$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/72FA9B4C377D11EF8F9AF718C4F9AE02.roa File: 72FA9B4C377D11EF8F9AF718C4F9AE02.roa (raw, json) Hash identifier: /wp2bYkjVCkStxZ2XYxRtAlF1DyhgCTrTV1pK1MMDVk= Subject key identifier: 20:E5:09:E7:21:3C:7F:FE:E6:F5:AE:E7:32:9B:BA:B6:B0:C7:A2:F1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A82 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/72FA9B4C377D11EF8F9AF718C4F9AE02.roa Signing time: Mon 01 Jul 2024 07:42:21 +0000 ROA not before: Mon 01 Jul 2024 07:42:21 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152507 IP address blocks: 160.22.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6786 (0x1a82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 1 07:42:21 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66825ddd-9c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:82:21:0b:29:24:32:67:95:01:9d:3d:49:ee: e4:e6:d2:92:9e:fb:4c:11:c3:9b:99:6d:1a:2d:5b: 8a:30:ca:fa:07:c8:fb:a0:1f:d5:2b:03:75:18:aa: d0:0f:c2:ce:fb:6f:09:28:20:57:47:26:27:75:87: 13:b2:af:a2:80:1c:0a:86:c8:55:fe:7f:d9:21:75: a6:06:88:4b:74:6f:7d:8f:0d:ea:ed:a8:3e:00:94: bc:04:bb:9b:c1:19:c1:86:1a:da:97:32:16:f3:18: 87:5e:df:af:c3:56:64:94:8f:84:7c:31:fb:93:45: 7b:7e:af:52:39:9b:8e:98:50:02:98:dc:5c:38:6b: 75:bc:68:06:f7:67:3a:d1:63:0c:66:3a:c3:22:ec: 4c:42:ee:d2:97:7c:92:20:c7:c2:37:e5:08:c6:d8: cd:88:47:23:b9:bf:aa:d8:01:fc:70:17:86:a1:85: 8c:b9:63:42:b5:4d:ad:ee:82:2e:01:1a:a9:45:4a: 9d:25:ec:9d:1f:c4:d0:e7:f7:79:e6:79:4c:7b:57: 21:f4:13:62:35:ce:0d:7f:51:42:bd:48:12:1c:9a: 31:cc:93:b6:9b:bc:23:a2:82:38:3c:d6:d8:60:9e: d2:d3:76:66:03:de:6f:e4:d6:5c:4c:bf:4a:d7:70: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E5:09:E7:21:3C:7F:FE:E6:F5:AE:E7:32:9B:BA:B6:B0:C7:A2:F1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/72FA9B4C377D11EF8F9AF718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.226.0/23 Signature Algorithm: sha256WithRSAEncryption 42:3c:5a:c4:df:c9:f7:5b:f7:52:4b:c0:e9:ce:8b:c8:c5:88: 2e:c8:c4:bc:09:4b:a5:b0:6f:06:73:ba:0d:1a:ce:ee:4a:f4: af:50:2a:76:91:fb:a0:00:6e:d5:d7:26:34:fc:52:10:92:0b: ad:43:07:a2:80:bb:58:b7:13:c1:f8:3d:7d:9c:1a:c7:72:84: bc:55:f2:6c:95:0e:c7:77:e7:84:32:f2:57:be:8d:f7:8a:10: 90:d6:28:db:c3:4b:5b:fa:43:f6:5e:8c:ff:e5:98:92:6d:64: c1:3d:17:68:b0:08:ab:d6:60:39:da:b5:a4:e6:8d:b2:cf:a2: 26:fd:d0:02:23:c3:36:27:6d:c0:99:83:53:3c:18:3c:f6:c9: b4:71:1f:da:1c:c2:c9:c3:cd:d6:7e:7b:ae:92:34:92:4e:d8: 4f:2d:fa:11:52:33:0f:6f:b3:7b:8d:86:82:4b:f1:57:51:4a: f3:99:9a:11:5c:ac:2a:fa:e2:3c:f4:ff:39:42:e9:4e:c8:22: 03:55:ea:e0:4f:00:b8:48:a4:6e:37:0d:68:11:af:46:a2:f6: 3b:80:9d:9b:9d:f1:60:61:ad:39:24:b5:61:cc:f9:f7:b8:36: 70:97:70:0f:9e:55:67:0a:a3:17:25:97:15:2b:b8:a7:78:05: 07:e9:14:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNzAxMDc0MjIxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyNWRkZC05YzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8oIhCykkMmeVAZ09Se7k5tKSnvtMEcObmW0aLVuKMMr6B8j7oB/VKwN1GKrQ D8LO+28JKCBXRyYndYcTsq+igBwKhshV/n/ZIXWmBohLdG99jw3q7ag+AJS8BLub wRnBhhralzIW8xiHXt+vw1ZklI+EfDH7k0V7fq9SOZuOmFACmNxcOGt1vGgG92c6 0WMMZjrDIuxMQu7Sl3ySIMfCN+UIxtjNiEcjub+q2AH8cBeGoYWMuWNCtU2t7oIu ARqpRUqdJeydH8TQ5/d55nlMe1ch9BNiNc4Nf1FCvUgSHJoxzJO2m7wjooI4PNbY YJ7S03ZmA95v5NZcTL9K13BCqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCDlCech PH/+5vWu5zKburawx6LxMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzJGQTlCNEMz NzdEMTFFRjhGOUFGNzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFuIwDQYJKoZIhvcNAQELBQADggEBAEI8WsTfyfdb91JL wOnOi8jFiC7IxLwJS6WwbwZzug0azu5K9K9QKnaR+6AAbtXXJjT8UhCSC61DB6KA u1i3E8H4PX2cGsdyhLxV8myVDsd354Qy8le+jfeKEJDWKNvDS1v6Q/ZejP/lmJJt ZME9F2iwCKvWYDnataTmjbLPoib90AIjwzYnbcCZg1M8GDz2ybRxH9ocwsnDzdZ+ e66SNJJO2E8t+hFSMw9vs3uNhoJL8VdRSvOZmhFcrCr64jz0/zlC6U7IIgNV6uBP ALhIpG43DWgRr0ai9juAnZud8WBhrTkktWHM+fe4NnCXcA+eVWcKoxcllxUruKd4 BQfpFD8= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org