$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa File: 21B7F8F2932111EEA205F93BC4F9AE02.roa (raw, json) Hash identifier: nEDFyS/HIGXZKDPNBDfKYocWNoy10Mn/fwBBYTQP9ZY= Subject key identifier: 31:53:83:96:C2:21:E8:F0:C2:8B:9D:76:13:D9:BB:F5:5D:B9:92:2A Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 022D Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa Signing time: Tue 05 Dec 2023 03:48:20 +0000 ROA not before: Tue 05 Dec 2023 03:48:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 45.113.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: Dec 5 03:48:20 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=656e9d84-e110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:82:38:da:7c:df:4b:b7:27:b9:e2:30:f4: 5e:b2:48:7a:0c:36:10:79:00:15:24:e0:10:93:59: ad:be:e5:43:2c:82:5b:e0:2c:95:3f:f6:07:8b:6f: e8:c9:c3:48:cd:dc:f7:db:f2:f0:c5:93:ef:78:72: 06:b6:b7:e7:3d:14:17:27:9a:15:f0:5b:d2:33:66: 7c:9d:e5:9d:50:44:03:75:a2:33:c8:af:c2:70:56: 03:8f:ae:ea:3b:ae:c5:c1:c9:17:b1:68:e7:9f:c6: c0:85:dd:a2:ba:f6:a7:89:8f:74:0d:99:70:29:fb: 03:e0:e3:4a:ec:46:06:eb:05:ff:60:2b:41:dc:55: 4a:20:27:01:ce:a2:c3:fb:2d:6a:0a:f9:f7:7c:4d: 0b:6b:b3:3d:75:c6:bd:b8:4c:52:a4:b0:1a:6d:42: 6d:cf:95:55:7d:71:9e:0a:9f:4a:65:11:43:c3:d5: 4e:6b:17:96:bb:c2:0a:fe:c3:e2:47:d6:aa:c8:7c: 6e:e0:9d:bc:8a:05:f7:df:d0:02:bf:ae:db:76:58: 22:f0:b6:21:d1:25:17:4c:7d:fa:6c:46:2b:60:49: 20:ed:46:ff:87:bf:23:0e:aa:94:81:29:40:74:89: 94:bd:9a:9c:31:4b:56:94:a9:e4:52:93:65:34:9e: 55:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:53:83:96:C2:21:E8:F0:C2:8B:9D:76:13:D9:BB:F5:5D:B9:92:2A X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.83.0/24 Signature Algorithm: sha256WithRSAEncryption 87:64:1b:df:be:f2:c7:f3:ce:b4:53:79:e6:da:41:01:7d:d8: 1a:cf:be:85:4d:86:52:13:3b:f4:fb:1c:88:31:cc:ce:33:08: 68:f9:a1:5d:c3:e8:2f:88:f7:fe:1d:f6:f2:84:0a:d6:38:4e: 09:b5:f8:86:fa:be:16:ec:4b:54:69:04:34:98:dd:df:41:3a: 29:8b:39:51:5c:81:ae:92:53:90:f8:d4:1b:76:4d:f2:fc:41: 82:aa:d8:97:aa:77:31:f8:08:85:42:21:1a:7a:39:f2:03:59: 5d:cb:1d:7d:32:48:68:3a:d7:44:84:ad:dd:ab:b1:70:a3:30: c6:26:94:b0:41:2a:7a:e3:ff:c0:5f:7e:d9:1b:48:ae:24:41: 62:b4:74:bd:40:48:c1:3d:d7:c8:f7:9f:7f:40:ab:f4:a5:7b: b4:0d:fc:dd:14:0d:c1:e5:67:eb:67:77:25:39:e8:59:2b:d7: cd:81:b0:71:1a:c7:ae:9b:d2:2d:1a:0c:5e:58:e0:10:6a:70: 87:c4:40:90:9a:1a:60:5c:6c:69:11:03:d5:4f:59:0b:16:1d: 3c:7b:23:bb:9d:8d:6b:98:db:9f:42:5a:94:37:a1:5e:06:ca: c3:f7:ed:91:72:b9:69:42:1e:e9:b3:b5:d1:66:a7:09:1b:99: a8:7b:19:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjMxMjA1MDM0ODIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlOWQ4NC1lMTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz02CONp830u3J7niMPReskh6DDYQeQAVJOAQk1mtvuVDLIJb4CyVP/YHi2/o ycNIzdz32/LwxZPveHIGtrfnPRQXJ5oV8FvSM2Z8neWdUEQDdaIzyK/CcFYDj67q O67FwckXsWjnn8bAhd2iuvaniY90DZlwKfsD4ONK7EYG6wX/YCtB3FVKICcBzqLD +y1qCvn3fE0La7M9dca9uExSpLAabUJtz5VVfXGeCp9KZRFDw9VOaxeWu8IK/sPi R9aqyHxu4J28igX339ACv67bdlgi8LYh0SUXTH36bEYrYEkg7Ub/h78jDqqUgSlA dImUvZqcMUtWlKnkUpNlNJ5VyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFTg5bC IejwwouddhPZu/VduZIqMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvMjFCN0Y4RjI5 MzIxMTFFRUEyMDVGOTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcVMwDQYJKoZIhvcNAQELBQADggEBAIdkG9++8sfzzrRT eebaQQF92BrPvoVNhlITO/T7HIgxzM4zCGj5oV3D6C+I9/4d9vKECtY4Tgm1+Ib6 vhbsS1RpBDSY3d9BOimLOVFcga6SU5D41Bt2TfL8QYKq2JeqdzH4CIVCIRp6OfID WV3LHX0ySGg610SErd2rsXCjMMYmlLBBKnrj/8BfftkbSK4kQWK0dL1ASME918j3 n39Aq/Sle7QN/N0UDcHlZ+tndyU56Fkr182BsHEax66b0i0aDF5Y4BBqcIfEQJCa GmBcbGkRA9VPWQsWHTx7I7udjWuY259CWpQ3oV4GysP37ZFyuWlCHumztdFmpwkb mah7GUI= -----END CERTIFICATE-----Generated at Wed May 1 05:59:06 2024 by rpki-client on console-fra.rpki-client.org