$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa File: 65D706B213FA11EB92A6FE61C4F9AE02.roa (raw, json) Hash identifier: kG6/eRcVA0S6D0hlRWDoVqumGoj2BI3RDcilpxj1Cyc= Subject key identifier: AF:08:06:0E:BF:C6:CB:C3:F7:E5:3F:B8:D1:3C:2C:AE:08:FC:F3:3A Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 0665 Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa Signing time: Tue 28 Nov 2023 23:10:57 +0000 ROA not before: Tue 28 Nov 2023 23:10:57 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 10143 IP address blocks: 203.21.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Oct 2024 21:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Nov 28 23:10:57 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65667381-cfa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:dc:aa:48:ca:55:4b:e1:7f:0a:22:12:6e: 3f:fb:bc:1d:d8:f0:30:d1:6c:b1:c0:b9:a7:a7:c0: 99:94:df:57:73:d4:49:75:cf:41:1f:e9:e0:ea:0d: d1:b9:66:fe:63:81:23:79:a9:4c:52:19:1a:b0:a4: de:30:07:f5:70:5c:7a:f0:b2:46:1c:fd:75:1d:80: 8d:a3:b0:fa:ca:39:a0:48:16:e1:9b:bd:48:63:73: 68:4d:46:72:0e:b8:33:02:4a:48:ff:4e:89:9e:c2: 5c:b4:f9:f5:1b:ee:3c:9c:74:4d:af:20:71:23:c5: 80:8d:a9:19:c3:dd:26:e6:80:86:7b:b7:75:29:11: 87:21:ee:dc:9b:20:b0:6a:71:da:de:b3:a7:27:65: 47:99:a0:63:f2:8f:73:5b:cc:02:39:4b:64:b1:6e: ef:4c:d5:25:f5:16:e2:62:3a:e8:85:bd:12:7a:8f: 92:9e:b3:38:96:af:16:76:1b:8a:6c:cc:09:05:2d: e9:fc:0e:43:41:7a:d1:2b:be:b2:93:c2:6a:2c:0d: 6e:bd:32:9c:da:af:41:44:ec:b1:d0:08:bf:77:1e: a6:ca:3d:35:ca:b1:e7:ce:f7:03:72:c7:a7:07:c9: ce:03:8d:f1:67:7f:d9:ec:ff:43:c4:01:cc:3d:84: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:08:06:0E:BF:C6:CB:C3:F7:E5:3F:B8:D1:3C:2C:AE:08:FC:F3:3A X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.207.0/24 Signature Algorithm: sha256WithRSAEncryption 80:87:25:21:e9:52:2f:c5:4e:f6:6b:3b:a8:8a:56:42:e3:12: 84:83:b3:19:ef:e8:ea:a4:39:57:5e:5b:46:04:bf:00:df:a2: 9f:26:cf:f5:b0:91:07:fc:5d:6f:6f:9c:c0:81:f8:e2:94:48: c5:70:de:71:7d:93:2f:ea:4b:68:ba:b2:59:5e:91:ad:60:dd: ab:61:b3:18:40:8e:e6:27:91:fb:51:4e:a9:f8:e3:14:94:e5: a0:0d:68:b6:42:5f:48:77:6a:0a:a7:8d:6e:50:0f:36:96:03: 72:be:b9:e3:4a:81:e8:4a:51:ae:18:c0:a0:88:cb:e1:d8:37: d0:cb:9d:02:ba:90:d1:cf:93:d2:42:0c:fe:30:ee:df:47:00: 9f:2f:66:5f:2b:6b:de:e4:6a:bc:15:45:77:ef:95:c8:fb:e3: b2:96:4e:70:d3:a2:66:38:96:b1:5e:aa:e2:a5:57:bd:6b:33: 7c:d7:88:24:c2:e1:3e:b9:c9:32:c7:b7:aa:1b:24:2b:29:3d: 8d:e0:b9:a2:b8:95:a7:a8:ce:de:65:89:69:bb:76:86:18:3b: f3:ec:35:52:46:1f:23:ca:3d:11:7b:32:52:ce:1e:f8:2e:af: 9c:81:18:51:04:c6:b8:11:7b:ca:fb:fb:37:58:23:30:3d:10: 65:ac:5e:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjMxMTI4MjMxMDU3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2NzM4MS1jZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqXcqkjKVUvhfwoiEm4/+7wd2PAw0WyxwLmnp8CZlN9Xc9RJdc9BH+ng6g3R uWb+Y4EjealMUhkasKTeMAf1cFx68LJGHP11HYCNo7D6yjmgSBbhm71IY3NoTUZy DrgzAkpI/06JnsJctPn1G+48nHRNryBxI8WAjakZw90m5oCGe7d1KRGHIe7cmyCw anHa3rOnJ2VHmaBj8o9zW8wCOUtksW7vTNUl9RbiYjrohb0Seo+SnrM4lq8WdhuK bMwJBS3p/A5DQXrRK76yk8JqLA1uvTKc2q9BROyx0Ai/dx6myj01yrHnzvcDcsen B8nOA43xZ3/Z7P9DxAHMPYSlQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK8IBg6/ xsvD9+U/uNE8LK4I/PM6MB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDNTIvNjUyODM2RTgxMzhBMTFFQjk3QUVCNDIwQzRGOUFFMDIvNjVENzA2QjIx M0ZBMTFFQjkyQTZGRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFc8wDQYJKoZIhvcNAQELBQADggEBAICHJSHpUi/FTvZr O6iKVkLjEoSDsxnv6OqkOVdeW0YEvwDfop8mz/WwkQf8XW9vnMCB+OKUSMVw3nF9 ky/qS2i6slleka1g3athsxhAjuYnkftRTqn44xSU5aANaLZCX0h3agqnjW5QDzaW A3K+ueNKgehKUa4YwKCIy+HYN9DLnQK6kNHPk9JCDP4w7t9HAJ8vZl8ra97karwV RXfvlcj747KWTnDTomY4lrFequKlV71rM3zXiCTC4T65yTLHt6obJCspPY3guaK4 laeozt5liWm7doYYO/PsNVJGHyPKPRF7MlLOHvgur5yBGFEExrgRe8r7+zdYIzA9 EGWsXrw= -----END CERTIFICATE-----Generated at Thu Sep 26 23:13:35 2024 by rpki-client on console-fra.rpki-client.org