$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/214B85D87C0311EBB2F8C86CC4F9AE02.roa File: 214B85D87C0311EBB2F8C86CC4F9AE02.roa (raw, json) Hash identifier: CqC2WS4k+jAfUMh1262qZ3ivnWlVTCbJ81XP/w8JHWg= Subject key identifier: D8:19:A1:23:AE:B8:3E:F0:CF:97:4C:0A:A4:34:03:BB:19:C8:B2:FC Certificate issuer: /CN=A912BAA5/serialNumber=A5367BE14241559C1EB87D0D5EA3EEC593EDCFEC Certificate serial: 3384 Authority key identifier: A5:36:7B:E1:42:41:55:9C:1E:B8:7D:0D:5E:A3:EE:C5:93:ED:CF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTZ74UJBVZweuH0NXqPuxZPtz-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/214B85D87C0311EBB2F8C86CC4F9AE02.roa Signing time: Mon 18 Dec 2023 15:00:44 +0000 ROA not before: Mon 18 Dec 2023 15:00:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24556 IP address blocks: 103.199.108.0/22 maxlen: 24 137.59.48.0/22 maxlen: 24 202.191.120.0/21 maxlen: 24 2404:3f80::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/pTZ74UJBVZweuH0NXqPuxZPtz-w.crl rsync://rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/pTZ74UJBVZweuH0NXqPuxZPtz-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTZ74UJBVZweuH0NXqPuxZPtz-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13188 (0x3384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAA5/serialNumber=A5367BE14241559C1EB87D0D5EA3EEC593EDCFEC Validity Not Before: Dec 18 15:00:44 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65805e9c-3349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:0c:dd:9e:2a:9c:44:40:9b:cb:4e:80:1c: 0b:49:ac:21:4b:1f:d9:ac:2b:a1:f1:7e:09:13:04: 0e:09:9b:2f:ed:89:f9:ea:62:de:72:ed:18:2b:d3: 5c:e7:75:b4:28:62:70:e7:60:2a:ff:d1:e6:d1:13: 3b:d9:1c:cb:92:8f:11:87:e2:b5:3c:ef:6e:d7:44: eb:be:36:b3:4f:cc:d2:03:ac:9b:10:ff:0b:9e:fc: d2:2f:02:62:25:5a:78:8b:02:72:1f:8d:47:de:7f: 1e:a3:5c:b8:ac:25:66:38:40:ff:bf:c2:e3:49:64: d3:73:34:7c:16:7a:57:09:13:42:96:01:2e:0e:75: 64:38:50:21:05:42:12:fb:1c:87:17:cd:4d:73:1c: 5b:46:72:c2:5f:1a:1a:0c:fd:e7:9f:5f:ec:ff:8b: a7:8c:d6:86:aa:56:e3:2e:80:99:8a:fa:8a:c8:70: b6:db:24:cc:47:e1:63:87:3f:b2:b5:aa:8f:75:f1: 7e:17:78:f4:86:00:a5:08:60:cb:54:54:98:bf:bb: 42:40:92:08:39:6e:e8:af:3d:39:d8:e2:7a:8d:08: fd:1a:48:23:0e:91:5f:f1:18:89:98:56:70:5d:55: 68:58:83:65:d8:ec:7d:98:38:4b:a1:b8:8d:d5:53: ca:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:19:A1:23:AE:B8:3E:F0:CF:97:4C:0A:A4:34:03:BB:19:C8:B2:FC X509v3 Authority Key Identifier: keyid:A5:36:7B:E1:42:41:55:9C:1E:B8:7D:0D:5E:A3:EE:C5:93:ED:CF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/pTZ74UJBVZweuH0NXqPuxZPtz-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTZ74UJBVZweuH0NXqPuxZPtz-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAA5/E67F63641D8F11E2B54E43EF08B02CD2/214B85D87C0311EBB2F8C86CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.108.0/22 