$ rpki-client -vvf rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/B21979EE9CAF11ECBFF4AF64C4F9AE02.roa File: B21979EE9CAF11ECBFF4AF64C4F9AE02.roa (raw, json) Hash identifier: JP5QB1zVHjOC8Yy1kU6cPSVIQkrzd0sn+DomcdrK1tg= Subject key identifier: 8A:AC:DE:44:25:8C:2D:88:90:58:B2:42:7C:10:2C:64:A2:22:A4:E8 Certificate issuer: /CN=A917FEF3/serialNumber=3840522E056D33751FE796A4395B8D4DFDE58F8C Certificate serial: 056E Authority key identifier: 38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/B21979EE9CAF11ECBFF4AF64C4F9AE02.roa Signing time: Sun 05 May 2024 01:03:59 +0000 ROA not before: Sun 05 May 2024 01:03:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136275 IP address blocks: 103.165.162.0/23 maxlen: 24 2001:df6:6980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.crl rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FEF3/serialNumber=3840522E056D33751FE796A4395B8D4DFDE58F8C Validity Not Before: May 5 01:03:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6636dafe-e02f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:4b:b4:e1:b8:08:ff:15:30:d7:3c:a1:49: 0c:64:31:26:f6:56:a6:eb:ca:d5:e6:25:ef:61:46: 12:b3:a2:8b:7a:d7:9e:51:01:58:69:54:c9:de:9f: 08:30:79:b8:2c:f1:a6:f8:7b:dc:74:b7:38:8c:75: 94:54:e4:91:c7:b4:37:8f:97:47:d4:1a:df:e9:dc: f7:e1:fd:21:78:18:64:bc:54:23:1b:d7:88:aa:a9: c5:ab:0f:0f:12:8a:2d:dc:8b:0e:5a:8c:68:1b:62: c5:e8:f5:8f:8a:3f:1f:ab:4b:0d:94:d2:b6:58:af: 92:53:a5:a4:ac:3d:c3:3b:a9:76:08:3d:f7:9c:f1: 88:23:32:86:0a:f8:fd:44:db:1b:55:fd:24:0b:fe: f3:3f:e7:0e:a5:30:4f:1f:f4:f2:54:80:6d:61:fc: 64:6a:6d:db:8c:da:8c:80:54:71:0f:ed:f9:70:6d: 5f:e3:e4:a1:55:8c:27:39:2a:82:62:be:be:f5:6d: ce:7d:b0:92:d6:01:b9:c4:6a:d0:da:03:06:54:4c: cd:78:65:b3:cc:5c:70:e8:c3:d3:d3:4f:5c:eb:b8: 01:99:a8:86:25:75:92:66:b5:a9:c3:06:9d:31:e2: de:97:a9:f6:b9:01:e4:42:3a:d1:d5:43:d0:89:5f: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:AC:DE:44:25:8C:2D:88:90:58:B2:42:7C:10:2C:64:A2:22:A4:E8 X509v3 Authority Key Identifier: keyid:38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/B21979EE9CAF11ECBFF4AF64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.162.0/23 IPv6: 2001:df6:6980::/48 Signature Algorithm: sha256WithRSAEncryption 82:fb:2f:88:6d:1a:84:a5:8b:fa:17:41:d5:e2:fe:a9:51:30: 52:ba:ba:c1:ee:fc:32:ca:cc:8a:5f:90:9c:e3:fd:e4:e3:0f: 51:cb:d2:ee:d1:fe:2a:ea:d4:aa:f3:70:4e:dc:3f:4d:7a:39: 5e:85:9e:03:90:e6:07:8c:3c:51:d4:76:d7:9f:db:2f:75:65: 51:e4:51:d9:71:37:98:9f:39:b4:9e:28:df:88:92:74:db:a1: cd:8c:51:5c:68:0f:5e:16:ba:86:28:d5:02:4c:36:c9:0d:cb: e0:15:1b:35:ae:b0:92:24:9e:07:2d:17:61:d5:54:bb:63:44: e2:14:1b:d2:36:8c:2b:cc:78:ee:60:3c:ef:69:90:13:c4:75: 39:8a:9b:dd:1e:4e:33:78:8d:64:12:8c:71:fc:fa:5c:d8:47: 72:70:29:9a:44:a4:cf:de:1e:b2:39:e9:fe:d5:b6:bb:bd:32: 7d:94:19:b9:56:d4:62:a2:54:b6:b7:69:c7:e1:e6:cd:ca:9a: 47:11:5c:d6:e8:a3:2c:bd:ee:90:60:31:0f:03:74:49:d0:62: e9:de:69:15:d7:1a:70:4d:5f:3e:0a:8d:c0:bd:cb:ae:df:f7: bb:61:fc:78:37:22:cd:3c:89:7c:82:ee:40:d8:cd:95:23:a9: f5:05:8a:5a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRjMxMTAvBgNVBAUTKDM4NDA1MjJFMDU2RDMzNzUxRkU3OTZBNDM5NUI4RDRE RkRFNThGOEMwHhcNMjQwNTA1MDEwMzU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2ZGFmZS1lMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7JLtOG4CP8VMNc8oUkMZDEm9lam68rV5iXvYUYSs6KLeteeUQFYaVTJ3p8I MHm4LPGm+HvcdLc4jHWUVOSRx7Q3j5dH1Brf6dz34f0heBhkvFQjG9eIqqnFqw8P Eoot3IsOWoxoG2LF6PWPij8fq0sNlNK2WK+SU6WkrD3DO6l2CD33nPGIIzKGCvj9 RNsbVf0kC/7zP+cOpTBPH/TyVIBtYfxkam3bjNqMgFRxD+35cG1f4+ShVYwnOSqC Yr6+9W3OfbCS1gG5xGrQ2gMGVEzNeGWzzFxw6MPT009c67gBmaiGJXWSZrWpwwad MeLel6n2uQHkQjrR1UPQiV9/ewIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIqs3kQl jC2IkFiyQnwQLGSiIqToMB8GA1UdIwQYMBaAFDhAUi4FbTN1H+eWpDlbjU395Y+M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVGMy9ERERDMDFFQzk4 NTQxMUVCQkI0Nzk2NEFDNEY5QUUwMi9PRUJTTGdWdE0zVWY1NWFrT1Z1TlRmM2xq NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09FQlNMZ1Z0TTNVZjU1YWtPVnVOVGYzbGo0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZFRjMvREREQzAxRUM5ODU0MTFFQkJCNDc5NjRBQzRGOUFFMDIvQjIxOTc5RUU5 Q0FGMTFFQ0JGRjRBRjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpaIwDwQCAAIwCQMHACABDfZpgDANBgkqhkiG9w0BAQsF AAOCAQEAgvsviG0ahKWL+hdB1eL+qVEwUrq6we78MsrMil+QnOP95OMPUcvS7tH+ KurUqvNwTtw/TXo5XoWeA5DmB4w8UdR215/bL3VlUeRR2XE3mJ85tJ4o34iSdNuh zYxRXGgPXha6hijVAkw2yQ3L4BUbNa6wkiSeBy0XYdVUu2NE4hQb0jaMK8x47mA8 72mQE8R1OYqb3R5OM3iNZBKMcfz6XNhHcnApmkSkz94esjnp/tW2u70yfZQZuVbU YqJUtrdpx+HmzcqaRxFc1uijLL3ukGAxDwN0SdBi6d5pFdcacE1fPgqNwL3Lrt/3 u2H8eDcizTyJfILuQNjNlSOp9QWKWg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org