$ rpki-client -vvf rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa File: 21EE9510083211EB81509633C4F9AE02.roa (raw, json) Hash identifier: wjVXkLI0cRiF7TL9Zg9ZcPtd+sgFgSN+IcqPU2UoUBo= Subject key identifier: 2D:F9:2B:1A:BA:2A:5C:45:BF:FA:88:32:38:76:33:70:4C:84:82:62 Certificate issuer: /CN=A91814E9/serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Certificate serial: 073F Authority key identifier: C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa Signing time: Tue 12 Nov 2024 21:19:51 +0000 ROA not before: Tue 12 Nov 2024 21:19:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.192.0/24 maxlen: 24 203.4.193.0/24 maxlen: 24 203.4.194.0/24 maxlen: 24 203.4.195.0/24 maxlen: 24 203.4.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814E9/serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Validity Not Before: Nov 12 21:19:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6733c677-013d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:94:a2:6b:73:b9:b8:de:f3:29:d8:fe:9a:e3: 57:d1:a9:c1:10:3d:a4:fb:08:6d:58:7c:13:b2:21: 38:53:eb:7a:e8:8f:fb:06:79:1a:be:72:ba:a7:9a: 21:d6:58:a7:bc:cb:d1:b2:eb:11:55:c5:09:54:5f: 66:1f:09:79:d3:8f:4a:fc:75:51:fb:c5:ba:45:a6: 31:7b:4d:8f:08:91:ae:d2:be:aa:e8:09:95:7f:e6: 13:fe:f2:9c:61:66:45:e7:71:95:ff:83:78:20:97: 71:17:26:ce:e2:1c:4e:61:91:6d:05:58:63:4f:89: d1:96:77:0b:ef:c9:22:37:4e:4e:cf:15:9a:18:f2: 7e:94:8a:d9:0d:ba:02:d0:56:ff:58:4a:9a:6e:46: f1:8f:43:ba:94:e6:75:78:2c:34:7e:ad:e2:af:aa: e7:15:3d:d1:90:1d:c7:65:e3:57:00:fe:15:13:0f: ba:87:52:b3:5f:43:1f:68:68:99:e9:e0:ee:75:ab: c3:92:bd:1e:51:39:56:95:6c:35:b2:4c:11:44:c3: 11:e1:7a:9a:11:45:f7:f8:6f:96:62:41:ec:5f:f5: b3:35:e5:1b:6a:b1:4f:37:68:dd:9f:90:dd:98:01: 7d:9c:15:64:10:2b:8a:7f:4e:0a:9c:55:36:b8:02: dc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F9:2B:1A:BA:2A:5C:45:BF:FA:88:32:38:76:33:70:4C:84:82:62 X509v3 Authority Key Identifier: keyid:C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.192.0-203.4.196.255 Signature Algorithm: sha256WithRSAEncryption 25:b0:28:30:e4:bb:15:bc:61:c8:ce:c2:b6:bc:73:2b:fe:69: cb:b7:92:bc:4b:17:d5:60:f2:ce:c4:43:fb:fc:53:07:45:73: 71:58:d6:96:f4:ab:ce:db:8f:a8:26:bc:f0:d4:83:77:a7:32: ed:6f:7c:43:61:51:86:5b:77:16:01:5b:d7:8f:bd:27:fe:04: c4:b3:1e:ac:30:e3:36:6e:56:2e:f8:a1:c0:13:5d:9a:a5:56: 30:52:c4:b9:93:6b:56:73:1c:28:7e:70:5e:f1:e0:98:f2:41: eb:bb:65:76:38:3f:df:5b:34:bc:26:62:fc:af:d4:a9:a8:58: e6:30:c2:1e:e2:e1:74:24:56:d1:35:8c:14:c2:a5:f5:45:a5: 20:3c:99:b7:a2:d7:7d:de:dd:3f:b4:62:df:ab:f0:d5:70:4f: af:4a:8d:aa:04:20:21:a7:47:b5:8d:6e:2f:83:60:c1:a4:fc: 06:59:24:e1:c5:5a:62:04:19:f9:b9:76:89:87:8b:cc:36:fe: 35:ee:45:ba:18:bc:27:c7:0a:95:89:ed:2f:0b:77:da:f5:f6: 13:65:ca:a7:85:1d:b2:8c:c4:15:40:70:7c:d3:39:13:e4:fd: 7e:0c:8a:f1:4e:f8:47:b0:1c:6e:c4:43:17:4d:5f:49:da:f5: 56:87:93:0c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0RTkxMTAvBgNVBAUTKEM0MkZGMUQyRkYzNTI5ODFCQzVGODIyNDBFQzkzOTRF RkFCMzExODYwHhcNMjQxMTEyMjExOTUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYzY3Ny0wMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JSia3O5uN7zKdj+muNX0anBED2k+whtWHwTsiE4U+t66I/7BnkavnK6p5oh 1linvMvRsusRVcUJVF9mHwl5049K/HVR+8W6RaYxe02PCJGu0r6q6AmVf+YT/vKc YWZF53GV/4N4IJdxFybO4hxOYZFtBVhjT4nRlncL78kiN05OzxWaGPJ+lIrZDboC 0Fb/WEqabkbxj0O6lOZ1eCw0fq3ir6rnFT3RkB3HZeNXAP4VEw+6h1KzX0MfaGiZ 6eDudavDkr0eUTlWlWw1skwRRMMR4XqaEUX3+G+WYkHsX/WzNeUbarFPN2jdn5Dd mAF9nBVkECuKf04KnFU2uALcPQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFC35Kxq6 KlxFv/qIMjh2M3BMhIJiMB8GA1UdIwQYMBaAFMQv8dL/NSmBvF+CJA7JOU76sxGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRFOS9GRTU3QzJCQzA4 MzAxMUVCQkZFNEM3MzJDNEY5QUUwMi94Q194MHY4MUtZRzhYNElrRHNrNVR2cXpF WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDX3gwdjgxS1lHOFg0SWtEc2s1VHZxekVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE0RTkvRkU1N0MyQkMwODMwMTFFQkJGRTRDNzMyQzRGOUFFMDIvMjFFRTk1MTAw ODMyMTFFQjgxNTA5NjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBssEwAMEAMsExDANBgkqhkiG9w0BAQsFAAOCAQEAJbAo MOS7FbxhyM7CtrxzK/5py7eSvEsX1WDyzsRD+/xTB0VzcVjWlvSrztuPqCa88NSD d6cy7W98Q2FRhlt3FgFb14+9J/4ExLMerDDjNm5WLvihwBNdmqVWMFLEuZNrVnMc KH5wXvHgmPJB67tldjg/31s0vCZi/K/UqahY5jDCHuLhdCRW0TWMFMKl9UWlIDyZ t6LXfd7dP7Ri36vw1XBPr0qNqgQgIadHtY1uL4NgwaT8Blkk4cVaYgQZ+bl2iYeL zDb+Ne5Fuhi8J8cKlYntLwt32vX2E2XKp4UdsozEFUBwfNM5E+T9fgyK8U74R7Ac bsRDF01fSdr1VoeTDA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org