$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa File: 21F42C4EFE5511EC9A3F6F31C4F9AE02.roa (raw, json) Hash identifier: j3fOTU+ZyDH2gWmIOUvIDKynWCWvx/O+tM8FAKYOeY4= Subject key identifier: 2F:5D:08:5E:DF:55:42:2B:48:68:2D:D8:27:A0:4D:96:6D:EE:AB:1A Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Certificate serial: 0514 Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa Signing time: Wed 13 Mar 2024 00:43:13 +0000 ROA not before: Wed 13 Mar 2024 00:43:13 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 38451 IP address blocks: 113.197.64.0/24 maxlen: 24 113.197.66.0/24 maxlen: 24 203.84.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151F3B Validity Not Before: Mar 13 00:43:13 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f0f6a1-11e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4f:d6:60:f6:44:d9:41:39:a6:65:e0:00:6b: 08:70:8f:d3:5b:b9:bc:e8:42:0f:f0:23:a9:3b:49: b2:76:de:37:0e:11:69:57:7f:29:df:08:4e:15:40: 00:e2:19:93:5c:05:3e:e0:ab:ea:8a:61:c5:28:1d: 63:29:b8:a2:0a:de:29:1d:3e:1e:9c:e0:d3:04:68: eb:8d:13:b2:e8:83:40:28:57:fd:d8:4e:22:f9:9c: a9:7f:0b:3e:d8:80:7f:1a:d3:7b:75:fb:32:c2:d4: c9:63:b9:36:d1:3d:d0:f6:bc:c8:bd:1c:e8:1a:87: 1d:51:5e:7e:1b:dd:34:dc:ce:18:b2:c0:4c:01:50: e2:c2:97:28:e8:b4:3b:06:90:0e:47:fd:a8:5b:e7: d5:2e:c5:b1:02:1b:b4:4f:e9:1b:d6:c9:a0:61:ab: a9:62:05:17:d1:f7:d3:08:6b:47:7e:af:42:ab:1d: 43:05:bb:c0:79:76:79:b4:82:c0:16:fc:c4:ae:46: 95:a6:64:01:b1:b5:35:c1:be:35:61:0d:e2:5c:ac: ae:56:7f:94:f5:9e:50:32:8b:bb:7e:a7:f3:93:bd: 54:47:97:20:97:2d:32:2b:cb:79:91:2c:a0:94:fe: 5f:6d:06:7f:c9:54:06:77:6b:81:a9:8c:bb:39:da: a3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5D:08:5E:DF:55:42:2B:48:68:2D:D8:27:A0:4D:96:6D:EE:AB:1A X509v3 Authority Key Identifier: keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.64.0/24 113.197.66.0/24 203.84.134.0/23 Signature Algorithm: sha256WithRSAEncryption 20:94:e1:a9:f5:ca:bd:fb:17:06:ea:e6:0c:3b:e4:84:a0:04: f0:41:5c:3c:86:63:17:97:50:5c:75:37:73:d1:f8:e1:9d:08: d7:f8:f8:43:c5:c5:e1:13:cf:a1:30:e8:e3:89:f1:e3:54:e3: 41:18:2c:74:0c:dd:c9:5a:f6:e1:37:27:8d:a3:0e:2d:9d:0d: 58:33:78:17:d1:be:92:ab:6c:dc:c6:73:a8:cc:cb:ea:e4:a6: c1:69:2c:d0:74:e7:52:80:61:a0:11:a6:75:33:99:a1:b2:51: 5d:0f:ad:9d:a9:a1:ee:43:12:bd:67:99:ef:50:a4:c6:8f:9f: ff:94:72:58:72:a5:8f:72:b8:51:7f:80:26:9a:1d:aa:e0:45: 59:b2:f4:bf:0c:c7:76:a7:36:8e:fe:fe:fa:79:ea:b9:a1:de: ab:7a:e4:7e:51:40:90:f1:d7:d7:6f:41:65:3b:db:17:e7:2a: 9b:0c:69:30:1f:05:c9:f2:4e:13:0b:6c:8a:68:b4:b7:bb:56: 11:33:72:16:16:fc:3e:19:37:b4:ee:07:e2:fb:df:fe:ff:0e: f5:2f:c4:e7:5d:05:3e:b9:81:3f:5e:3e:fa:f2:ba:63:c2:86: 58:aa:82:64:ab:db:6e:6c:96:6d:4e:bb:e5:07:0b:0b:24:4c: e9:a7:85:3e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFGM0IxMTAvBgNVBAUTKEJFOTJBQkE0QTAxNDQzMTlFRTZENDVBQjkwOTBEODhE NURBRjM3RkUwHhcNMjQwMzEzMDA0MzEzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZjZhMS0xMWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20/WYPZE2UE5pmXgAGsIcI/TW7m86EIP8COpO0mydt43DhFpV38p3whOFUAA 4hmTXAU+4KvqimHFKB1jKbiiCt4pHT4enODTBGjrjROy6INAKFf92E4i+Zypfws+ 2IB/GtN7dfsywtTJY7k20T3Q9rzIvRzoGocdUV5+G9003M4YssBMAVDiwpco6LQ7 BpAOR/2oW+fVLsWxAhu0T+kb1smgYaupYgUX0ffTCGtHfq9Cqx1DBbvAeXZ5tILA FvzErkaVpmQBsbU1wb41YQ3iXKyuVn+U9Z5QMou7fqfzk71UR5cgly0yK8t5kSyg lP5fbQZ/yVQGd2uBqYy7OdqjOwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFC9dCF7f VUIrSGgt2CegTZZt7qsaMB8GA1UdIwQYMBaAFL6Sq6SgFEMZ7m1Fq5CQ2I1drzf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUYzQi80RjhCOTFCOEI5 QjYxMUVCQjQxMUU5MkVDNEY5QUUwMi92cEtycEtBVVF4bnViVVdya0pEWWpWMnZO XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwS3JwS0FVUXhudWJVV3JrSkRZalYydk5fNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFGM0IvNEY4QjkxQjhCOUI2MTFFQkI0MTFFOTJFQzRGOUFFMDIvMjFGNDJDNEVG RTU1MTFFQzlBM0Y2RjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABxxUADBABxxUIDBAHLVIYwDQYJKoZIhvcNAQELBQADggEB ACCU4an1yr37Fwbq5gw75ISgBPBBXDyGYxeXUFx1N3PR+OGdCNf4+EPFxeETz6Ew 6OOJ8eNU40EYLHQM3cla9uE3J42jDi2dDVgzeBfRvpKrbNzGc6jMy+rkpsFpLNB0 51KAYaARpnUzmaGyUV0PrZ2poe5DEr1nme9QpMaPn/+UclhypY9yuFF/gCaaHarg RVmy9L8Mx3anNo7+/vp56rmh3qt65H5RQJDx19dvQWU72xfnKpsMaTAfBcnyThML bIpotLe7VhEzchYW/D4ZN7TuB+L73/7/DvUvxOddBT65gT9ePvryumPChliqgmSr 225slm1Ou+UHCwskTOmnhT4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:47 2025 by rpki-client