$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa File: 65D706B213FA11EB92A6FE61C4F9AE02.roa (raw, json) Hash identifier: HDw255HT5Qq+WExObAcGQTxVC/IMJorhiCibpd+wpAY= Subject key identifier: 17:98:EB:33:C3:EA:E4:A4:68:7C:80:18:49:05:86:CC:29:B9:6A:B4 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 071B Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa Signing time: Thu 14 Nov 2024 21:40:53 +0000 ROA not before: Thu 14 Nov 2024 21:40:53 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 10143 IP address blocks: 203.21.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Nov 14 21:40:53 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67366e64-bee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:0c:d4:9c:0a:fa:d6:11:f9:0c:46:4b:eb: df:b5:ac:79:6b:6e:03:f8:0f:30:f4:45:aa:cf:04: 57:b1:bf:df:8f:9c:94:4e:25:25:97:6d:1c:78:4b: e2:15:39:96:48:04:20:87:62:b0:dd:6a:6c:8c:eb: 13:4c:ae:a7:2e:bc:e4:a9:c5:67:c8:7e:d5:49:d1: 7d:af:10:fa:ba:03:2d:16:23:b1:d9:01:52:c6:ff: 20:ee:33:ec:ca:7f:b2:e7:e6:e2:2b:05:c8:9a:32: f5:34:73:72:ae:c0:13:f2:e4:6a:3b:46:1d:e8:13: 2a:a4:2c:f1:52:46:46:57:23:64:7c:45:cc:5a:5b: 90:7e:30:bf:56:14:4b:16:f1:4a:bc:50:7a:e5:1a: f3:08:e5:3e:0a:45:c5:39:ed:15:b3:e4:0f:d0:37: 24:77:bc:b8:ea:c3:76:6a:87:b3:b1:cf:96:da:42: e8:32:d8:80:e8:6f:dc:4f:c3:90:e8:b2:38:ee:bd: dd:ed:82:01:be:ff:02:2f:e1:4d:1e:f6:a4:36:0d: 06:c3:17:71:af:a2:51:bb:4e:b8:a0:99:25:95:e0: c9:09:da:bd:ee:21:57:f5:fd:f1:16:5e:08:81:e3: d1:9a:c6:70:96:f6:76:d7:0f:50:f5:3c:c7:82:e1: 4b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:98:EB:33:C3:EA:E4:A4:68:7C:80:18:49:05:86:CC:29:B9:6A:B4 X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.207.0/24 Signature Algorithm: sha256WithRSAEncryption a9:38:d8:c2:81:e0:c5:87:10:9d:6a:d3:ec:06:62:98:cf:e9: 8e:68:ed:6f:6f:ea:8c:28:be:0c:14:62:94:93:3c:f5:79:bd: f2:0a:52:71:ea:d9:58:4b:59:68:3b:34:b5:d0:30:40:3a:c2: c7:69:53:fa:26:7d:7b:95:6f:35:dc:75:d6:7f:57:92:1b:8b: 7d:c3:20:4d:be:aa:55:ca:91:84:d7:01:ac:c8:37:f5:c2:63: b6:67:9a:a6:a8:c2:69:ca:b7:ae:57:51:6f:ae:8f:a6:4f:f1: 6d:56:7a:b7:58:8a:ce:59:50:46:2d:a9:84:a3:bd:7e:bb:4b: 10:bb:2e:98:b5:57:e0:49:37:6b:ad:73:92:db:06:9d:2b:40: a3:d8:a1:ef:79:0e:a8:85:8e:61:b3:e6:92:85:98:da:61:66: a1:2e:df:5a:01:28:f2:62:97:70:d8:80:ac:7e:73:f1:e6:12: 0d:a5:5c:2c:d8:45:d0:4a:39:58:04:ff:0f:c1:64:af:5e:04: 26:36:19:25:af:e2:34:b7:ce:cb:c3:f2:07:0b:d1:89:7b:4d: e8:a1:03:9d:42:66:35:22:36:cb:3a:e1:96:2a:f9:47:ef:1d: 4b:d8:11:9c:14:1c:f7:0b:af:c1:01:90:2f:02:b1:67:06:69: 83:1a:22:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjQxMTE0MjE0MDUzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NmU2NC1iZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6AM1JwK+tYR+QxGS+vftax5a24D+A8w9EWqzwRXsb/fj5yUTiUll20ceEvi FTmWSAQgh2Kw3WpsjOsTTK6nLrzkqcVnyH7VSdF9rxD6ugMtFiOx2QFSxv8g7jPs yn+y5+biKwXImjL1NHNyrsAT8uRqO0Yd6BMqpCzxUkZGVyNkfEXMWluQfjC/VhRL FvFKvFB65RrzCOU+CkXFOe0Vs+QP0Dckd7y46sN2aoezsc+W2kLoMtiA6G/cT8OQ 6LI47r3d7YIBvv8CL+FNHvakNg0Gwxdxr6JRu064oJklleDJCdq97iFX9f3xFl4I gePRmsZwlvZ21w9Q9TzHguFL4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBeY6zPD 6uSkaHyAGEkFhswpuWq0MB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDNTIvNjUyODM2RTgxMzhBMTFFQjk3QUVCNDIwQzRGOUFFMDIvNjVENzA2QjIx M0ZBMTFFQjkyQTZGRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFc8wDQYJKoZIhvcNAQELBQADggEBAKk42MKB4MWHEJ1q 0+wGYpjP6Y5o7W9v6owovgwUYpSTPPV5vfIKUnHq2VhLWWg7NLXQMEA6wsdpU/om fXuVbzXcddZ/V5Ibi33DIE2+qlXKkYTXAazIN/XCY7ZnmqaowmnKt65XUW+uj6ZP 8W1WerdYis5ZUEYtqYSjvX67SxC7Lpi1V+BJN2utc5LbBp0rQKPYoe95DqiFjmGz 5pKFmNphZqEu31oBKPJil3DYgKx+c/HmEg2lXCzYRdBKOVgE/w/BZK9eBCY2GSWv 4jS3zsvD8gcL0Yl7TeihA51CZjUiNss64ZYq+UfvHUvYEZwUHPcLr8EBkC8CsWcG aYMaIo4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org