$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C450720E223911EF9B58F681C4F9AE02.roa File: C450720E223911EF9B58F681C4F9AE02.roa (raw, json) Hash identifier: WOCciXWLCjB8HY61UjitfkJPgBbE3vVT4gm0Io/dAQ8= Subject key identifier: 19:C6:2C:B9:1C:3D:F0:35:3B:81:0E:74:14:DC:F5:3C:AD:4B:E3:A7 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A3C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C450720E223911EF9B58F681C4F9AE02.roa Signing time: Tue 04 Jun 2024 06:14:58 +0000 ROA not before: Tue 04 Jun 2024 06:14:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135745 IP address blocks: 160.20.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6716 (0x1a3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 4 06:14:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665eb0e1-c074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:4b:fd:63:b2:98:c5:20:29:93:df:4b:4c: 05:a3:b1:b2:cd:80:f0:75:44:99:2f:14:8b:c4:40: ce:f8:73:0d:4b:14:c5:c0:66:8f:66:2d:6d:8d:51: e8:72:a6:37:11:7c:7b:86:ac:4c:43:9d:45:b4:9a: 83:f7:5b:5a:c7:00:84:38:d0:23:10:40:2b:c5:29: c8:7f:87:41:72:9f:a4:3a:c2:64:94:62:8f:1f:c8: 5a:2c:f0:f7:01:c9:21:45:34:27:25:3a:ea:30:b4: 8a:55:2b:1c:8f:0e:0b:07:33:f1:06:88:8e:6c:4a: 0d:39:a5:dc:f2:3b:46:6d:48:11:bf:e5:ed:66:ac: b9:ba:b5:af:03:ab:f7:92:2e:98:31:69:84:7f:13: 82:07:7a:74:7e:08:10:14:41:68:72:30:1f:e6:f4: a9:db:0f:9a:1a:3b:1b:d2:d0:89:f0:bd:77:c1:1c: 9f:13:36:6c:7c:c4:6f:ef:01:36:e8:46:3d:4f:9f: 15:4f:4a:f9:ea:a7:ed:16:9c:e4:a5:16:1c:55:2f: e6:10:b4:1f:53:36:c8:69:2c:67:55:4b:5f:2e:de: 24:58:5d:13:7d:f3:eb:c3:29:3a:23:a6:d9:71:df: d1:7c:b0:f3:b8:1e:29:aa:8b:26:3f:54:6b:2e:6d: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C6:2C:B9:1C:3D:F0:35:3B:81:0E:74:14:DC:F5:3C:AD:4B:E3:A7 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C450720E223911EF9B58F681C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.228.0/24 Signature Algorithm: sha256WithRSAEncryption 93:79:b7:ad:26:f2:13:67:11:79:fa:00:a2:7a:23:a5:57:c5: c2:6f:32:f3:7d:cb:ce:84:03:ed:52:94:c5:be:be:e4:24:57: 62:cc:e3:71:88:84:12:dd:e7:41:5e:31:bf:63:93:0b:00:69: cf:f1:09:98:53:83:3f:90:44:b3:9a:a8:0d:e5:38:12:e8:a9: b5:61:8d:58:ff:7d:92:e1:9c:a5:61:c8:79:b4:aa:f1:01:14: c0:6a:7c:56:e4:1a:a6:17:b4:6e:85:08:87:95:30:ed:04:4c: 76:35:06:83:b1:0e:db:71:83:92:c6:ad:5a:33:3a:07:ed:b5: 36:ae:f6:58:4b:3f:10:df:14:d5:74:10:e5:4e:29:d7:a1:67: ae:08:4f:4a:cb:4e:80:0d:49:32:c7:ac:0d:e5:b0:a0:11:db: 4d:ef:d5:a5:26:a8:d0:b2:0a:4e:86:7f:91:04:97:6a:e4:77: fe:d2:57:f5:40:77:20:f5:13:37:c9:95:5d:f2:45:e9:1f:04: a4:bd:39:d1:43:dd:dc:ea:07:22:4a:70:0f:56:2c:60:4b:3b: 4f:93:aa:1c:87:49:f6:2d:cc:b9:1d:3a:8d:2a:88:c1:e5:bf: 21:25:b5:d1:fd:15:85:2d:17:0d:41:46:7f:10:ad:b7:71:03: 40:db:90:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNjA0MDYxNDU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVlYjBlMS1jMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI1L/WOymMUgKZPfS0wFo7GyzYDwdUSZLxSLxEDO+HMNSxTFwGaPZi1tjVHo cqY3EXx7hqxMQ51FtJqD91taxwCEONAjEEArxSnIf4dBcp+kOsJklGKPH8haLPD3 AckhRTQnJTrqMLSKVSscjw4LBzPxBoiObEoNOaXc8jtGbUgRv+XtZqy5urWvA6v3 ki6YMWmEfxOCB3p0fggQFEFocjAf5vSp2w+aGjsb0tCJ8L13wRyfEzZsfMRv7wE2 6EY9T58VT0r56qftFpzkpRYcVS/mELQfUzbIaSxnVUtfLt4kWF0TffPrwyk6I6bZ cd/RfLDzuB4pqosmP1RrLm1aswIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnGLLkc PfA1O4EOdBTc9TytS+OnMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzQ1MDcyMEUy MjM5MTFFRjlCNThGNjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFOQwDQYJKoZIhvcNAQELBQADggEBAJN5t60m8hNnEXn6 AKJ6I6VXxcJvMvN9y86EA+1SlMW+vuQkV2LM43GIhBLd50FeMb9jkwsAac/xCZhT gz+QRLOaqA3lOBLoqbVhjVj/fZLhnKVhyHm0qvEBFMBqfFbkGqYXtG6FCIeVMO0E THY1BoOxDttxg5LGrVozOgfttTau9lhLPxDfFNV0EOVOKdehZ64IT0rLToANSTLH rA3lsKAR203v1aUmqNCyCk6Gf5EEl2rkd/7SV/VAdyD1EzfJlV3yRekfBKS9OdFD 3dzqByJKcA9WLGBLO0+TqhyHSfYtzLkdOo0qiMHlvyEltdH9FYUtFw1BRn8Qrbdx A0DbkHg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org