$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa File: DD0B20D0C0DE11EEB0643379C4F9AE02.roa (raw, json) Hash identifier: wkguQtAtZX9crOCqKtc+Uam6b0a48XdK3ITguviVHQo= Subject key identifier: B8:09:6F:93:C6:22:C4:02:14:82:33:36:38:72:85:D0:9E:30:48:7A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A07 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa Signing time: Thu 30 May 2024 15:52:57 +0000 ROA not before: Thu 30 May 2024 15:52:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151731 IP address blocks: 157.15.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6663 (0x1a07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 15:52:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a0d9-d8ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0a:f5:f8:72:f2:6b:5d:fb:3a:9f:5d:bb:24: 91:9f:82:5d:43:c7:9c:28:a9:66:bc:48:fa:23:61: 3a:ba:ed:bc:fd:77:53:9d:d7:31:58:3b:33:0f:b2: 22:6f:77:39:5f:47:cd:19:1c:d2:98:69:9b:e2:1c: f4:ea:ca:df:cb:49:06:10:0c:51:e2:20:ee:05:e9: 55:b1:8c:62:dc:ad:5f:16:6c:bd:97:35:34:cd:ff: 03:2c:f9:29:f0:47:0d:1e:8c:fb:10:13:5d:70:84: fb:44:16:95:cc:95:40:86:58:23:70:5f:da:fa:56: 86:dd:75:c5:5f:a8:9d:0e:c4:3a:dc:b8:00:3a:03: 19:10:ca:52:9e:a5:ee:57:e3:ea:12:ec:39:2b:65: 7a:2a:10:5a:eb:66:53:6a:54:ee:82:1e:e6:14:d2: f3:d4:f3:13:c8:b2:a1:f1:54:5a:7e:67:bc:f0:07: ae:cb:89:a5:9f:3a:44:86:4c:ba:e0:e2:2b:e7:06: 9b:46:91:63:c9:55:42:9d:fc:73:40:31:63:f1:55: f8:d0:e9:21:69:3f:9d:cb:c9:e3:a8:f6:2d:d5:69: 3f:67:b7:40:53:b3:25:57:14:da:53:0e:94:6a:3d: df:12:3c:40:52:7a:0c:6d:70:c7:77:8a:a9:4f:ab: 0e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:09:6F:93:C6:22:C4:02:14:82:33:36:38:72:85:D0:9E:30:48:7A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.90.0/23 Signature Algorithm: sha256WithRSAEncryption ab:16:6d:f7:02:d4:89:2d:53:ba:e8:a2:6b:ff:2f:02:10:ef: a4:7c:fe:94:e1:8d:5b:ff:5e:f3:63:8c:f7:bf:51:ab:bf:04: fc:ce:4c:71:95:e4:2f:c4:dc:27:67:73:c1:d2:3b:16:5d:d8: 81:d6:ce:ac:1b:4b:37:ad:6c:b9:3e:78:c5:92:a4:f0:54:14: bd:97:07:01:97:ca:3f:06:16:a0:b7:29:89:1c:f5:e0:f9:7c: a4:87:e5:55:91:05:43:32:af:e3:b5:f9:da:de:cb:a0:01:ac: b4:cd:27:5e:dd:37:34:fe:8b:65:2e:47:70:ec:85:e0:43:d6: a6:95:83:07:6a:0e:41:c3:ca:5f:bd:51:33:48:4a:6c:60:fe: 30:7e:57:a2:02:08:69:3c:49:ad:f0:fd:a8:88:59:85:d4:ff: 0e:6a:9b:da:06:79:c7:c6:26:61:8e:f0:66:8a:33:9b:94:9d: ba:d4:74:4d:73:83:7e:a6:60:89:e9:ec:73:3c:2f:38:9a:80: a7:9e:bc:48:de:47:b6:a8:0c:83:91:af:68:8c:53:4d:f7:57: 1f:a2:84:b2:f5:4d:9d:1b:e5:ef:b6:cb:dd:de:65:84:96:d1: 07:1d:76:06:55:72:3e:8d:67:06:d4:33:26:4a:ec:ac:d5:ad: 42:b3:52:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNTMwMTU1MjU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTBkOS1kOGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Qr1+HLya137Op9duySRn4JdQ8ecKKlmvEj6I2E6uu28/XdTndcxWDszD7Ii b3c5X0fNGRzSmGmb4hz06srfy0kGEAxR4iDuBelVsYxi3K1fFmy9lzU0zf8DLPkp 8EcNHoz7EBNdcIT7RBaVzJVAhlgjcF/a+laG3XXFX6idDsQ63LgAOgMZEMpSnqXu V+PqEuw5K2V6KhBa62ZTalTugh7mFNLz1PMTyLKh8VRafme88Aeuy4mlnzpEhky6 4OIr5wabRpFjyVVCnfxzQDFj8VX40OkhaT+dy8njqPYt1Wk/Z7dAU7MlVxTaUw6U aj3fEjxAUnoMbXDHd4qpT6sOFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLgJb5PG IsQCFIIzNjhyhdCeMEh6MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREQwQjIwRDBD MERFMTFFRUIwNjQzMzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD1owDQYJKoZIhvcNAQELBQADggEBAKsWbfcC1IktU7ro omv/LwIQ76R8/pThjVv/XvNjjPe/Uau/BPzOTHGV5C/E3Cdnc8HSOxZd2IHWzqwb SzetbLk+eMWSpPBUFL2XBwGXyj8GFqC3KYkc9eD5fKSH5VWRBUMyr+O1+drey6AB rLTNJ17dNzT+i2UuR3DsheBD1qaVgwdqDkHDyl+9UTNISmxg/jB+V6ICCGk8Sa3w /aiIWYXU/w5qm9oGecfGJmGO8GaKM5uUnbrUdE1zg36mYInp7HM8LziagKeevEje R7aoDIORr2iMU033Vx+ihLL1TZ0b5e+2y93eZYSW0QcddgZVcj6NZwbUMyZK7KzV rUKzUrk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org