$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa File: C21DA992E83B11EBB3231D5EC4F9AE02.roa (raw, json) Hash identifier: NQcAjbSAwzYhxeooFE30slWX1sySx4pom2WdezOetYg= Subject key identifier: 7A:92:C1:4B:3D:AB:80:5D:86:E7:14:32:1F:E9:58:50:18:E1:D2:1D Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 07FB Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa Signing time: Sat 06 Jul 2024 21:48:57 +0000 ROA not before: Sat 06 Jul 2024 21:48:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135794 IP address blocks: 45.249.55.0/24 maxlen: 24 103.16.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Jul 6 21:48:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6689bbc8-9289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:12:a5:4b:12:ae:ab:58:7c:7f:ad:67:11:e2: 30:2d:87:fe:fa:6c:e4:94:91:6b:a5:60:e9:4e:fb: d6:aa:ab:64:38:a2:84:44:75:bb:21:6b:f7:dd:51: 8a:27:00:dc:8a:13:d6:d2:4e:35:a4:26:df:a6:c3: 2a:80:bd:1b:91:69:c3:dd:b3:41:aa:e3:21:f7:54: 6a:9f:98:f7:d9:3d:50:48:51:b3:07:ea:64:5a:98: 66:00:4c:7e:42:78:fb:9a:dd:e8:54:69:19:e7:d9: db:b7:b1:93:a0:da:92:2b:50:d3:ce:2e:ca:3e:3e: 20:b3:5b:7a:e5:b9:53:7a:1e:a5:51:f3:24:7f:01: 9d:4b:f2:af:85:fd:2b:92:1f:2a:12:b8:b2:bb:29: cd:01:1a:25:5f:03:f6:49:a2:da:2f:67:bb:74:78: 22:43:1b:16:78:c1:2f:1a:ad:a5:a0:c8:87:f4:61: bc:e6:98:68:1e:a4:4b:4d:aa:8b:15:11:fc:ca:3b: d0:06:b7:d9:b3:33:d7:92:15:01:47:0a:f8:19:7f: 9e:22:fa:50:3c:a0:38:7b:83:45:29:44:11:5f:a5: 76:1f:98:76:5b:bf:45:17:d5:01:87:7c:47:45:15: d1:c3:da:2a:d5:99:91:b0:e2:fe:1d:60:d9:e1:60: 82:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:92:C1:4B:3D:AB:80:5D:86:E7:14:32:1F:E9:58:50:18:E1:D2:1D X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.55.0/24 103.16.57.0/24 Signature Algorithm: sha256WithRSAEncryption 75:c3:47:ae:c8:f8:52:43:e0:ec:a3:7d:af:7e:f5:0b:71:98: 52:6c:86:31:0e:4c:2c:41:42:d2:c1:f8:9f:5d:d4:43:96:1c: aa:e5:f6:e4:e5:da:28:b9:ea:d5:25:47:aa:a0:d3:02:fb:1d: 1b:38:8e:6e:98:f4:e9:e1:7c:5c:fb:97:c5:35:f3:fc:19:14: a9:86:be:f9:f8:be:f8:7f:42:4c:f6:f2:87:c8:be:ad:60:a4: 4f:9c:2e:32:58:27:47:88:b0:2b:00:57:31:87:0c:69:fd:fb: 87:92:7f:45:60:d5:3a:75:39:72:95:90:db:4a:0b:fd:c0:7d: 92:91:f0:2d:b9:a6:33:c1:ea:36:70:f6:13:06:0c:60:1d:70: a2:34:22:65:e0:fa:9e:ec:cc:cc:69:63:df:2e:72:ca:92:f7: 1d:eb:0d:a2:5a:a5:cb:23:4d:36:93:f8:f9:5c:9c:0a:1f:3f: 42:37:c0:05:00:73:76:06:ea:1b:34:53:29:61:4d:8c:b7:a3: 9f:87:b9:98:2e:a9:bc:6b:8d:87:3b:96:04:a3:b7:9d:4b:5b: 11:f6:f9:2c:0d:20:be:a1:ca:1f:70:6a:33:6c:23:b8:17:fa: 41:e9:a5:5a:d5:82:da:fa:24:0e:d6:34:b1:12:21:83:19:e6: 21:cc:a0:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjQwNzA2MjE0ODU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5YmJjOC05Mjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBKlSxKuq1h8f61nEeIwLYf++mzklJFrpWDpTvvWqqtkOKKERHW7IWv33VGK JwDcihPW0k41pCbfpsMqgL0bkWnD3bNBquMh91Rqn5j32T1QSFGzB+pkWphmAEx+ Qnj7mt3oVGkZ59nbt7GToNqSK1DTzi7KPj4gs1t65blTeh6lUfMkfwGdS/Kvhf0r kh8qEriyuynNARolXwP2SaLaL2e7dHgiQxsWeMEvGq2loMiH9GG85phoHqRLTaqL FRH8yjvQBrfZszPXkhUBRwr4GX+eIvpQPKA4e4NFKUQRX6V2H5h2W79FF9UBh3xH RRXRw9oq1ZmRsOL+HWDZ4WCC6wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHqSwUs9 q4BdhucUMh/pWFAY4dIdMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE2NEYvM0M5RTJCNUNDMDE0MTFFQTgxNjg5MDY1QzRGOUFFMDIvQzIxREE5OTJF ODNCMTFFQkIzMjMxRDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAt+TcDBABnEDkwDQYJKoZIhvcNAQELBQADggEBAHXDR67I +FJD4Oyjfa9+9QtxmFJshjEOTCxBQtLB+J9d1EOWHKrl9uTl2ii56tUlR6qg0wL7 HRs4jm6Y9OnhfFz7l8U18/wZFKmGvvn4vvh/Qkz28ofIvq1gpE+cLjJYJ0eIsCsA VzGHDGn9+4eSf0Vg1Tp1OXKVkNtKC/3AfZKR8C25pjPB6jZw9hMGDGAdcKI0ImXg +p7szMxpY98ucsqS9x3rDaJapcsjTTaT+PlcnAofP0I3wAUAc3YG6hs0UylhTYy3 o5+HuZguqbxrjYc7lgSjt51LWxH2+SwNIL6hyh9wajNsI7gX+kHppVrVgtr6JA7W NLESIYMZ5iHMoIY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org