$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3012D070FE8611EB8A6F565EC4F9AE02.roa File: 3012D070FE8611EB8A6F565EC4F9AE02.roa (raw, json) Hash identifier: jzV64xJMRX8hhFQSjhCn9vInL0kB+Ix9p3zh/+uUm0U= Subject key identifier: 03:6C:1F:8F:61:5F:A3:4B:4D:73:BB:D9:48:1E:FE:81:36:53:8A:B9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7178 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3012D070FE8611EB8A6F565EC4F9AE02.roa Signing time: Wed 10 May 2023 16:48:25 +0000 ROA not before: Wed 10 May 2023 16:48:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 38185 IP address blocks: 220.156.184.0/24 maxlen: 24 220.156.185.0/24 maxlen: 24 220.156.186.0/24 maxlen: 24 220.156.187.0/24 maxlen: 24 220.156.188.0/24 maxlen: 24 220.156.189.0/24 maxlen: 24 220.156.190.0/24 maxlen: 24 220.156.191.0/24 maxlen: 24 2404:4100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29048 (0x7178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:48:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcad9-c7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2a:67:70:59:c7:a5:96:03:89:e7:d6:e9:9c: 1e:67:b3:d1:04:9d:98:85:3b:ca:84:2e:15:80:e3: 3f:10:4f:95:46:5e:75:d6:f0:1e:45:56:92:b2:9d: c7:5c:b4:18:a0:d0:ba:f0:1c:9c:24:67:fa:8b:03: 1a:57:ad:3e:f8:0f:2d:f4:1e:44:1b:95:8b:0c:3c: 55:dd:94:36:f1:53:f9:68:cb:05:4a:74:7c:6d:43: b4:f8:58:0c:55:af:d0:8f:17:92:e1:98:18:54:dc: fb:e9:00:2e:a6:62:1f:0d:33:25:7e:fc:74:62:bd: 46:f2:5a:ce:4c:2e:bc:fe:65:be:43:97:49:f6:cf: 65:a8:60:20:8b:5a:8b:66:2f:b2:9d:95:95:e2:72: b1:53:8c:0b:8d:84:2e:f7:ac:b6:fe:e3:1a:aa:19: 3e:82:0c:fc:0d:3e:49:fe:cc:fa:d6:78:ee:91:cc: 05:e5:bc:57:b5:41:b0:95:9b:04:77:5d:44:7a:0d: fc:9f:17:be:e1:f5:fb:68:66:37:77:a1:68:f1:3f: 45:94:fb:76:88:b9:50:04:61:6f:9f:19:31:38:5c: 36:39:cb:58:9a:52:b0:00:31:68:b0:20:6b:d9:33: 4a:30:15:65:27:d0:23:ae:9f:b3:25:ac:6f:cb:0d: d0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6C:1F:8F:61:5F:A3:4B:4D:73:BB:D9:48:1E:FE:81:36:53:8A:B9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3012D070FE8611EB8A6F565EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.156.184.0/21 IPv6: 2404:4100::/48 Signature Algorithm: sha256WithRSAEncryption 39:62:cf:f6:1c:f1:91:7d:29:4e:f8:a9:44:d5:e3:bc:2d:5e: 8a:ea:3c:f7:71:32:06:c9:7e:93:2e:39:f9:dc:14:2b:05:aa: f1:cf:7e:63:5c:7c:5b:ff:a8:12:99:ea:b7:ec:3f:1d:a1:b9: 5c:53:b4:9c:5b:81:f6:27:d9:fc:39:6e:02:b5:86:66:4e:a1: 6f:e4:e3:6c:7a:a7:ce:fd:ab:5b:98:c0:2d:7f:68:17:50:e1: 79:37:e2:40:36:1f:bc:d9:ea:24:7a:53:cf:02:b1:ec:fe:0f: 50:89:aa:c9:b9:b6:45:17:d5:d0:50:53:a5:05:b0:09:f8:bf: 49:d7:22:34:cf:88:f4:04:04:75:01:d0:17:36:4c:87:c0:f7: 4c:4d:ac:4a:9d:d3:42:16:cb:d4:1c:11:3b:40:ed:9f:a4:9d: 43:71:56:42:68:9e:db:d2:97:c6:5e:c6:bb:ca:68:0c:b3:2a: ff:2c:36:0e:2a:71:f7:e6:f2:98:a6:bf:28:1a:8b:03:38:0d: a5:1e:ce:69:34:a3:d7:52:6f:b4:2f:9a:64:62:f2:ec:ef:3f: 4b:3b:73:d0:18:c8:47:61:38:36:14:ee:84:52:a7:ad:28:46: 9c:9a:1a:99:af:ca:2e:6c:8e:73:39:58:1f:cb:83:6b:65:df: 56:8f:8b:63 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0ODI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2FkOS1jN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApipncFnHpZYDiefW6ZweZ7PRBJ2YhTvKhC4VgOM/EE+VRl511vAeRVaSsp3H XLQYoNC68BycJGf6iwMaV60++A8t9B5EG5WLDDxV3ZQ28VP5aMsFSnR8bUO0+FgM Va/QjxeS4ZgYVNz76QAupmIfDTMlfvx0Yr1G8lrOTC68/mW+Q5dJ9s9lqGAgi1qL Zi+ynZWV4nKxU4wLjYQu96y2/uMaqhk+ggz8DT5J/sz61njukcwF5bxXtUGwlZsE d11Eeg38nxe+4fX7aGY3d6Fo8T9FlPt2iLlQBGFvnxkxOFw2OctYmlKwADFosCBr 2TNKMBVlJ9Ajrp+zJaxvyw3QjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFANsH49h X6NLTXO72Uge/oE2U4q5MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzAxMkQwNzBG RTg2MTFFQjhBNkY1NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAPcnLgwDwQCAAIwCQMHACQEQQAAADANBgkqhkiG9w0BAQsF AAOCAQEAOWLP9hzxkX0pTvipRNXjvC1eiuo893EyBsl+ky45+dwUKwWq8c9+Y1x8 W/+oEpnqt+w/HaG5XFO0nFuB9ifZ/DluArWGZk6hb+TjbHqnzv2rW5jALX9oF1Dh eTfiQDYfvNnqJHpTzwKx7P4PUImqybm2RRfV0FBTpQWwCfi/SdciNM+I9AQEdQHQ FzZMh8D3TE2sSp3TQhbL1BwRO0Dtn6SdQ3FWQmie29KXxl7Gu8poDLMq/yw2Dipx 9+bymKa/KBqLAzgNpR7OaTSj11JvtC+aZGLy7O8/Sztz0BjIR2E4NhTuhFKnrShG nJoama/KLmyOczlYH8uDa2XfVo+LYw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org