$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/21C5EC42C27411ED9C3E8009C4F9AE02.roa File: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (raw, json) Hash identifier: DPa2SyiYsDe0TvzZ1Z3q6+1dtL6Alr2cq0P1vHVdLaM= Subject key identifier: D6:A3:4C:D8:A1:1F:8A:A4:61:6F:8C:FB:16:7C:71:E2:65:B5:C5:C7 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E6D Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/21C5EC42C27411ED9C3E8009C4F9AE02.roa Signing time: Sun 02 Jun 2024 18:51:48 +0000 ROA not before: Sun 02 Jun 2024 18:51:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 210110 IP address blocks: 43.250.107.0/24 maxlen: 24 103.232.212.0/24 maxlen: 24 103.232.213.0/24 maxlen: 24 2402:3180:8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 2 18:51:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665cbf44-83b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9a:66:36:75:2d:42:29:e6:a0:3c:1b:53:34: 0c:29:80:02:b9:2f:67:a4:a4:6d:c6:a5:3b:fd:1a: 8e:db:ff:0a:24:68:f7:06:9c:5b:c7:50:83:43:47: b3:e7:7e:ab:40:12:b7:7e:78:3a:0d:cd:c6:31:6a: 86:65:96:d2:7d:d8:da:82:dc:dc:8a:c3:d4:b4:9d: 72:d2:ed:43:89:bb:5c:ee:5a:a8:0c:06:3c:f4:93: 04:33:65:8b:cc:db:c7:88:86:d2:6a:98:bd:16:a4: dd:40:5d:31:cf:57:ab:fc:19:d8:4a:3b:11:a2:b3: d5:a4:01:3d:8a:e2:f6:18:22:6f:36:3f:c7:dd:c9: 71:f1:22:a0:33:28:15:62:3e:8a:6e:b6:86:2d:69: df:80:d8:04:c7:d6:05:ff:40:6f:ca:3a:cb:eb:e2: 30:f6:7d:9f:b1:b3:18:84:5e:f8:57:79:46:50:dd: 3f:27:77:87:ad:69:6f:b0:c0:7e:c2:d5:5b:f5:a8: 09:39:a6:68:f4:22:de:a8:59:01:83:06:87:e6:49: 2d:e7:b9:70:8c:dc:0f:0a:7b:42:80:63:c3:0c:d2: fa:8c:1d:3c:98:17:42:0d:07:bd:4e:54:24:bc:3d: c4:f5:e8:14:72:5d:42:a6:83:9f:05:70:4d:88:8d: 4f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A3:4C:D8:A1:1F:8A:A4:61:6F:8C:FB:16:7C:71:E2:65:B5:C5:C7 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/21C5EC42C27411ED9C3E8009C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.107.0/24 103.232.212.0/23 IPv6: 2402:3180:8::/45 Signature Algorithm: sha256WithRSAEncryption b9:bb:c6:9e:de:40:72:1f:58:a2:e0:34:f5:ee:2b:fa:82:24: 40:e3:e5:12:e6:43:02:43:99:49:bf:6e:66:b9:27:38:23:7e: ab:9f:c6:83:a2:94:57:be:81:ed:c2:de:93:06:87:5b:bb:bd: 90:88:2f:d3:db:cf:31:eb:4f:9e:bb:9d:9a:30:72:8f:3f:aa: 77:b5:ac:2e:8d:5f:bd:12:b8:25:a2:29:1b:58:09:b3:4e:0e: 37:71:05:61:f3:36:05:3a:84:9f:e1:96:dc:8c:e2:a2:fd:82: 1b:0a:93:d7:d4:a6:da:c8:87:b2:ea:a3:4c:37:5c:bb:7f:d3: 63:c8:ee:dc:19:c9:4c:dd:92:d7:5b:06:6c:16:67:30:8a:27: 62:de:a3:c3:81:bc:8f:c3:15:ab:d1:1f:a8:0b:b7:34:b6:9e: ac:0b:1a:ed:3f:89:d5:4b:3c:88:52:81:0c:ea:57:c2:e7:af: 09:4d:18:1e:58:f8:ea:88:ef:f2:b1:a0:aa:31:cf:48:d8:88: 83:3f:4c:5a:b2:0e:29:21:ca:11:a2:39:a0:52:dd:6c:a6:4e: 96:70:4d:c9:42:ac:34:b7:5f:d7:52:f9:c8:80:a7:0a:6f:56: bc:e7:64:0e:8b:cb:26:65:3b:9f:6d:74:9e:13:1f:35:07:41: 74:af:06:0d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNjAyMTg1MTQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjYmY0NC04M2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArppmNnUtQinmoDwbUzQMKYACuS9npKRtxqU7/RqO2/8KJGj3Bpxbx1CDQ0ez 536rQBK3fng6Dc3GMWqGZZbSfdjagtzcisPUtJ1y0u1Dibtc7lqoDAY89JMEM2WL zNvHiIbSapi9FqTdQF0xz1er/BnYSjsRorPVpAE9iuL2GCJvNj/H3clx8SKgMygV Yj6KbraGLWnfgNgEx9YF/0BvyjrL6+Iw9n2fsbMYhF74V3lGUN0/J3eHrWlvsMB+ wtVb9agJOaZo9CLeqFkBgwaH5kkt57lwjNwPCntCgGPDDNL6jB08mBdCDQe9TlQk vD3E9egUcl1CpoOfBXBNiI1PjQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNajTNih H4qkYW+M+xZ8ceJltcXHMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMjFDNUVDNDJD Mjc0MTFFRDlDM0U4MDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAr+msDBAFn6NQwDwQCAAIwCQMHAyQCMYAACDANBgkqhkiG 9w0BAQsFAAOCAQEAubvGnt5Ach9YouA09e4r+oIkQOPlEuZDAkOZSb9uZrknOCN+ q5/Gg6KUV76B7cLekwaHW7u9kIgv09vPMetPnrudmjByjz+qd7WsLo1fvRK4JaIp G1gJs04ON3EFYfM2BTqEn+GW3Iziov2CGwqT19Sm2siHsuqjTDdcu3/TY8ju3BnJ TN2S11sGbBZnMIonYt6jw4G8j8MVq9EfqAu3NLaerAsa7T+J1Us8iFKBDOpXwuev CU0YHlj46ojv8rGgqjHPSNiIgz9MWrIOKSHKEaI5oFLdbKZOlnBNyUKsNLdf11L5 yICnCm9WvOdkDovLJmU7n210nhMfNQdBdK8GDQ== -----END CERTIFICATE-----Generated at Thu Jun 6 21:06:50 2024 by rpki-client on console-fra.rpki-client.org