$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa File: DB7FFDD0E02D11EEBE91895FC4F9AE02.roa (raw, json) Hash identifier: TIgiQf+9WStEgNfJdkyDeirsmSp5hLAzAoevnQINLMo= Subject key identifier: 97:83:90:CA:66:EE:9A:CE:92:AE:A5:CD:79:15:BF:4B:28:A6:C5:EC Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1924 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa Signing time: Tue 12 Mar 2024 05:03:26 +0000 ROA not before: Tue 12 Mar 2024 05:03:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138244 IP address blocks: 157.20.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6436 (0x1924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Mar 12 05:03:25 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65efe21d-5842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ff:2c:f3:96:41:8c:84:d4:6c:cb:cc:e3:0b: 11:a3:35:4b:fe:cf:c5:23:f8:0e:cb:a6:61:41:ef: 7b:9c:5b:af:54:ed:e8:af:d0:f0:f5:f5:a2:c7:1f: 04:97:3a:1f:9d:22:36:c9:0e:f3:df:05:35:30:09: 0b:1d:8d:4c:9b:bb:10:bb:f9:77:90:d3:3a:40:91: e9:50:7d:96:8c:4f:d4:c7:f1:82:6e:8a:32:7b:79: 85:7e:04:b8:82:6a:66:78:ab:7b:14:50:bb:2f:7d: 37:2e:57:b9:3f:74:d2:88:72:aa:14:a0:7b:84:ae: c5:e6:15:76:c2:78:50:95:f8:34:26:9a:9a:68:a2: fa:a5:f6:ae:ba:af:06:ab:26:b7:08:18:d6:0c:37: de:f6:70:c5:d2:53:1f:66:a3:d7:62:1a:d9:2c:61: 2b:ab:ae:85:70:0f:60:3c:92:5c:af:e2:31:92:c0: 6b:1c:3d:e6:61:c3:c3:77:ea:b5:5e:f4:ea:fc:e9: b7:15:4d:e1:2e:4c:4f:94:99:83:6e:eb:25:36:7b: 76:ff:bc:ec:83:c5:fd:dc:0f:20:9d:a6:85:48:72: cb:a0:1c:9f:f3:fb:d5:2f:06:b9:95:c4:8b:af:4b: ac:98:1e:69:2c:66:8c:eb:eb:23:aa:e2:0e:27:7a: 8f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:83:90:CA:66:EE:9A:CE:92:AE:A5:CD:79:15:BF:4B:28:A6:C5:EC X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:e0:b5:3e:13:f7:38:bb:01:eb:c4:4c:6d:46:1f:8f:bb:6e: fc:a3:07:a7:d5:f4:f4:41:d1:54:cc:a0:b7:a9:7c:6e:d0:75: 2f:d1:57:ca:c9:2e:ae:3b:ec:ba:5d:a8:ae:58:a5:90:d4:9e: 99:13:34:55:08:54:6c:83:4a:09:aa:90:a6:9c:b8:85:00:42: 97:24:fb:2a:bd:ee:1f:5b:5f:d6:71:4f:9c:49:6b:e3:ba:01: 99:7d:d8:d5:9c:9e:8e:77:10:81:88:fe:dd:52:64:a4:47:6a: a6:d9:6d:82:e3:68:30:d1:61:b4:f4:4e:85:f5:00:02:e4:c0: 6f:85:bb:8c:fe:52:48:af:5c:1e:09:af:6c:ab:1f:19:07:81: 51:ca:f4:e1:45:5f:2e:c3:99:57:2e:d4:90:36:df:f0:8e:e8: c0:e8:82:79:0f:7c:d4:44:28:5d:cf:3e:90:6a:33:02:81:ac: 85:74:6e:27:3a:ff:b6:d6:da:cf:08:96:6e:1b:41:c2:5c:be: bc:75:a5:a4:fb:2d:59:af:4f:30:8d:60:1b:1b:19:b0:e0:0a: c2:33:f9:83:ea:7e:93:43:68:2f:1e:eb:ab:20:da:dc:8f:ce: 1b:43:6a:d8:b5:dd:e3:97:72:69:e5:38:0e:67:c8:07:ff:b7: a5:6c:df:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMzEyMDUwMzI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVmZTIxZC01ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P8s85ZBjITUbMvM4wsRozVL/s/FI/gOy6ZhQe97nFuvVO3or9Dw9fWixx8E lzofnSI2yQ7z3wU1MAkLHY1Mm7sQu/l3kNM6QJHpUH2WjE/Ux/GCbooye3mFfgS4 gmpmeKt7FFC7L303Lle5P3TSiHKqFKB7hK7F5hV2wnhQlfg0JpqaaKL6pfauuq8G qya3CBjWDDfe9nDF0lMfZqPXYhrZLGErq66FcA9gPJJcr+IxksBrHD3mYcPDd+q1 XvTq/Om3FU3hLkxPlJmDbuslNnt2/7zsg8X93A8gnaaFSHLLoByf8/vVLwa5lcSL r0usmB5pLGaM6+sjquIOJ3qPsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJeDkMpm 7prOkq6lzXkVv0sopsXsMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREI3RkZERDBF MDJEMTFFRUJFOTE4OTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFKwwDQYJKoZIhvcNAQELBQADggEBAD3gtT4T9zi7AevE TG1GH4+7bvyjB6fV9PRB0VTMoLepfG7QdS/RV8rJLq477LpdqK5YpZDUnpkTNFUI VGyDSgmqkKacuIUAQpck+yq97h9bX9ZxT5xJa+O6AZl92NWcno53EIGI/t1SZKRH aqbZbYLjaDDRYbT0ToX1AALkwG+Fu4z+UkivXB4Jr2yrHxkHgVHK9OFFXy7DmVcu 1JA23/CO6MDognkPfNREKF3PPpBqMwKBrIV0bic6/7bW2s8Ilm4bQcJcvrx1paT7 LVmvTzCNYBsbGbDgCsIz+YPqfpNDaC8e66sg2tyPzhtDati13eOXcmnlOA5nyAf/ t6Vs3+I= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org