:a2:82:ae:22:fa:d7: fa:7d:c8:80:e7:2e:2b:54:c5:34:c1:be:0a:2d:78: 73:3e:52:a1:4d:9a:01:5f:0c:17:c8:8b:68:3d:9a: e5:e5:2c:ad:84:73:0a:0e:20:ad:58:62:ec:35:7f: de:39:2d:f6:04:6a:15:fd:8e:0f:95:64:d0:44:a6: 0e:5d:66:1f:f1:db:69:f3:bf:8a:85:f0:dd:cc:c6: c0:a8:4a:7b:27:0d:e6:26:ba:f5:73:b1:31:11:a8: 97:72:bf:6f:79:6b:3f:5d:14:27:ea:02:fe:d3:0c: 59:3b:59:67:08:34:43:57:95:12:ba:38:8b:8a:62: 7c:41:29:0c:7b:0b:8e:6c:45:11:1e:0f:4e:f2:16: f7:5e:9d:85:7c:8c:0c:f6:84:dc:e2:1b:d3:63:c6: 15:26:d4:7c:3a:f8:cd:e2:25:33:f5:f0:54:42:9a: e3:9a:44:77:81:8e:2d:21:dc:ac:b1:e2:69:7d:72: 92:0a:90:5d:82:2d:b1:62:86:8b:3e:f2:e9:e6:21: 4c:f6:d5:59:89:37:ce:1e:98:8d:1b:5b:ea:5c:8c: 51:cc:d0:52:56:af:45:5a:b7:90:97:8d:c2:29:af: c4:a1:e8:7c:df:11:2a:04:16:8f:27:a6:2d:6c:c5: 99:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:24:C3:67:9D:A3:07:4B:7F:8A:6A:18:72:C4:76:77:E9:CE:80:FA X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.186.0/23 Signature Algorithm: sha256WithRSAEncryption 07:96:78:15:fa:f3:1d:9b:d1:85:cc:74:33:1d:63:56:e4:27: 97:11:2c:3f:b2:28:72:5b:9e:ea:13:3b:09:52:c6:59:b6:c8: bd:ef:6e:cf:79:2e:2c:d7:c7:b7:18:2d:2f:33:b0:ef:f4:c8: f4:65:3a:b6:0d:a9:cd:8a:98:69:33:5c:75:0f:a8:31:c1:34: b3:5d:f7:ee:75:bf:ef:9f:61:46:47:c5:44:e0:9a:68:92:e4: 3b:6d:81:c1:a8:3d:68:8f:d6:1c:a3:24:66:de:57:c1:26:fe: 7a:69:0b:d3:c9:93:ed:b6:b9:b2:36:e8:e4:90:32:2f:68:fc: 5d:23:60:de:04:82:73:2e:5c:a5:26:03:39:ae:a9:58:13:de: 22:28:bc:8e:b3:69:7a:35:82:b9:66:cf:fa:91:4d:5c:e6:fd: 31:2c:4d:19:b0:ea:7c:a9:aa:61:eb:cd:ab:a8:12:a8:b8:2b: 6a:e1:a5:c6:61:8a:1e:48:96:5d:dc:b9:df:04:d3:75:89:81: 69:6a:02:d3:8d:f0:12:84:0a:58:e7:4c:19:d7:be:f6:96:9c: a3:5c:94:74:c9:25:22:ec:56:62:fe:bd:d0:58:9b:64:21:5c: 09:40:ed:45:41:53:93:11:49:38:f6:7d:2e:a8:d3:30:8b:d0: 13:0e:f6:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MzMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBmYS0wZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkjWlovlWP+igq4i+tf6fciA5y4rVMU0wb4KLXhzPlKhTZoBXwwXyItoPZrl 5SythHMKDiCtWGLsNX/eOS32BGoV/Y4PlWTQRKYOXWYf8dtp87+KhfDdzMbAqEp7 Jw3mJrr1c7ExEaiXcr9veWs/XRQn6gL+0wxZO1lnCDRDV5USujiLimJ8QSkMewuO bEURHg9O8hb3Xp2FfIwM9oTc4hvTY8YVJtR8OvjN4iUz9fBUQprjmkR3gY4tIdys seJpfXKSCpBdgi2xYoaLPvLp5iFM9tVZiTfOHpiNG1vqXIxRzNBSVq9FWreQl43C Ka/Eoeh83xEqBBaPJ6YtbMWZDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHokw2ed owdLf4pqGHLEdnfpzoD6MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjc0MjFBMTRF MUQ4MTFFRThFNkI0MDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFLowDQYJKoZIhvcNAQELBQADggEBAAeWeBX68x2b0YXM dDMdY1bkJ5cRLD+yKHJbnuoTOwlSxlm2yL3vbs95LizXx7cYLS8zsO/0yPRlOrYN qc2KmGkzXHUPqDHBNLNd9+51v++fYUZHxUTgmmiS5DttgcGoPWiP1hyjJGbeV8Em /nppC9PJk+22ubI26OSQMi9o/F0jYN4EgnMuXKUmAzmuqVgT3iIovI6zaXo1grlm z/qRTVzm/TEsTRmw6nypqmHrzauoEqi4K2rhpcZhih5Ill3cud8E03WJgWlqAtON 8BKECljnTBnXvvaWnKNclHTJJSLsVmL+vdBYm2QhXAlA7UVBU5MRSTj2fS6o0zCL 0BMO9v0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org