$ rpki-client -vvf rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa File: 21EE9510083211EB81509633C4F9AE02.roa (raw, json) Hash identifier: vg+Ii7oQc1BZ9R2S8fRN7vzSzbRm1aysnBDRd/3/X1Q= Subject key identifier: 14:E3:4F:5C:02:56:45:07:59:19:E2:85:DC:01:1B:C6:A2:E7:3C:15 Certificate issuer: /CN=A91814E9/serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Certificate serial: 0689 Authority key identifier: C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa Signing time: Tue 28 Nov 2023 22:50:17 +0000 ROA not before: Tue 28 Nov 2023 22:50:17 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.192.0/24 maxlen: 24 203.4.193.0/24 maxlen: 24 203.4.194.0/24 maxlen: 24 203.4.195.0/24 maxlen: 24 203.4.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814E9/serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Validity Not Before: Nov 28 22:50:17 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65666ea9-9a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:37:b1:59:39:7d:84:5a:7b:5b:02:0f:93: 08:22:39:f7:0e:50:8f:1e:89:bb:b9:6b:f7:1c:8b: 12:07:47:65:79:1d:1e:f7:51:cc:1f:3d:f9:ef:0a: 90:76:95:47:99:5f:f9:00:76:6f:35:60:c1:87:ae: 63:ec:4c:04:8d:18:17:cc:34:c1:89:46:d2:db:62: d2:39:d5:95:e0:7d:87:e4:a3:c6:ab:11:5c:65:a4: 92:64:3b:40:1a:ba:a3:93:ae:db:d7:fb:9e:0c:95: f6:90:bf:32:50:d9:8a:63:21:90:60:8d:8b:3f:a4: 5a:00:57:7f:27:40:79:91:2d:1d:32:31:ce:56:aa: 27:44:f4:50:3c:57:5f:04:a5:1d:10:a8:d1:32:04: 3d:84:ed:0b:77:d3:cc:80:a7:3f:f3:5f:46:c6:b2: b9:37:42:31:4c:99:a1:f1:3a:8d:1a:bb:6d:c6:c4: 43:e8:d6:a4:19:0c:e1:40:e0:48:cb:4a:e5:b3:6b: 65:a7:1a:55:51:f7:e9:3a:86:72:84:9a:9d:a0:96: 50:1d:9a:fa:e9:ba:49:53:65:1e:76:69:32:81:97: 8e:51:99:9a:cc:df:ba:f0:af:c4:9d:94:4f:ed:a0: ee:a5:7e:0a:7c:20:59:6f:4d:82:38:12:5e:1c:f9: 29:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E3:4F:5C:02:56:45:07:59:19:E2:85:DC:01:1B:C6:A2:E7:3C:15 X509v3 Authority Key Identifier: keyid:C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.192.0-203.4.196.255 Signature Algorithm: sha256WithRSAEncryption 09:57:6f:4a:15:6a:8e:5c:12:ef:f7:1f:93:ac:ef:2f:30:b6: 50:d7:50:03:3e:98:49:9d:27:a6:40:82:07:13:86:ad:dd:1c: 07:c1:34:2f:1e:8b:8d:44:84:8d:4f:62:bc:87:83:ad:9a:ed: 36:d7:97:5e:8a:c4:e5:37:ec:b0:c7:b1:00:ef:22:e4:d4:5a: 6c:ba:fe:fe:fa:30:fa:70:2f:5c:0e:00:47:e0:53:67:bf:f0: ee:1d:a1:85:77:36:ac:7c:15:32:22:82:16:b4:92:80:8d:a9: 4c:ba:03:7c:d4:3c:94:a2:25:95:d9:90:6f:61:0c:ef:58:1f: 23:aa:d6:d7:ac:d3:b6:44:e7:be:43:d7:43:d6:b0:e6:f7:59: df:21:3d:05:1f:7d:99:e3:22:04:32:87:78:e1:eb:f1:b2:4f: c5:98:3b:6e:62:27:64:2b:78:ce:d6:5e:23:50:38:58:b0:c2: 5a:5b:81:13:9a:01:7f:c9:87:c4:d5:94:c6:c3:7d:45:ea:bf: 72:1c:9e:57:1c:3a:02:9f:6b:82:45:67:14:52:43:ce:5f:c6: 7b:e9:05:5d:ca:dd:66:fa:b0:06:e3:4f:cc:aa:dc:57:66:a1: e2:53:cc:63:28:05:e7:1f:2d:f0:e4:fc:72:3f:cc:b1:0a:cf: 70:35:40:b3 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0RTkxMTAvBgNVBAUTKEM0MkZGMUQyRkYzNTI5ODFCQzVGODIyNDBFQzkzOTRF RkFCMzExODYwHhcNMjMxMTI4MjI1MDE3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2NmVhOS05YThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jQ3sVk5fYRae1sCD5MIIjn3DlCPHom7uWv3HIsSB0dleR0e91HMHz357wqQ dpVHmV/5AHZvNWDBh65j7EwEjRgXzDTBiUbS22LSOdWV4H2H5KPGqxFcZaSSZDtA Grqjk67b1/ueDJX2kL8yUNmKYyGQYI2LP6RaAFd/J0B5kS0dMjHOVqonRPRQPFdf BKUdEKjRMgQ9hO0Ld9PMgKc/819GxrK5N0IxTJmh8TqNGrttxsRD6NakGQzhQOBI y0rls2tlpxpVUffpOoZyhJqdoJZQHZr66bpJU2UedmkygZeOUZmazN+68K/EnZRP 7aDupX4KfCBZb02COBJeHPkpVwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBTjT1wC VkUHWRnihdwBG8ai5zwVMB8GA1UdIwQYMBaAFMQv8dL/NSmBvF+CJA7JOU76sxGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRFOS9GRTU3QzJCQzA4 MzAxMUVCQkZFNEM3MzJDNEY5QUUwMi94Q194MHY4MUtZRzhYNElrRHNrNVR2cXpF WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDX3gwdjgxS1lHOFg0SWtEc2s1VHZxekVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE0RTkvRkU1N0MyQkMwODMwMTFFQkJGRTRDNzMyQzRGOUFFMDIvMjFFRTk1MTAw ODMyMTFFQjgxNTA5NjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBssEwAMEAMsExDANBgkqhkiG9w0BAQsFAAOCAQEACVdv ShVqjlwS7/cfk6zvLzC2UNdQAz6YSZ0npkCCBxOGrd0cB8E0Lx6LjUSEjU9ivIeD rZrtNteXXorE5TfssMexAO8i5NRabLr+/vow+nAvXA4AR+BTZ7/w7h2hhXc2rHwV MiKCFrSSgI2pTLoDfNQ8lKIlldmQb2EM71gfI6rW16zTtkTnvkPXQ9aw5vdZ3yE9 BR99meMiBDKHeOHr8bJPxZg7bmInZCt4ztZeI1A4WLDCWluBE5oBf8mHxNWUxsN9 Req/chyeVxw6Ap9rgkVnFFJDzl/Ge+kFXcrdZvqwBuNPzKrcV2ah4lPMYygF5x8t 8OT8cj/MsQrPcDVAsw== -----END CERTIFICATE-----Generated at Sat May 11 01:30:14 2024 by rpki-client on console-ams.rpki-client.org