$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa File: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (raw, json) Hash identifier: do/t1hxLNAObKeP+h7lIyAYLzs1i37SVx22K4ntYzxc= Subject key identifier: 6E:52:E6:F7:F6:21:10:82:C7:5A:8B:23:61:EB:38:AD:FE:8A:A7:50 Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 3370 Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa Signing time: Mon 20 Nov 2023 15:10:46 +0000 ROA not before: Mon 20 Nov 2023 15:10:46 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38869 IP address blocks: 121.101.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13168 (0x3370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Nov 20 15:10:46 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655b76f5-ba18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b2:17:6f:a2:8b:cb:22:43:c7:d9:32:9c:34: be:1e:3a:78:5c:39:54:24:3c:75:9c:2d:d3:f3:2f: 73:88:6a:60:c3:a0:01:4a:7c:ed:96:ef:78:a8:ed: cb:2b:94:fa:ba:b1:c4:8b:d9:3d:d5:c0:3b:2c:ba: 17:b6:7e:c5:00:11:20:d0:ed:f3:53:db:81:e4:d5: c4:31:b0:65:2b:5f:fe:64:81:0c:69:9c:c0:aa:72: 35:0d:b3:9a:00:f7:be:ca:8c:bb:d5:11:da:4d:3b: 0d:be:3a:e7:5c:9b:b8:49:6b:8e:46:a0:36:06:61: 84:a2:de:ff:1f:4f:d7:bd:f3:55:5d:b4:7d:78:34: 24:e2:14:93:17:00:a1:f3:bb:f0:8d:b2:9b:d1:d4: 67:3d:98:e4:3f:05:04:6c:a0:ca:f6:ae:06:67:05: 6a:1a:d0:58:36:bf:73:04:f6:a3:24:8b:4e:56:eb: ff:81:46:b5:10:15:ee:8b:9c:b0:92:dc:47:18:60: 2c:83:29:f7:73:e4:48:21:d5:8e:36:da:91:35:38: 35:76:c5:84:6f:85:bf:87:ee:c1:61:c7:0c:e9:9b: ae:bf:24:6c:03:66:aa:64:39:19:23:17:70:f9:69: ea:7c:68:25:02:2f:eb:ce:82:f7:e3:fe:58:7d:ef: 0b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:52:E6:F7:F6:21:10:82:C7:5A:8B:23:61:EB:38:AD:FE:8A:A7:50 X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.101.176.0/21 Signature Algorithm: sha256WithRSAEncryption b0:c3:99:57:29:8b:40:68:bc:8c:3d:1f:c4:79:8a:69:15:e8: 4e:03:dd:28:76:05:19:b9:d4:36:bc:9f:5b:bc:04:cc:cb:2a: fe:93:95:7d:7c:d0:7f:07:67:b6:1c:fc:75:83:ee:5e:73:66: fa:aa:9d:e8:d8:82:e7:81:00:e5:39:57:16:25:80:97:b9:e7: c7:38:69:83:2f:f7:07:ae:d5:da:41:d4:2a:e9:64:fa:ab:a4: 4c:2f:fa:87:d9:b4:fa:9e:18:ff:24:c1:fa:07:3a:2b:97:20: c6:1a:15:14:db:bc:a8:ea:59:db:53:d1:82:d2:f6:83:6f:11: a9:41:73:3b:fb:e6:b6:ac:8f:df:13:34:10:d3:7a:fd:76:67: 50:77:26:0f:77:d6:60:18:0e:13:19:f4:40:56:d4:c0:e4:30: 84:81:05:dc:45:03:71:14:d2:6d:ff:32:c4:bd:36:c3:f0:3f: e7:e8:47:06:59:ed:40:9a:7f:ff:9b:6a:c9:ea:5c:20:5b:a5: 7a:b1:af:ec:4d:e1:88:f9:3a:5a:94:84:0e:f5:15:3f:0d:8c: e5:c6:02:92:5e:df:c0:d9:60:b6:7f:af:db:2b:14:54:31:03: 4e:59:b2:24:ab:6e:ec:b3:ce:ad:f3:bb:40:d1:1d:55:c9:0f: 16:7d:e4:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjMxMTIwMTUxMDQ2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTViNzZmNS1iYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLIXb6KLyyJDx9kynDS+Hjp4XDlUJDx1nC3T8y9ziGpgw6ABSnztlu94qO3L K5T6urHEi9k91cA7LLoXtn7FABEg0O3zU9uB5NXEMbBlK1/+ZIEMaZzAqnI1DbOa APe+yoy71RHaTTsNvjrnXJu4SWuORqA2BmGEot7/H0/XvfNVXbR9eDQk4hSTFwCh 87vwjbKb0dRnPZjkPwUEbKDK9q4GZwVqGtBYNr9zBPajJItOVuv/gUa1EBXui5yw ktxHGGAsgyn3c+RIIdWONtqRNTg1dsWEb4W/h+7BYccM6ZuuvyRsA2aqZDkZIxdw +WnqfGglAi/rzoL34/5Yfe8LmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5S5vf2 IRCCx1qLI2HrOK3+iqdQMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VGQjgvRDk4MEExNzIxRDk1MTFFMjkyMTUwRTdFMDhCMDJDRDIvRTY4RTBGRDQw NzdCMTFFQjk4Q0E1RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN5ZbAwDQYJKoZIhvcNAQELBQADggEBALDDmVcpi0BovIw9 H8R5imkV6E4D3Sh2BRm51Da8n1u8BMzLKv6TlX180H8HZ7Yc/HWD7l5zZvqqnejY gueBAOU5VxYlgJe558c4aYMv9weu1dpB1CrpZPqrpEwv+ofZtPqeGP8kwfoHOiuX IMYaFRTbvKjqWdtT0YLS9oNvEalBczv75rasj98TNBDTev12Z1B3Jg931mAYDhMZ 9EBW1MDkMISBBdxFA3EU0m3/MsS9NsPwP+foRwZZ7UCaf/+basnqXCBbpXqxr+xN 4Yj5OlqUhA71FT8NjOXGApJe38DZYLZ/r9srFFQxA05ZsiSrbuyzzq3zu0DRHVXJ DxZ95OQ= -----END CERTIFICATE-----Generated at Fri May 31 16:40:58 2024 by rpki-client on console-ams.rpki-client.org