137.59.48.0/22 202.191.120.0/21 IPv6: 2404:3f80::/32 Signature Algorithm: sha256WithRSAEncryption 1a:32:fc:f4:f9:6f:49:92:cd:c7:8b:4c:97:2b:3b:f4:ec:0f: 08:4e:f9:8e:5e:28:82:ee:3e:75:f2:53:82:3e:3e:cb:b5:af: 58:3a:f8:52:26:69:ee:1e:a8:98:ab:8f:d1:46:57:9b:d0:aa: 69:86:4f:ef:98:ed:ad:b6:7b:ea:74:cf:6f:0c:b2:5b:de:fc: 5b:5d:3e:6f:26:df:ad:2e:e3:6e:ce:03:1d:45:9b:8b:ce:9f: fa:91:eb:da:6f:21:e0:c6:b3:b0:99:99:e7:fb:af:ea:66:c4: 6c:9a:2c:04:58:f1:0b:2e:86:8d:6c:e6:e0:f8:e8:f0:da:0c: 91:24:5e:d7:6a:42:2a:27:b9:4b:9e:e3:16:69:8d:0a:80:d9: 20:d8:e7:5f:bb:3a:18:5f:1c:3b:36:47:65:fb:25:4c:2d:e1: c3:00:4a:2f:84:6e:a0:3e:aa:ab:31:76:79:f7:81:5b:6f:04: 8d:94:ce:c7:41:ed:a0:b1:d4:cd:06:d0:c7:51:85:ee:f6:b7: be:25:b9:e7:d8:77:88:e4:45:46:77:13:b1:5e:61:2c:86:61: c6:5a:f3:1d:46:1e:1a:ba:7c:f8:34:3b:c1:a0:a5:2c:e3:c0: a3:ee:b4:42:00:58:c6:b0:2f:16:9d:95:fb:2d:96:d0:e5:fa: ed:41:7d:8d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICM4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQTUxMTAvBgNVBAUTKEE1MzY3QkUxNDI0MTU1OUMxRUI4N0QwRDVFQTNFRUM1 OTNFRENGRUMwHhcNMjMxMjE4MTUwMDQ0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwNWU5Yy0zMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCMM3Z4qnERAm8tOgBwLSawhSx/ZrCuh8X4JEwQOCZsv7Yn56mLecu0YK9Nc 53W0KGJw52Aq/9Hm0RM72RzLko8Rh+K1PO9u10TrvjazT8zSA6ybEP8LnvzSLwJi JVp4iwJyH41H3n8eo1y4rCVmOED/v8LjSWTTczR8FnpXCRNClgEuDnVkOFAhBUIS +xyHF81NcxxbRnLCXxoaDP3nn1/s/4unjNaGqlbjLoCZivqKyHC22yTMR+Fjhz+y taqPdfF+F3j0hgClCGDLVFSYv7tCQJIIOW7orz052OJ6jQj9GkgjDpFf8RiJmFZw XVVoWINl2Ox9mDhLobiN1VPK2QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFNgZoSOu uD7wz5dMCqQ0A7sZyLL8MB8GA1UdIwQYMBaAFKU2e+FCQVWcHrh9DV6j7sWT7c/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBNS9FNjdGNjM2NDFE OEYxMUUyQjU0RTQzRUYwOEIwMkNEMi9wVFo3NFVKQlZad2V1SDBOWHFQdXhaUHR6 LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BUWjc0VUpCVlp3ZXVIME5YcVB1eFpQdHotdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJBQTUvRTY3RjYzNjQxRDhGMTFFMkI1NEU0M0VGMDhCMDJDRDIvMjE0Qjg1RDg3 QzAzMTFFQkIyRjhDODZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnx2wDBAKJOzADBAPKv3gwDQQCAAIwBwMFACQEP4AwDQYJ KoZIhvcNAQELBQADggEBABoy/PT5b0mSzceLTJcrO/TsDwhO+Y5eKILuPnXyU4I+ Psu1r1g6+FImae4eqJirj9FGV5vQqmmGT++Y7a22e+p0z28Mslve/FtdPm8m360u 427OAx1Fm4vOn/qR69pvIeDGs7CZmef7r+pmxGyaLARY8Qsuho1s5uD46PDaDJEk XtdqQionuUue4xZpjQqA2SDY51+7OhhfHDs2R2X7JUwt4cMASi+EbqA+qqsxdnn3 gVtvBI2UzsdB7aCx1M0G0MdRhe72t74luefYd4jkRUZ3E7FeYSyGYcZa8x1GHhq6 fPg0O8GgpSzjwKPutEIAWMawLxadlfstltDl+u1BfY0= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:45 2024 by rpki-client on console-fra.rpki-client.org