$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa File: DD0B20D0C0DE11EEB0643379C4F9AE02.roa (raw, json) Hash identifier: 3rBha6jyHTI2W6Ob7qRbLVC3iRSksjPvq0tusm5XVpo= Subject key identifier: 64:2C:C6:B3:E7:A6:C7:C7:D1:3E:3A:A8:B9:1E:CF:8A:D4:8C:EF:62 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 18CF Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa Signing time: Thu 01 Feb 2024 08:49:52 +0000 ROA not before: Thu 01 Feb 2024 08:49:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151731 IP address blocks: 157.15.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6351 (0x18cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Feb 1 08:49:52 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65bb5b30-8c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e2:94:53:89:99:8b:89:ab:b6:65:da:19:f6: 84:c8:f5:91:e5:10:e8:9c:c7:94:4b:50:c9:10:f9: 23:15:d0:b4:7b:e9:e0:db:25:e1:dc:c9:7e:52:f2: 91:e7:87:9d:b5:8a:0a:92:9a:b2:f2:03:89:da:d0: 35:3e:dd:4f:79:96:f8:da:f4:6e:9b:27:8a:00:f0: cb:c3:cc:ec:b0:34:85:2b:2f:c9:1b:98:42:62:b4: e2:ae:e8:91:10:0f:cd:c4:1d:10:e7:b2:40:0e:da: b4:6e:9f:29:13:d0:81:08:67:65:97:ff:a1:37:18: 49:ea:53:cf:e1:e4:31:13:f0:3a:3a:c0:14:4f:8a: a1:a2:7d:ee:79:53:86:f3:4b:5e:52:0c:03:f4:af: be:a6:28:04:8b:6d:e2:13:7a:d9:7c:58:c3:df:48: a3:15:a7:95:0f:c8:37:6e:31:4d:21:db:a2:5c:f0: c2:72:3e:92:cd:11:1d:70:d9:b7:d7:6a:ab:99:e4: b3:19:5b:a7:a6:05:15:28:7c:94:79:07:cd:4c:cc: f7:d7:aa:b1:9b:a7:34:29:14:72:48:89:11:dc:da: 25:15:5a:16:ee:5f:f1:87:02:71:5e:d1:34:01:96: 7f:62:d1:d8:78:10:6f:5c:d1:fb:fb:4f:71:a6:9e: ca:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2C:C6:B3:E7:A6:C7:C7:D1:3E:3A:A8:B9:1E:CF:8A:D4:8C:EF:62 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.90.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:92:23:44:d5:c1:d8:a8:17:ff:24:11:a5:8a:ca:3d:4a:f6: 38:41:da:3d:a4:8e:c9:ef:9b:e9:cf:63:53:4e:c2:e8:62:27: 4d:27:8b:b2:6a:aa:9a:30:4e:c8:21:c6:75:52:ea:36:08:7e: 7c:51:68:4e:e0:34:be:6e:68:95:b2:df:80:7a:3a:e9:73:7f: 2c:ac:c8:d5:8e:8c:1c:90:03:90:90:d2:ff:34:38:c5:12:bf: bd:a3:11:b7:e3:13:e7:9e:a5:4d:07:a6:4e:fe:35:32:b0:0c: 90:7e:31:10:68:d9:db:78:97:a1:4b:a6:92:0f:40:b4:d9:69: 28:3d:7d:55:de:52:be:a6:7a:99:f3:83:00:19:dd:ca:7f:e7: 08:66:b6:1f:fc:8b:be:85:d4:c3:fb:da:db:50:df:f0:4e:d6: e7:38:26:28:ac:fd:79:b8:51:66:81:99:b5:b9:43:b5:3a:d0: 76:80:16:73:f7:b2:28:1b:6b:66:98:f5:3b:d2:ad:ab:a8:1a: 19:b2:ad:b4:f1:36:69:46:c9:c4:e3:6c:44:58:9b:9e:aa:59: a4:ac:05:86:9f:4b:04:f6:37:8b:33:6a:09:92:69:ba:51:70: 54:74:26:00:cd:07:54:28:9a:7e:bd:0b:d9:6e:f0:19:1c:96: 47:12:b9:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwMjAxMDg0OTUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiNWIzMC04YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eKUU4mZi4mrtmXaGfaEyPWR5RDonMeUS1DJEPkjFdC0e+ng2yXh3Ml+UvKR 54edtYoKkpqy8gOJ2tA1Pt1PeZb42vRumyeKAPDLw8zssDSFKy/JG5hCYrTiruiR EA/NxB0Q57JADtq0bp8pE9CBCGdll/+hNxhJ6lPP4eQxE/A6OsAUT4qhon3ueVOG 80teUgwD9K++pigEi23iE3rZfFjD30ijFaeVD8g3bjFNIduiXPDCcj6SzREdcNm3 12qrmeSzGVunpgUVKHyUeQfNTMz316qxm6c0KRRySIkR3NolFVoW7l/xhwJxXtE0 AZZ/YtHYeBBvXNH7+09xpp7KkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQsxrPn psfH0T46qLkez4rUjO9iMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREQwQjIwRDBD MERFMTFFRUIwNjQzMzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD1owDQYJKoZIhvcNAQELBQADggEBADySI0TVwdioF/8k EaWKyj1K9jhB2j2kjsnvm+nPY1NOwuhiJ00ni7JqqpowTsghxnVS6jYIfnxRaE7g NL5uaJWy34B6OulzfyysyNWOjByQA5CQ0v80OMUSv72jEbfjE+eepU0Hpk7+NTKw DJB+MRBo2dt4l6FLppIPQLTZaSg9fVXeUr6mepnzgwAZ3cp/5whmth/8i76F1MP7 2ttQ3/BO1uc4Jiis/Xm4UWaBmbW5Q7U60HaAFnP3sigba2aY9TvSrauoGhmyrbTx NmlGycTjbERYm56qWaSsBYafSwT2N4szagmSabpRcFR0JgDNB1Qomn69C9lu8Bkc lkcSuWo= -----END CERTIFICATE-----Generated at Thu May 16 17:51:24 2024 by rpki-client on console-ams.rpki-client.org