$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/21E1440A1E7711EFB69BE070C4F9AE02.roa File: 21E1440A1E7711EFB69BE070C4F9AE02.roa (raw, json) Hash identifier: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4= Subject key identifier: 18:EE:C8:F8:F3:B1:3D:94:8E:76:FC:B7:C5:3B:DC:AB:B8:1E:7A:FF Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0192 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/21E1440A1E7711EFB69BE070C4F9AE02.roa Signing time: Wed 07 Aug 2024 01:43:28 +0000 ROA not before: Wed 07 Aug 2024 01:43:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152605 IP address blocks: 103.151.46.0/23 maxlen: 24 2400:3fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Aug 7 01:43:28 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66b2d140-8952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:79:56:85:a1:70:cf:96:99:66:3f:b0:01:c4: af:95:fb:fb:4c:37:0c:e4:ee:7f:73:55:be:03:ef: 0f:e4:f5:7f:b6:6b:b7:49:d8:52:f6:bd:18:b7:c1: dd:36:ee:41:6e:e3:b6:f0:07:5a:80:51:a6:25:34: a8:48:2a:ff:ad:9d:d7:86:e0:ae:07:73:92:b1:34: c2:a0:a2:a9:10:9d:25:78:09:ce:04:35:9a:f3:9c: 52:7a:57:ab:19:5c:65:e2:ff:d7:16:d3:ba:c8:d0: 6d:be:af:49:9a:82:12:69:3d:ee:a5:5d:49:97:13: 94:a9:51:6b:58:f5:d5:7e:63:44:41:15:20:c0:b5: 85:cc:de:e7:cd:04:f6:f5:04:b8:76:a3:33:9f:22: 4b:73:ac:48:64:2a:6f:fa:d7:dc:5c:13:ba:fe:24: 57:bf:4b:b8:65:05:72:c6:91:02:61:60:0e:2d:aa: 90:05:d7:b7:27:f6:f6:d2:a5:0d:3e:84:e0:7a:a5: 67:e1:7d:0a:9a:de:0e:b5:77:cf:50:c2:e5:7b:5f: 9f:0d:0c:3a:c1:c8:67:75:13:f0:db:96:75:a9:05: d2:70:e4:f7:8b:ec:67:c9:a9:7e:e2:85:34:11:7f: 49:95:5d:dc:00:1c:98:a6:b5:e7:0d:13:e0:60:49: ef:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EE:C8:F8:F3:B1:3D:94:8E:76:FC:B7:C5:3B:DC:AB:B8:1E:7A:FF X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/21E1440A1E7711EFB69BE070C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.46.0/23 IPv6: 2400:3fa0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:ac:61:13:02:89:1d:ce:76:4c:38:d0:2d:b1:5c:82:2e:46: 62:aa:ff:69:45:fc:83:b7:43:09:22:b3:82:b3:a0:ad:fd:7e: ef:83:e5:8b:28:8b:33:5f:38:0a:66:e6:a6:53:bc:0e:23:2f: 34:41:83:58:05:0d:2d:d0:31:c5:34:f6:96:03:dd:49:3f:04: 1a:c0:58:63:05:cf:e4:75:20:21:f8:d6:a0:c2:da:a5:2f:6a: f1:f9:17:9a:ba:6b:36:3e:12:52:44:9f:09:68:6a:5b:3f:75: 21:d8:8f:da:a7:ac:60:d1:46:c8:e7:de:42:f2:8c:b7:81:1b: d8:c9:83:16:f7:a1:b5:e4:c8:53:8d:92:aa:12:66:b8:cd:c0: a3:d8:8b:ff:2e:90:4f:44:58:43:3a:0f:56:67:aa:ba:ad:ec: 63:3e:3b:3a:76:76:10:e9:10:47:1a:d1:05:b2:36:81:32:4a: 1c:86:43:a0:83:7c:eb:6b:26:a4:ea:07:a9:10:5c:67:88:28: 74:9b:0d:b7:77:1c:4f:a1:3e:65:b8:fd:53:41:d9:49:ca:26: c3:5b:20:cc:6d:84:b6:8b:3d:b4:b1:55:11:6b:c8:e5:cb:5a: 95:50:4d:e0:36:17:fe:a9:da:f9:40:8c:63:09:2c:66:88:9f: 3b:1b:4a:c4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjQwODA3MDE0MzI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyZDE0MC04OTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHlWhaFwz5aZZj+wAcSvlfv7TDcM5O5/c1W+A+8P5PV/tmu3SdhS9r0Yt8Hd Nu5BbuO28AdagFGmJTSoSCr/rZ3XhuCuB3OSsTTCoKKpEJ0leAnOBDWa85xSeler GVxl4v/XFtO6yNBtvq9JmoISaT3upV1JlxOUqVFrWPXVfmNEQRUgwLWFzN7nzQT2 9QS4dqMznyJLc6xIZCpv+tfcXBO6/iRXv0u4ZQVyxpECYWAOLaqQBde3J/b20qUN PoTgeqVn4X0Kmt4OtXfPUMLle1+fDQw6wchndRPw25Z1qQXScOT3i+xnyal+4oU0 EX9JlV3cAByYprXnDRPgYEnvpQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBjuyPjz sT2Ujnb8t8U73Ku4Hnr/MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1N0UvNjAyRDc2RDg1RDczMTFFQ0EzMjQ4ODUzQzRGOUFFMDIvMjFFMTQ0MEEx RTc3MTFFRkI2OUJFMDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnly4wDQQCAAIwBwMFACQAP6AwDQYJKoZIhvcNAQELBQAD ggEBAFysYRMCiR3Odkw40C2xXIIuRmKq/2lF/IO3Qwkis4KzoK39fu+D5YsoizNf OApm5qZTvA4jLzRBg1gFDS3QMcU09pYD3Uk/BBrAWGMFz+R1ICH41qDC2qUvavH5 F5q6azY+ElJEnwloals/dSHYj9qnrGDRRsjn3kLyjLeBG9jJgxb3obXkyFONkqoS ZrjNwKPYi/8ukE9EWEM6D1Znqrqt7GM+Ozp2dhDpEEca0QWyNoEyShyGQ6CDfOtr JqTqB6kQXGeIKHSbDbd3HE+hPmW4/VNB2UnKJsNbIMxthLaLPbSxVRFryOXLWpVQ TeA2F/6p2vlAjGMJLGaInzsbSsQ= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org