$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/F5615BC09B4111EF9EB3AD3AC4F9AE02.roa File: F5615BC09B4111EF9EB3AD3AC4F9AE02.roa (raw, json) Hash identifier: KuZiHEyUV0CeaeHddhgBK7aSzXEF5C2uTrzqkybZGQI= Subject key identifier: 40:DC:D1:D5:C3:82:E4:8F:BA:E5:87:F0:24:24:3F:92:1B:83:32:0C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1BD1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/F5615BC09B4111EF9EB3AD3AC4F9AE02.roa Signing time: Tue 05 Nov 2024 06:48:26 +0000 ROA not before: Tue 05 Nov 2024 06:48:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152516 IP address blocks: 157.20.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7121 (0x1bd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Nov 5 06:48:26 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6729bfba-597a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:2d:f9:43:be:fd:fd:36:15:62:54:29:2e: 37:f4:54:ea:76:a0:2c:cd:85:0a:65:6e:84:67:3b: e0:ec:93:17:16:bc:6c:e1:0d:6a:50:37:b8:a1:0b: f3:42:ed:78:ce:cc:99:c2:69:1a:c3:52:54:aa:26: d1:1e:ff:74:82:a4:95:66:b1:14:ee:1b:3b:c6:84: af:2c:9f:3a:18:8a:c3:41:8e:66:d2:0a:fd:87:d3: e2:46:f2:78:a2:2e:33:61:9b:fa:86:7a:00:76:bb: 16:1b:80:64:39:cb:5a:ee:7b:62:ec:3d:ce:1c:9f: 00:f0:ec:3e:8c:36:b9:d5:41:32:ea:4e:6d:43:28: e6:6d:76:27:99:62:9d:8b:44:67:10:43:cc:f0:28: 85:d7:0e:92:94:e8:83:c4:8f:93:46:9e:65:3b:0d: ea:51:db:ff:48:ad:15:3e:4d:ea:44:c7:d9:03:30: 39:76:d4:0c:b2:6c:67:e5:8b:b5:49:92:4c:4f:3d: 94:97:44:a3:80:8f:c9:3d:fc:df:e5:1f:5f:df:69: 63:0b:4a:a5:25:82:19:f4:d4:a9:60:8f:9b:bd:b7: 3c:aa:33:82:4e:d0:e6:18:4c:0c:cd:a6:22:5e:f1: 64:36:ac:7e:86:86:33:8a:12:fd:ce:61:70:7d:9e: 53:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DC:D1:D5:C3:82:E4:8F:BA:E5:87:F0:24:24:3F:92:1B:83:32:0C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/F5615BC09B4111EF9EB3AD3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.228.0/23 Signature Algorithm: sha256WithRSAEncryption bc:8f:92:b7:aa:7c:bc:de:47:d7:3f:38:dd:00:1d:3d:ff:3f: 79:49:06:55:96:2a:66:87:a5:f3:8f:b5:07:96:da:d7:3e:70: 73:c5:0b:1f:b8:ef:c1:01:a1:20:05:fc:66:1c:9e:a2:4d:ef: 22:ca:39:15:c7:9c:fe:11:65:b9:5e:f7:78:dc:ba:92:a0:32: e5:34:7b:e8:c6:60:3f:4e:25:bf:6b:75:1f:fe:e3:fa:5c:ff: 5c:0e:19:46:df:78:5d:50:e6:15:d2:62:d8:63:3c:7f:ec:cf: 18:90:c7:c3:ea:3d:70:c8:36:4b:0e:81:4f:c5:c9:3c:d2:12: eb:41:d6:57:dc:a6:55:12:47:94:8c:14:8c:7c:72:0b:23:a2: 69:d5:be:f0:23:d1:b8:b1:94:38:04:fd:b1:92:bb:5e:24:1f: ee:0e:46:fe:84:c0:0a:5b:e7:60:d9:1a:79:09:69:39:ae:c7: 17:d8:cf:ff:df:7a:61:c6:fe:85:8f:9f:b5:1b:bc:2d:c6:33: a2:66:d8:93:ce:77:25:20:06:9b:c5:83:b9:a5:2d:77:25:6b: fe:25:6f:f0:76:d4:dd:aa:77:66:c6:3b:d2:9d:bc:55:7a:90: 3c:b6:63:e5:b4:04:30:96:11:b5:db:46:29:42:97:db:ac:53: 57:b2:7b:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMTA1MDY0ODI2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5YmZiYS01OTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQIt+UO+/f02FWJUKS439FTqdqAszYUKZW6EZzvg7JMXFrxs4Q1qUDe4oQvz Qu14zsyZwmkaw1JUqibRHv90gqSVZrEU7hs7xoSvLJ86GIrDQY5m0gr9h9PiRvJ4 oi4zYZv6hnoAdrsWG4BkOcta7nti7D3OHJ8A8Ow+jDa51UEy6k5tQyjmbXYnmWKd i0RnEEPM8CiF1w6SlOiDxI+TRp5lOw3qUdv/SK0VPk3qRMfZAzA5dtQMsmxn5Yu1 SZJMTz2Ul0SjgI/JPfzf5R9f32ljC0qlJYIZ9NSpYI+bvbc8qjOCTtDmGEwMzaYi XvFkNqx+hoYzihL9zmFwfZ5THQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEDc0dXD guSPuuWH8CQkP5IbgzIMMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjU2MTVCQzA5 QjQxMTFFRjlFQjNBRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFOQwDQYJKoZIhvcNAQELBQADggEBALyPkreqfLzeR9c/ ON0AHT3/P3lJBlWWKmaHpfOPtQeW2tc+cHPFCx+478EBoSAF/GYcnqJN7yLKORXH nP4RZble93jcupKgMuU0e+jGYD9OJb9rdR/+4/pc/1wOGUbfeF1Q5hXSYthjPH/s zxiQx8PqPXDINksOgU/FyTzSEutB1lfcplUSR5SMFIx8cgsjomnVvvAj0bixlDgE /bGSu14kH+4ORv6EwApb52DZGnkJaTmuxxfYz//femHG/oWPn7UbvC3GM6Jm2JPO dyUgBpvFg7mlLXcla/4lb/B21N2qd2bGO9KdvFV6kDy2Y+W0BDCWEbXbRilCl9us U1eye9c= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org