$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa File: DB7FFDD0E02D11EEBE91895FC4F9AE02.roa (raw, json) Hash identifier: rzyXUEAyUxrP58FdettPTOCP221JdewQrAZg3eXhuxQ= Subject key identifier: 89:85:89:86:3F:C5:1D:09:7E:65:91:FB:19:9D:C5:9B:B3:51:18:E7 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 19EA Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa Signing time: Thu 30 May 2024 15:52:31 +0000 ROA not before: Thu 30 May 2024 15:52:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138244 IP address blocks: 157.20.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6634 (0x19ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0bf-4c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:86:a8:a0:28:3d:cd:96:65:00:28:7a:5e:89: 73:89:61:55:fd:3a:1f:c3:e0:6a:dd:28:55:90:35: 0e:8d:0a:0c:85:e7:cc:cd:62:79:a4:ed:80:f3:4d: ac:17:36:12:3f:fe:aa:3e:28:df:31:b9:52:c3:67: 47:fd:f7:4f:01:c5:8c:44:e2:f7:a1:6e:22:2f:76: 95:31:ca:fc:3d:3f:21:9d:f6:66:d5:c0:4f:bf:e4: 29:f0:1f:60:b1:f3:96:05:d6:46:67:5d:8d:9d:0d: 46:ac:49:9c:86:8c:07:a3:99:af:cd:00:70:ee:47: 8e:c0:09:bb:84:c7:57:c6:a7:2b:8f:d3:01:e4:d1: 3b:f5:dd:f3:f9:bd:5d:82:af:90:8d:78:82:1b:c0: 10:da:6f:1e:0f:eb:0b:54:2e:29:55:7c:76:40:93: b8:38:4c:0e:6d:b5:ad:55:d5:38:98:a1:73:a2:98: 80:c5:29:f0:4c:27:7b:3d:ae:d4:39:8a:c7:eb:c0: b5:0f:e3:6b:95:b7:1b:8a:8d:d4:20:5f:9f:67:a9: 39:29:b7:4b:83:5e:b1:d1:7c:c2:66:7b:bc:35:67: c1:dc:a5:18:34:c0:4f:74:98:bf:aa:6b:69:8f:58: c8:54:f3:19:38:56:82:16:97:99:42:43:09:7a:0b: dd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:85:89:86:3F:C5:1D:09:7E:65:91:FB:19:9D:C5:9B:B3:51:18:E7 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.172.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:fe:de:34:72:3f:e7:20:96:77:fe:d7:2b:01:46:79:f2:0e: 8c:f1:73:73:18:ef:d6:ca:fa:06:c4:da:a5:5a:8e:09:af:cd: 48:c9:b6:99:86:09:13:72:80:a9:11:4a:f4:05:55:a5:3e:78: 01:80:2c:2b:ca:ee:d8:4b:72:54:89:6c:72:11:c8:03:05:d4: af:4c:dd:5b:5b:39:61:21:09:6f:ec:8c:c8:95:37:03:d6:3d: cc:64:7a:1d:2c:e6:9d:87:62:e2:a2:4e:9e:02:c2:10:2b:32: 5e:26:c7:40:4f:a2:41:d0:40:4d:6b:3a:7b:9e:be:31:63:8c: cf:13:e5:fc:69:ed:33:9f:99:11:cc:44:a9:36:10:a4:30:d8: be:93:3e:c6:e2:b2:f2:90:74:b7:e9:cb:23:27:2a:9f:75:ca: 4d:9e:7f:b0:9f:97:e6:a5:31:97:1a:99:ce:27:83:12:d9:4b: 97:d7:65:72:66:1f:12:01:f8:f1:96:41:b5:4f:24:b8:6c:5e: ca:03:0c:05:33:3e:cf:52:55:eb:d1:ce:59:e7:05:59:a4:85: bf:91:54:7f:5a:d3:dd:20:8e:77:aa:a2:cf:3c:ff:8f:72:8e: 9e:45:5e:0b:f2:29:a3:79:0f:78:77:48:d2:9a:ae:50:92:4e: ba:bd:46:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBiZi00YzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoaooCg9zZZlACh6XolziWFV/Tofw+Bq3ShVkDUOjQoMhefMzWJ5pO2A802s FzYSP/6qPijfMblSw2dH/fdPAcWMROL3oW4iL3aVMcr8PT8hnfZm1cBPv+Qp8B9g sfOWBdZGZ12NnQ1GrEmchowHo5mvzQBw7keOwAm7hMdXxqcrj9MB5NE79d3z+b1d gq+QjXiCG8AQ2m8eD+sLVC4pVXx2QJO4OEwObbWtVdU4mKFzopiAxSnwTCd7Pa7U OYrH68C1D+Nrlbcbio3UIF+fZ6k5KbdLg16x0XzCZnu8NWfB3KUYNMBPdJi/qmtp j1jIVPMZOFaCFpeZQkMJegvdKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFImFiYY/ xR0JfmWR+xmdxZuzURjnMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREI3RkZERDBF MDJEMTFFRUJFOTE4OTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFKwwDQYJKoZIhvcNAQELBQADggEBAAz+3jRyP+cglnf+ 1ysBRnnyDozxc3MY79bK+gbE2qVajgmvzUjJtpmGCRNygKkRSvQFVaU+eAGALCvK 7thLclSJbHIRyAMF1K9M3VtbOWEhCW/sjMiVNwPWPcxkeh0s5p2HYuKiTp4CwhAr Ml4mx0BPokHQQE1rOnuevjFjjM8T5fxp7TOfmRHMRKk2EKQw2L6TPsbisvKQdLfp yyMnKp91yk2ef7Cfl+alMZcamc4ngxLZS5fXZXJmHxIB+PGWQbVPJLhsXsoDDAUz Ps9SVevRzlnnBVmkhb+RVH9a090gjneqos88/49yjp5FXgvyKaN5D3h3SNKarlCS Trq9Rto= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org