$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa File: 21047C70672211EF998AEF2BC4F9AE02.roa (raw, json) Hash identifier: f5VfDcB3d9zHr/WXZ8PP2XQ84b5VP9He8VEWcfe+B7o= Subject key identifier: D2:75:0D:F0:09:54:28:23:A2:EE:66:87:FF:E1:2E:87:6E:E7:AB:8B Certificate issuer: /CN=A91D63EA/serialNumber=5E7DD05A9C1BE04444ACE03FE4A92026804D4B2A Certificate serial: 9A Authority key identifier: 5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa Signing time: Fri 30 Aug 2024 22:49:35 +0000 ROA not before: Fri 30 Aug 2024 22:49:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149283 IP address blocks: 113.192.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/Xn3QWpwb4ERErOA_5KkgJoBNSyo.crl rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/Xn3QWpwb4ERErOA_5KkgJoBNSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63EA/serialNumber=5E7DD05A9C1BE04444ACE03FE4A92026804D4B2A Validity Not Before: Aug 30 22:49:35 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66d24c7f-09e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1b:3f:89:3b:9a:b0:8a:1f:a8:20:00:7a:82: e5:ea:b6:3b:f3:46:d2:3e:b8:7f:77:1e:80:85:d7: 24:c8:4f:bd:90:d5:e2:08:50:ad:5b:b7:da:20:34: 3f:a1:bb:a5:ee:97:b3:20:ff:33:25:7e:8f:e0:90: 51:80:a4:bf:72:47:90:1a:40:16:3f:22:bf:14:d0: 65:bf:93:2c:b2:c3:ec:cb:dc:a1:42:6e:a7:3c:31: f6:e5:eb:33:98:42:bb:48:fa:7b:c8:2b:2e:a2:c6: 4e:78:5e:e4:2c:8c:f6:0c:f6:71:51:88:0e:c0:dd: 2c:5d:64:09:72:de:c6:99:01:a4:c6:63:b8:b2:71: 55:ab:67:8b:1b:0a:81:87:92:2a:bd:b3:99:e3:30: 5e:86:71:62:30:aa:9f:b3:21:be:1f:b0:3b:9c:77: 9d:48:cf:70:97:69:91:eb:81:06:f1:8f:d3:68:7b: 54:a6:9a:62:06:e7:7c:9f:78:65:4b:3e:94:8b:4b: 87:5c:6f:68:f1:25:95:9f:5f:61:3e:8f:74:ef:17: 80:96:5a:e9:7b:8c:68:0f:57:d0:5a:b1:0e:28:38: 59:14:e7:a4:a7:fe:b9:a0:1b:04:25:7d:3e:7b:6f: c9:1f:c2:19:5b:1c:26:d1:81:7c:59:94:77:b8:6c: 92:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:75:0D:F0:09:54:28:23:A2:EE:66:87:FF:E1:2E:87:6E:E7:AB:8B X509v3 Authority Key Identifier: keyid:5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/Xn3QWpwb4ERErOA_5KkgJoBNSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.192.46.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:44:fe:be:27:59:b7:ea:11:c9:bd:f8:50:2b:6b:f0:ed:45: 71:e7:89:54:36:1b:21:50:84:e9:9e:ca:c3:ae:93:79:fd:3a: 15:55:26:7e:8c:76:ff:78:dc:b5:26:e3:ca:4d:5b:67:4b:c6: 09:8e:86:b6:72:e3:db:c4:65:1b:11:8c:52:74:f2:26:e3:ef: 65:bc:17:57:a4:e9:43:27:fd:1d:f8:bb:e4:7e:2f:13:04:a6: 46:45:43:d4:25:9b:fc:2e:4d:eb:83:3e:6b:fb:79:a2:a4:1d: ac:36:ce:90:9a:45:28:58:3b:29:ad:90:05:67:2f:44:5b:a4: a1:98:5c:0c:2b:62:c6:5c:da:4a:1f:76:5b:41:ac:95:a6:d1: 99:d0:44:cd:d0:c6:e7:28:39:00:0f:be:51:10:d7:67:ab:3f: 17:48:54:5a:dc:cf:32:a3:f3:e9:37:eb:50:53:f6:7d:69:cc: 36:38:bc:6f:7c:97:9d:54:aa:38:ad:e3:96:89:6a:a3:30:aa: 16:32:0d:ba:28:e7:59:fa:0e:1b:7d:d7:c0:76:2c:46:dc:d0: 00:d3:c1:29:da:cc:19:4e:a7:97:64:01:03:6b:4b:62:f6:2b: bd:04:ce:5b:93:66:0a:9e:9e:bb:72:c4:88:20:c5:b3:ed:18: d5:14:d7:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzRUExMTAvBgNVBAUTKDVFN0REMDVBOUMxQkUwNDQ0NEFDRTAzRkU0QTkyMDI2 ODA0RDRCMkEwHhcNMjQwODMwMjI0OTM1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNGM3Zi0wOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxs/iTuasIofqCAAeoLl6rY780bSPrh/dx6AhdckyE+9kNXiCFCtW7faIDQ/ obul7pezIP8zJX6P4JBRgKS/ckeQGkAWPyK/FNBlv5MsssPsy9yhQm6nPDH25esz mEK7SPp7yCsuosZOeF7kLIz2DPZxUYgOwN0sXWQJct7GmQGkxmO4snFVq2eLGwqB h5IqvbOZ4zBehnFiMKqfsyG+H7A7nHedSM9wl2mR64EG8Y/TaHtUpppiBud8n3hl Sz6Ui0uHXG9o8SWVn19hPo907xeAllrpe4xoD1fQWrEOKDhZFOekp/65oBsEJX0+ e2/JH8IZWxwm0YF8WZR3uGySwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJ1DfAJ VCgjou5mh//hLodu56uLMB8GA1UdIwQYMBaAFF590FqcG+BERKzgP+SpICaATUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNFQS81MEE0Mjg5RTk1 RkYxMUVFQTZBNEY3MEFDNEY5QUUwMi9YbjNRV3B3YjRFUkVyT0FfNUtrZ0pvQk5T eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huM1FXcHdiNEVSRXJPQV81S2tnSm9CTlN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYzRUEvNTBBNDI4OUU5NUZGMTFFRUE2QTRGNzBBQzRGOUFFMDIvMjEwNDdDNzA2 NzIyMTFFRjk5OEFFRjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABxwC4wDQYJKoZIhvcNAQELBQADggEBAIxE/r4nWbfqEcm9 +FAra/DtRXHniVQ2GyFQhOmeysOuk3n9OhVVJn6Mdv943LUm48pNW2dLxgmOhrZy 49vEZRsRjFJ08ibj72W8F1ek6UMn/R34u+R+LxMEpkZFQ9Qlm/wuTeuDPmv7eaKk Haw2zpCaRShYOymtkAVnL0RbpKGYXAwrYsZc2kofdltBrJWm0ZnQRM3QxucoOQAP vlEQ12erPxdIVFrczzKj8+k361BT9n1pzDY4vG98l51Uqjit45aJaqMwqhYyDboo 51n6Dht918B2LEbc0ADTwSnazBlOp5dkAQNrS2L2K70EzluTZgqenrtyxIggxbPt GNUU1w0= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org