$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa File: 21333DA69B2E11E8908CC50FC4F9AE02.roa (raw, json) Hash identifier: +1SNSIFs+P7lOAKW1zIJPA5+xtDNMIC4L/Fb0Zo2lHo= Subject key identifier: D3:C5:93:0A:03:15:F5:48:89:45:21:F7:DC:61:FF:E4:62:39:1A:8E Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 12E9 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa Signing time: Mon 26 Aug 2024 17:25:18 +0000 ROA not before: Mon 26 Aug 2024 17:25:18 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7415 IP address blocks: 103.120.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4841 (0x12e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Aug 26 17:25:18 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccba7d-4e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:45:d3:7a:a8:11:0f:95:ed:ed:2c:6b:0c:a9: 79:85:29:8a:28:9d:8d:f4:cf:3e:bb:9e:fa:f0:e2: 17:3b:49:ff:e3:16:ca:19:be:a0:f7:74:d1:0e:4d: 92:22:c4:bd:35:75:53:c1:2e:20:4b:bd:74:b0:fc: 75:cc:a5:af:23:54:fb:f4:a2:6b:c2:4b:87:3c:41: c7:5d:55:e1:c0:ed:d2:fd:b5:c6:de:1d:a4:fb:76: bb:2a:88:3b:5a:24:fb:41:59:e7:cc:90:05:10:6f: 38:ff:0e:0b:54:22:96:cd:50:a3:b4:26:38:67:37: b0:3d:4c:43:4f:5d:b2:3e:40:6d:94:3a:ab:a4:98: 4e:2b:af:96:b0:bb:5a:14:ac:30:fc:d5:a7:61:e9: 52:46:7b:a9:da:d3:16:96:f4:d6:08:2f:62:8d:ea: e6:1a:6e:4b:96:ad:09:7f:96:44:28:18:a9:0e:e7: 4d:ea:ac:81:a8:da:67:9d:a0:4a:93:42:61:43:3e: 9b:1e:73:d2:4e:ff:4d:a4:36:47:87:8a:cd:d1:bc: 92:fc:d6:84:48:c6:f9:a5:2d:83:94:b4:6a:96:f2: b6:c2:fc:18:01:d4:85:57:a1:8a:c2:24:62:60:b2: ba:6c:02:24:26:02:da:43:f3:96:f0:6b:e2:cd:f3: 29:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C5:93:0A:03:15:F5:48:89:45:21:F7:DC:61:FF:E4:62:39:1A:8E X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.137.0/24 Signature Algorithm: sha256WithRSAEncryption 73:25:9a:1c:9e:d5:95:8c:60:4b:81:e6:a6:93:45:11:75:8f: 46:cb:24:08:6a:35:8a:df:26:ca:61:3e:35:d3:8c:32:0d:3e: 4f:83:46:02:62:04:65:f4:e7:72:14:fc:77:a3:34:14:f3:83: 3a:13:73:ec:d2:08:7b:2b:6b:21:6c:19:72:ce:55:52:2d:00: d8:83:7c:3d:f2:47:85:39:6e:e7:8b:91:a8:08:15:bb:d3:f1: 66:c7:dd:1a:45:76:30:fa:6c:30:2d:25:38:ea:72:51:b1:68: 1b:81:b3:01:dd:ba:41:42:0a:fb:0f:0e:0f:4f:7a:2f:8c:6e: b6:d3:3b:c9:6d:b9:72:c8:3d:77:aa:32:95:86:86:df:e8:97: 7e:83:d2:fa:27:c6:e7:5e:5f:9a:a5:67:7e:30:21:82:06:18: 0c:9a:e4:72:e0:5a:0a:b3:fd:ab:79:87:be:68:28:43:5f:6d: e0:ca:c2:92:15:d5:4e:1c:ac:dd:6a:ef:9d:00:ec:9a:e2:36: f1:60:90:94:dc:a6:7f:4b:27:93:4f:f4:50:f5:0f:5c:d9:74: 26:7f:e0:81:4d:ec:3b:1f:a7:8e:8b:b3:73:99:e6:25:d9:be: 15:1f:31:b6:40:74:e8:24:2d:bc:9b:99:a3:a8:43:fa:99:bd: 14:35:e7:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjQwODI2MTcyNTE4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjYmE3ZC00ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEXTeqgRD5Xt7SxrDKl5hSmKKJ2N9M8+u5768OIXO0n/4xbKGb6g93TRDk2S IsS9NXVTwS4gS710sPx1zKWvI1T79KJrwkuHPEHHXVXhwO3S/bXG3h2k+3a7Kog7 WiT7QVnnzJAFEG84/w4LVCKWzVCjtCY4ZzewPUxDT12yPkBtlDqrpJhOK6+WsLta FKww/NWnYelSRnup2tMWlvTWCC9ijermGm5Llq0Jf5ZEKBipDudN6qyBqNpnnaBK k0JhQz6bHnPSTv9NpDZHh4rN0byS/NaESMb5pS2DlLRqlvK2wvwYAdSFV6GKwiRi YLK6bAIkJgLaQ/OW8GvizfMp4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNPFkwoD FfVIiUUh99xh/+RiORqOMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJCQTUvRTY0ODRBQ0U5QjJEMTFFOEI0NjVEODBGQzRGOUFFMDIvMjEzMzNEQTY5 QjJFMTFFODkwOENDNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIkwDQYJKoZIhvcNAQELBQADggEBAHMlmhye1ZWMYEuB 5qaTRRF1j0bLJAhqNYrfJsphPjXTjDINPk+DRgJiBGX053IU/HejNBTzgzoTc+zS CHsrayFsGXLOVVItANiDfD3yR4U5bueLkagIFbvT8WbH3RpFdjD6bDAtJTjqclGx aBuBswHdukFCCvsPDg9Pei+MbrbTO8ltuXLIPXeqMpWGht/ol36D0vonxudeX5ql Z34wIYIGGAya5HLgWgqz/at5h75oKENfbeDKwpIV1U4crN1q750A7JriNvFgkJTc pn9LJ5NP9FD1D1zZdCZ/4IFN7Dsfp46Ls3OZ5iXZvhUfMbZAdOgkLbybmaOoQ/qZ vRQ15zQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org