$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/7C616486A6EF11EF9EB0B473C4F9AE02.roa File: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (raw, json) Hash identifier: 5VAXQpUtw8xIvHUo10IcjgkVVxX2TxpUjbL3TgQaqhI= Subject key identifier: 6E:C5:E3:6D:FF:C9:C0:61:B9:F0:67:DF:AF:8A:49:E2:98:FC:99:91 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 05 Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/7C616486A6EF11EF9EB0B473C4F9AE02.roa Signing time: Wed 20 Nov 2024 03:28:19 +0000 ROA not before: Wed 20 Nov 2024 03:28:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45476 IP address blocks: 203.208.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Nov 20 03:28:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=673d5752-8f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f9:48:11:a9:d0:e9:89:a9:1f:de:b0:a1:0d: 51:b9:93:01:60:d8:09:1b:77:7c:19:55:0d:b2:f4: dc:3a:cb:70:ae:bd:25:9f:0f:cd:b9:07:fa:14:21: 5f:38:27:e0:60:2a:8c:70:26:ea:8d:04:7e:01:04: 34:a6:b9:4e:7f:1e:6c:16:8d:6c:08:9f:51:b1:4c: a8:77:b0:70:de:39:2b:50:a6:cd:52:e8:f3:fa:cb: 22:7d:3c:83:9f:36:fd:09:ed:05:20:90:69:f6:46: 02:b0:58:0e:cd:e0:f3:f4:73:a5:2b:e6:75:3b:f7: 44:48:65:cf:ed:95:0d:89:77:7b:68:11:a3:15:27: 99:7a:5b:06:d1:e4:6c:d7:15:28:da:dd:5c:9c:d1: 2f:8f:a1:ba:cf:04:5a:a9:51:c0:1e:6e:35:71:a6: 02:6a:4b:6a:84:87:48:0e:44:39:27:5f:33:bd:64: cb:b2:1c:7e:4e:c6:64:fe:72:e6:b0:55:05:56:88: 61:48:c0:a8:c3:ed:c7:61:51:1d:ef:eb:86:d9:72: ea:f6:d8:58:91:27:bc:57:0a:ce:c1:50:35:72:23: 46:24:c7:4e:3b:6f:6d:9a:d7:41:bc:15:5f:f7:65: 14:be:50:d6:4a:4b:af:1a:9a:99:6c:6f:7a:f1:70: 45:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C5:E3:6D:FF:C9:C0:61:B9:F0:67:DF:AF:8A:49:E2:98:FC:99:91 X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/7C616486A6EF11EF9EB0B473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.208.21.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:cc:d7:92:55:ed:f1:fb:0a:b5:d8:41:1a:8d:9d:bd:d6:51: 89:f3:5c:01:88:17:71:05:36:fb:cd:b8:b5:a8:b8:e4:ca:06: 7d:81:76:a2:d1:b2:76:a2:2b:92:a1:e7:46:c6:96:99:e0:f5: 2c:7f:48:6d:c9:4d:b7:1d:8a:59:57:65:ac:58:e5:a6:a8:b4: bd:b7:da:4d:06:bd:1f:34:bd:d5:97:73:60:3e:c9:0c:79:9f: c8:7f:93:81:76:c1:fc:d8:3d:c1:8b:c1:11:e8:6c:c7:51:e0: 84:07:3f:e0:ca:c7:0f:09:35:ff:0d:4e:ff:3f:ba:8c:34:8a: c4:49:27:0d:ec:5c:95:70:61:65:e1:3b:c7:04:9a:2b:eb:f8: 7c:0e:39:76:6a:ad:ec:4e:cc:f5:91:f4:c3:12:36:e6:74:48: a2:24:42:25:a3:7b:12:51:6e:df:b6:19:90:c1:51:1f:a6:6e: 11:b6:e9:60:34:aa:4c:47:e0:37:ba:64:05:a9:24:61:d8:25: de:78:3c:7b:e2:aa:c3:5b:dc:88:2a:96:5f:df:bb:72:73:f3: 1e:c6:e0:fd:29:63:8d:cf:5e:e9:42:eb:f0:0d:53:4f:b5:78: 33:f4:b1:34:ab:57:5c:08:5d:2c:63:ca:d8:99:ab:e6:bd:13: 39:2d:48:69 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzMxQzExMC8GA1UEBRMoNDBGQUE3MEY4QTIzQTAzRDE2QTExMDg2REJFNTAyRTg2 MjE2NDk2NzAeFw0yNDExMjAwMzI4MTlaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2Q1NzUyLThmMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX+UgRqdDpiakf3rChDVG5kwFg2Akbd3wZVQ2y9Nw6y3CuvSWfD825B/oUIV84 J+BgKoxwJuqNBH4BBDSmuU5/HmwWjWwIn1GxTKh3sHDeOStQps1S6PP6yyJ9PIOf Nv0J7QUgkGn2RgKwWA7N4PP0c6Ur5nU790RIZc/tlQ2Jd3toEaMVJ5l6WwbR5GzX FSja3Vyc0S+PobrPBFqpUcAebjVxpgJqS2qEh0gORDknXzO9ZMuyHH5OxmT+cuaw VQVWiGFIwKjD7cdhUR3v64bZcur22FiRJ7xXCs7BUDVyI0Ykx047b22a10G8FV/3 ZRS+UNZKS68amplsb3rxcEWBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbsXjbf/J wGG58Gffr4pJ4pj8mZEwHwYDVR0jBBgwFoAUQPqnD4ojoD0WoRCG2+UC6GIWSWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMzFDL0YxMDdEQTEwQTZD RjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVBxbkQ0b2pvRDBXb1JDRzItVUM2R0lXU1djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzMxQy9GMTA3REExMEE2Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi83QzYxNjQ4NkE2 RUYxMUVGOUVCMEI0NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMvQFTANBgkqhkiG9w0BAQsFAAOCAQEAG8zXklXt8fsKtdhB Go2dvdZRifNcAYgXcQU2+824tai45MoGfYF2otGydqIrkqHnRsaWmeD1LH9IbclN tx2KWVdlrFjlpqi0vbfaTQa9HzS91ZdzYD7JDHmfyH+TgXbB/Ng9wYvBEehsx1Hg hAc/4MrHDwk1/w1O/z+6jDSKxEknDexclXBhZeE7xwSaK+v4fA45dmqt7E7M9ZH0 wxI25nRIoiRCJaN7ElFu37YZkMFRH6ZuEbbpYDSqTEfgN7pkBakkYdgl3ng8e+Kq w1vciCqWX9+7cnPzHsbg/Sljjc9e6ULr8A1TT7V4M/SxNKtXXAhdLGPK2Jmr5r0T OS1IaQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org