$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa File: A7B53200784E11E9AE591940C4F9AE02.roa (raw, json) Hash identifier: bnAJ4sRb/5rbp/R5bC0Vvs1cBqKAzoAKvi9hUPoOAP4= Subject key identifier: 75:F8:13:0D:2D:B4:D5:A8:15:75:DF:A8:6A:7C:C6:B8:6C:44:7C:62 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3418 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:43 +0000 ROA not before: Tue 30 Jul 2024 16:02:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38158 IP address blocks: 121.100.0.0/21 maxlen: 21 121.100.0.0/24 maxlen: 24 2402:9800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13336 (0x3418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90ea2-2798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3c:cd:fc:f3:99:a1:bb:f4:26:76:5d:61:e4: 21:ed:75:34:7e:af:f8:8e:0c:92:a0:3b:41:87:13: 14:f8:bb:18:b0:08:06:6b:9f:ea:c7:4c:c7:6a:f7: b0:47:bb:8e:ea:8f:d7:4b:54:35:21:fa:79:87:ba: 99:3d:8c:85:40:e1:03:b8:58:20:14:ce:48:9c:a8: d6:a0:64:82:25:67:9b:67:dc:f4:6d:d9:23:bd:bb: 6f:ed:71:56:82:cb:3a:30:5b:5d:6e:b3:ac:13:99: 65:6d:0b:f6:18:d2:d4:8f:da:0a:cb:f5:24:53:02: c2:cd:67:23:89:01:a5:f2:51:32:62:e5:29:83:67: 8c:3a:7b:70:72:01:d8:2c:f5:89:8a:98:19:95:4f: 7e:7d:92:b1:98:c6:d1:bc:13:ab:4d:bd:7d:47:8a: 95:31:f2:e3:dc:a2:46:d2:d0:fe:f4:22:9d:c4:0e: 32:ab:e8:a9:d1:ce:a2:63:e9:89:16:92:08:f8:02: 37:99:b5:69:3e:de:b4:e5:9e:ba:f4:eb:9a:82:e6: 27:95:68:12:3e:b8:98:e6:89:a7:69:cf:b0:17:a5: 02:b3:b0:ee:34:d3:ed:d6:ca:bf:c8:6a:fd:3e:a6: 75:db:ca:ba:ec:28:d4:7d:1d:16:20:41:2a:8d:a2: 41:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F8:13:0D:2D:B4:D5:A8:15:75:DF:A8:6A:7C:C6:B8:6C:44:7C:62 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.100.0.0/21 IPv6: 2402:9800::/32 Signature Algorithm: sha256WithRSAEncryption b4:64:4a:bd:e9:a2:85:d2:73:6e:42:43:28:ef:07:1e:94:d2: 19:e3:74:d5:a1:6d:53:e1:2e:c9:39:3d:e8:5a:8e:64:85:0d: 61:85:82:31:5f:0a:d8:2e:b9:90:cd:e7:d8:65:50:59:56:37: 04:2c:95:9f:21:95:d7:e1:c1:ff:48:d6:e2:98:56:ce:3b:87: 73:4b:f5:5c:a7:31:29:9c:0d:2b:70:b8:a9:b7:64:b0:c0:20: a4:1a:be:19:2d:1a:c6:b3:d8:78:f0:f2:d2:7a:97:14:92:db: 84:d8:b8:cc:c8:c5:e1:c3:9d:a5:9d:8d:3c:6b:05:5b:4f:1d: dd:07:18:f8:77:aa:7a:41:f9:fe:13:2f:e8:06:f7:c1:bd:6a: 1d:d4:8d:50:f3:58:ac:5d:30:d9:31:b6:65:1e:04:7e:39:29: 8e:7c:45:ae:a3:d0:0f:1c:dc:c9:42:c4:a3:39:8b:cf:fb:4e: 37:6a:27:fb:f0:16:c5:56:c3:e2:f4:e2:0b:96:02:2b:b3:5b: c1:51:7f:ac:eb:44:e1:3c:9d:cc:1d:e9:21:fe:1f:be:3a:cf: 62:fc:25:33:80:b9:6f:00:f0:b8:f4:96:58:ce:2c:cf:f3:8a: cb:59:c4:ea:2e:13:52:64:ed:c0:60:0c:b1:58:ae:b2:12:75: 57:7c:76:8e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVhMi0yNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DzN/POZobv0JnZdYeQh7XU0fq/4jgySoDtBhxMU+LsYsAgGa5/qx0zHavew R7uO6o/XS1Q1Ifp5h7qZPYyFQOEDuFggFM5InKjWoGSCJWebZ9z0bdkjvbtv7XFW gss6MFtdbrOsE5llbQv2GNLUj9oKy/UkUwLCzWcjiQGl8lEyYuUpg2eMOntwcgHY LPWJipgZlU9+fZKxmMbRvBOrTb19R4qVMfLj3KJG0tD+9CKdxA4yq+ip0c6iY+mJ FpII+AI3mbVpPt605Z669OuaguYnlWgSPriY5omnac+wF6UCs7DuNNPt1sq/yGr9 PqZ128q67CjUfR0WIEEqjaJBiwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHX4Ew0t tNWoFXXfqGp8xrhsRHxiMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQTdCNTMyMDA3 ODRFMTFFOUFFNTkxOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN5ZAAwDQQCAAIwBwMFACQCmAAwDQYJKoZIhvcNAQELBQAD ggEBALRkSr3pooXSc25CQyjvBx6U0hnjdNWhbVPhLsk5PehajmSFDWGFgjFfCtgu uZDN59hlUFlWNwQslZ8hldfhwf9I1uKYVs47h3NL9VynMSmcDStwuKm3ZLDAIKQa vhktGsaz2Hjw8tJ6lxSS24TYuMzIxeHDnaWdjTxrBVtPHd0HGPh3qnpB+f4TL+gG 98G9ah3UjVDzWKxdMNkxtmUeBH45KY58Ra6j0A8c3MlCxKM5i8/7TjdqJ/vwFsVW w+L04guWAiuzW8FRf6zrROE8ncwd6SH+H746z2L8JTOAuW8A8Lj0lljOLM/zistZ xOouE1Jk7cBgDLFYrrISdVd8do4= -----END CERTIFICATE-----Generated at Fri Nov 22 02:10:21 2024 by rpki-client on console-fra.rpki-client.org