$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa File: A7B53200784E11E9AE591940C4F9AE02.roa (raw, json) Hash identifier: XkQIUEc4pKTQgQhlerYuVDZV12Pa2EDZFl7JQK2zFhk= Subject key identifier: 21:EA:A7:BB:46:42:41:29:B3:41:8E:4D:CD:99:AC:BC:B2:87:FA:C6 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 335E Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:47 +0000 ROA not before: Tue 30 Jan 2024 16:12:47 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38158 IP address blocks: 121.100.0.0/21 maxlen: 21 121.100.0.0/24 maxlen: 24 2402:9800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13150 (0x335e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:47 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91fff-b6db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9b:47:1e:6b:48:05:15:66:a6:d1:52:9b:06: 62:41:ec:13:e5:c9:4d:8c:3b:91:5d:1f:33:08:b9: 26:2e:2e:2f:48:4f:24:83:b4:78:15:b4:f8:2e:e8: db:79:79:ac:6c:4d:ff:0d:df:3d:a2:e8:5b:aa:d1: 0e:fe:58:0a:f2:f7:e0:49:0d:fa:88:6a:b2:71:66: dd:8b:f2:a3:7f:c6:dc:c7:f2:03:2c:1b:6e:5d:ea: 3d:cf:33:f8:50:67:f8:ae:dc:da:37:37:81:18:24: 8e:c8:03:54:97:80:a5:d1:7a:c3:51:35:db:56:6b: c8:42:ad:50:23:d2:e8:7d:09:db:2a:43:a8:10:45: 54:5c:2c:52:9d:03:60:cc:ed:0d:3a:cd:2e:2f:cf: 17:4a:2e:29:eb:b8:e6:e7:f5:ea:b0:86:9f:cd:47: 75:25:14:18:87:29:be:30:77:47:fe:99:8e:d4:58: eb:79:65:e2:c8:fe:77:4f:72:c5:e9:64:48:19:22: 8f:da:57:23:a3:28:51:9b:35:2a:47:ef:55:3f:2a: 50:5e:bd:c1:42:63:fc:19:76:95:d6:8b:9d:2f:77: 7e:35:8e:cb:eb:25:55:57:8b:a0:bc:d9:e2:64:11: 5e:b7:a1:61:c9:60:4d:36:c3:6e:45:b7:ea:ef:d6: ff:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EA:A7:BB:46:42:41:29:B3:41:8E:4D:CD:99:AC:BC:B2:87:FA:C6 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.100.0.0/21 IPv6: 2402:9800::/32 Signature Algorithm: sha256WithRSAEncryption 81:1b:72:05:52:c6:d8:8d:4d:6b:6f:22:ea:c6:42:22:63:6f: 73:7a:1b:b6:4a:ae:32:e7:28:19:56:7e:c3:54:da:d1:f1:cb: b9:9a:2f:d8:18:a6:3b:49:47:cc:2e:ac:c8:43:f3:b3:64:b1: da:07:f2:13:1b:78:e0:28:5c:e7:f6:35:df:40:65:60:fc:85: 33:64:45:b9:4d:df:67:3f:b4:67:dd:98:54:79:9f:15:75:e2: 92:11:30:2d:df:a0:23:b6:43:5d:a1:66:b9:67:6e:23:ab:21: 2c:f7:c7:49:99:07:cc:a0:76:7b:c9:5c:01:8d:f7:15:d7:8b: 18:d9:5a:8d:a0:8f:eb:9c:24:54:db:7d:b6:70:5b:eb:8b:c1: a9:18:17:73:d9:f6:b9:3b:d6:0e:ff:c8:9c:1a:2f:a4:6a:63: a7:f2:12:d5:e2:48:64:2f:3c:5e:c7:ce:8e:e6:b4:54:1e:99: 86:87:34:ba:c3:af:33:97:c8:bd:bf:0d:79:2c:26:30:93:77: 4f:3c:cb:b5:c0:77:29:ab:63:2f:d9:e4:6b:4c:e9:f1:fb:ee: ce:43:fe:f4:04:bd:06:a5:da:54:0f:22:b3:98:33:4c:5e:82: fd:d8:60:bf:64:8c:cf:5b:f2:42:e6:a0:85:ce:be:3c:96:11: 21:bb:02:72 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjQ3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZmZi1iNmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZtHHmtIBRVmptFSmwZiQewT5clNjDuRXR8zCLkmLi4vSE8kg7R4FbT4Lujb eXmsbE3/Dd89ouhbqtEO/lgK8vfgSQ36iGqycWbdi/Kjf8bcx/IDLBtuXeo9zzP4 UGf4rtzaNzeBGCSOyANUl4Cl0XrDUTXbVmvIQq1QI9LofQnbKkOoEEVUXCxSnQNg zO0NOs0uL88XSi4p67jm5/XqsIafzUd1JRQYhym+MHdH/pmO1FjreWXiyP53T3LF 6WRIGSKP2lcjoyhRmzUqR+9VPypQXr3BQmP8GXaV1oudL3d+NY7L6yVVV4ugvNni ZBFet6FhyWBNNsNuRbfq79b/0QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCHqp7tG QkEps0GOTc2ZrLyyh/rGMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQTdCNTMyMDA3 ODRFMTFFOUFFNTkxOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN5ZAAwDQQCAAIwBwMFACQCmAAwDQYJKoZIhvcNAQELBQAD ggEBAIEbcgVSxtiNTWtvIurGQiJjb3N6G7ZKrjLnKBlWfsNU2tHxy7maL9gYpjtJ R8wurMhD87NksdoH8hMbeOAoXOf2Nd9AZWD8hTNkRblN32c/tGfdmFR5nxV14pIR MC3foCO2Q12hZrlnbiOrISz3x0mZB8ygdnvJXAGN9xXXixjZWo2gj+ucJFTbfbZw W+uLwakYF3PZ9rk71g7/yJwaL6RqY6fyEtXiSGQvPF7Hzo7mtFQemYaHNLrDrzOX yL2/DXksJjCTd088y7XAdymrYy/Z5GtM6fH77s5D/vQEvQal2lQPIrOYM0xegv3Y YL9kjM9b8kLmoIXOvjyWESG7AnI= -----END CERTIFICATE-----Generated at Thu May 2 17:18:31 2024 by rpki-client on console-ams.rpki-client.org