$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa File: A20F01CCE1E511EEA0477018C4F9AE02.roa (raw, json) Hash identifier: C724NRcuY6+5rOKZp6BehVoO/AlUI8Z8vFBOmZryKwE= Subject key identifier: F6:31:FF:C4:DF:5C:C8:67:CE:78:E6:4F:4B:E4:24:BE:D2:82:12:26 Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 210D Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa Signing time: Tue 30 Apr 2024 16:24:00 +0000 ROA not before: Tue 30 Apr 2024 16:24:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151801 IP address blocks: 202.134.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8461 (0x210d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: Apr 30 16:24:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66311b20-98e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:5e:59:70:5e:fb:43:65:63:74:80:e5:e5: de:73:a7:de:85:28:44:2c:54:1d:b6:13:96:64:59: 0e:e2:98:b0:d3:b3:31:9a:cf:18:5b:44:04:a5:12: 0d:d7:4c:38:75:5f:37:f1:84:f6:88:25:57:2d:94: 8f:ad:d4:50:86:48:4d:9d:09:65:5e:28:cb:79:85: bf:47:33:75:98:2c:e0:31:b7:01:fa:cd:3c:20:89: 42:e0:a5:72:f2:65:dc:d7:39:30:45:52:a4:3b:8b: af:9f:77:33:48:83:3c:20:4f:cb:11:48:99:1c:e5: b7:e1:72:30:66:31:42:ae:f4:64:51:30:59:20:55: 61:69:92:1c:d6:ab:38:d7:03:c8:b5:4b:4d:c0:3e: b6:6b:08:53:68:55:9c:f8:1a:50:04:c6:3f:09:d0: 25:c9:81:1a:8e:41:54:1b:a3:4f:1d:0b:13:b7:93: 79:ab:38:8c:a5:77:2c:48:9a:4b:11:59:5a:a1:a4: 18:8c:8b:a8:55:9d:50:ad:a5:39:7a:0e:1d:16:04: d1:b0:f4:e5:85:e2:27:e2:d3:dd:f2:ae:72:53:f5: da:85:1e:46:97:1e:be:35:bf:74:29:a0:eb:bb:fa: 8d:59:5e:d7:7a:e4:e1:e0:a9:51:a5:fd:07:0a:94: d7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:31:FF:C4:DF:5C:C8:67:CE:78:E6:4F:4B:E4:24:BE:D2:82:12:26 X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.188.0/24 Signature Algorithm: sha256WithRSAEncryption 86:39:25:84:3e:90:5c:97:1e:d3:ac:2a:9a:a1:f8:4d:ac:b4: 50:50:b8:1a:3e:2a:b5:fa:a0:4c:ef:03:c5:bf:96:ac:20:5f: 05:e7:87:e1:62:a0:83:6e:3a:14:c2:f4:00:93:53:2c:04:26: a4:1d:33:12:39:62:1a:7b:3a:69:44:7b:2c:74:61:9a:86:e3: d7:2c:bc:1f:c3:91:78:b7:4a:75:d6:b2:2a:f7:22:0e:a0:04: 87:25:84:45:0e:5e:00:36:95:26:ea:4e:17:42:5a:76:6c:57: 4f:37:24:4d:39:4b:5c:c0:8f:7b:d0:cd:d2:e7:07:c1:48:d8: bf:a2:2b:c5:87:56:5e:00:52:e3:b0:7b:58:c9:38:79:a6:0e: 46:42:f6:4c:9e:e4:a0:8b:b0:89:e5:f2:27:ee:c9:d0:ad:24: 44:75:d9:b4:eb:31:6b:2a:8f:ea:6a:4a:72:eb:00:4a:e3:57: 29:1f:50:f6:03:4a:0c:3a:22:26:f4:d8:14:b5:65:30:d2:d9: 4c:8f:be:27:48:a2:ef:80:98:f1:fd:e7:00:3b:b3:08:f4:92: 39:b8:fb:6a:74:07:45:a3:29:21:92:01:1b:30:fb:af:ed:db: ad:b4:63:12:59:55:9c:82:52:36:a9:52:34:82:58:3e:44:62: 08:31:82:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjQwNDMwMTYyNDAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMWIyMC05OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqleWXBe+0NlY3SA5eXec6fehShELFQdthOWZFkO4piw07Mxms8YW0QEpRIN 10w4dV838YT2iCVXLZSPrdRQhkhNnQllXijLeYW/RzN1mCzgMbcB+s08IIlC4KVy 8mXc1zkwRVKkO4uvn3czSIM8IE/LEUiZHOW34XIwZjFCrvRkUTBZIFVhaZIc1qs4 1wPItUtNwD62awhTaFWc+BpQBMY/CdAlyYEajkFUG6NPHQsTt5N5qziMpXcsSJpL EVlaoaQYjIuoVZ1QraU5eg4dFgTRsPTlheIn4tPd8q5yU/XahR5Glx6+Nb90KaDr u/qNWV7XeuTh4KlRpf0HCpTXzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYx/8Tf XMhnznjmT0vkJL7SghImMB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQTIwRjAxQ0NF MUU1MTFFRUEwNDc3MDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhrwwDQYJKoZIhvcNAQELBQADggEBAIY5JYQ+kFyXHtOs Kpqh+E2stFBQuBo+KrX6oEzvA8W/lqwgXwXnh+FioINuOhTC9ACTUywEJqQdMxI5 Yhp7OmlEeyx0YZqG49csvB/DkXi3SnXWsir3Ig6gBIclhEUOXgA2lSbqThdCWnZs V083JE05S1zAj3vQzdLnB8FI2L+iK8WHVl4AUuOwe1jJOHmmDkZC9kye5KCLsInl 8ifuydCtJER12bTrMWsqj+pqSnLrAErjVykfUPYDSgw6Iib02BS1ZTDS2UyPvidI ou+AmPH95wA7swj0kjm4+2p0B0WjKSGSARsw+6/t2620YxJZVZyCUjapUjSCWD5E Yggxgls= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org