$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/21A731506C9B11ED93A7513AC4F9AE02.roa File: 21A731506C9B11ED93A7513AC4F9AE02.roa (raw, json) Hash identifier: D6hZ82kqI3gEDbK8exfuc/x28TmMvw1CFOZGzNulQ38= Subject key identifier: 0F:F3:8A:FE:3F:B9:D1:B3:AB:F8:46:8C:55:4D:03:8A:D9:E0:9A:83 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0AB3 Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/21A731506C9B11ED93A7513AC4F9AE02.roa Signing time: Tue 12 Dec 2023 20:07:53 +0000 ROA not before: Tue 12 Dec 2023 20:07:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 31898 IP address blocks: 203.149.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Dec 12 20:07:53 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6578bd99-c607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:da:d1:43:f8:89:fc:15:e0:e9:16:62:89: 51:5e:bb:58:30:f8:5d:ca:46:b7:44:0b:74:4f:e0: 7f:ef:f6:5b:c9:ca:fc:6c:26:77:87:c4:99:2b:89: f5:84:f1:7d:c6:0d:05:27:e7:b8:cc:a3:c1:22:f9: 99:c3:45:52:8b:eb:36:75:6d:b6:72:9b:58:87:ed: 5a:fa:f0:30:da:28:7b:79:d2:b4:90:b1:40:e2:a0: d7:a8:79:a3:63:9c:74:3f:e6:42:6e:3e:13:9f:3d: b6:e2:f5:08:62:aa:82:b1:03:a5:11:2e:43:c9:14: b1:75:4f:a3:53:2e:5a:11:b1:94:6a:e3:53:ee:d4: 23:58:05:91:52:f9:fe:3c:ff:ec:a0:ac:22:01:a2: ef:1b:b8:98:6b:19:43:c0:d0:38:b4:0d:2a:a0:4f: ea:9a:f2:d7:ae:70:30:cd:c1:2b:ad:05:b9:7f:d1: 2c:56:61:df:79:6f:07:31:28:e6:54:d2:2f:bb:44: 0c:2d:33:f4:46:fa:91:ad:39:ca:ee:dc:34:89:88: 90:2f:54:7c:fc:60:21:0c:dc:62:14:d0:76:26:2a: a0:13:6e:6d:df:79:af:51:4b:2c:4b:2d:96:46:e4: 7b:73:08:2e:6d:d4:dc:58:e5:ef:bd:12:90:df:80: 9f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F3:8A:FE:3F:B9:D1:B3:AB:F8:46:8C:55:4D:03:8A:D9:E0:9A:83 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/21A731506C9B11ED93A7513AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.149.202.0/24 Signature Algorithm: sha256WithRSAEncryption 96:57:a9:ff:79:ee:6c:12:ef:d9:1f:2a:a1:85:6b:f0:26:bd: 75:7a:fb:6f:6e:89:2f:64:8e:6e:76:8e:94:bb:e0:21:c7:11: 48:48:5f:7c:a2:96:28:b1:45:36:c6:de:98:0a:fd:98:77:1e: 1a:44:a1:f8:5c:37:a6:b8:e1:b6:ba:63:66:c1:f5:cf:a3:7a: 1a:1e:f5:d4:e7:09:c3:25:00:d9:d8:1e:f3:80:b0:95:c4:29: 8c:8b:a5:28:30:bf:7d:1b:28:e6:ea:3c:19:d3:09:e8:29:31: 15:12:e5:e9:6a:f9:34:e4:29:08:df:09:3c:b7:14:5a:9d:c3: b2:66:8a:4e:e9:ed:20:d7:ea:20:17:df:52:c1:cb:47:aa:3e: d4:da:20:46:d0:76:bf:b1:a8:ed:7e:0a:60:a7:91:0d:c6:7d: a6:c3:e8:06:cd:9f:e4:d5:c6:38:10:71:54:28:08:e0:cf:7e: b0:2e:55:24:de:a8:fd:2f:32:da:80:bc:ab:24:ec:df:3d:e5: dd:e8:9c:7d:13:68:2a:2e:1d:bf:a3:34:d6:d6:59:fa:35:0a: 7c:56:be:49:4f:fb:2f:63:b8:8b:05:e6:42:77:3c:f7:fe:0c: a6:76:81:5b:22:42:83:50:e9:3b:07:0b:64:b4:ed:77:3f:c7: 6b:f1:aa:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjMxMjEyMjAwNzUzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4YmQ5OS1jNjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Wva0UP4ifwV4OkWYolRXrtYMPhdyka3RAt0T+B/7/Zbycr8bCZ3h8SZK4n1 hPF9xg0FJ+e4zKPBIvmZw0VSi+s2dW22cptYh+1a+vAw2ih7edK0kLFA4qDXqHmj Y5x0P+ZCbj4Tnz224vUIYqqCsQOlES5DyRSxdU+jUy5aEbGUauNT7tQjWAWRUvn+ PP/soKwiAaLvG7iYaxlDwNA4tA0qoE/qmvLXrnAwzcErrQW5f9EsVmHfeW8HMSjm VNIvu0QMLTP0RvqRrTnK7tw0iYiQL1R8/GAhDNxiFNB2JiqgE25t33mvUUssSy2W RuR7cwgubdTcWOXvvRKQ34CfXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA/ziv4/ udGzq/hGjFVNA4rZ4JqDMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMjFBNzMxNTA2 QzlCMTFFRDkzQTc1MTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlcowDQYJKoZIhvcNAQELBQADggEBAJZXqf957mwS79kf KqGFa/AmvXV6+29uiS9kjm52jpS74CHHEUhIX3yiliixRTbG3pgK/Zh3HhpEofhc N6a44ba6Y2bB9c+jehoe9dTnCcMlANnYHvOAsJXEKYyLpSgwv30bKObqPBnTCegp MRUS5elq+TTkKQjfCTy3FFqdw7Jmik7p7SDX6iAX31LBy0eqPtTaIEbQdr+xqO1+ CmCnkQ3GfabD6AbNn+TVxjgQcVQoCODPfrAuVSTeqP0vMtqAvKsk7N895d3onH0T aCouHb+jNNbWWfo1CnxWvklP+y9juIsF5kJ3PPf+DKZ2gVsiQoNQ6TsHC2S07Xc/ x2vxqoY= -----END CERTIFICATE-----Generated at Tue Apr 30 21:37:54 2024 by rpki-client on console-fra.rpki-client.org