$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa File: E21E1C6CF3EE11ECBAE10054C4F9AE02.roa (raw, json) Hash identifier: e2hzwSzHuOwX9LA+0fPsgachI4WSBEfmTg9X1uSWVEg= Subject key identifier: 1C:CE:AA:DB:C9:2D:58:1B:8B:8D:5F:86:29:5A:06:B9:C0:76:C4:B0 Certificate issuer: /CN=A91C5B46/serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Certificate serial: 2503 Authority key identifier: 56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa Signing time: Thu 18 Apr 2024 16:22:58 +0000 ROA not before: Thu 18 Apr 2024 16:22:58 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4755 IP address blocks: 123.136.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9475 (0x2503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5B46/serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Validity Not Before: Apr 18 16:22:58 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=662148e2-7ae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:33:ee:1f:b4:02:7c:49:d8:18:ff:47:b6:f5: da:8d:b4:54:28:f9:c0:b0:a9:be:c4:0c:21:b4:32: 9d:c9:05:07:7a:25:44:f9:be:22:f0:57:e6:8b:97: 67:04:24:c9:cb:76:45:e3:22:ee:ec:64:b6:25:33: 95:d6:03:83:94:2f:c6:04:de:20:c7:69:03:37:53: bf:91:95:25:95:6a:46:40:22:c7:63:5f:9a:b5:73: 09:c7:70:be:89:4f:f8:f2:07:4f:7f:3a:3f:6a:c6: f9:e0:17:e9:7f:b3:1a:49:39:0c:df:d1:e6:ff:00: ba:75:9d:7f:d5:8e:3e:cb:89:5d:e0:04:08:37:6b: 7f:ce:31:5c:52:fb:ff:60:9b:15:23:66:1f:0a:c1: ea:32:a6:19:4d:c8:18:4e:86:7e:83:f3:a8:0b:9c: 93:29:0e:61:ff:58:5c:1b:db:b7:75:dd:8b:63:51: e6:92:40:a6:76:47:d4:2c:21:af:af:61:76:2a:67: c5:a2:df:d1:e6:31:7c:32:01:c8:05:9f:70:db:b7: d6:cb:60:62:4c:a1:b9:9a:4a:0d:a7:98:2b:10:06: 30:c5:03:b8:29:f1:13:f1:48:45:57:a2:9e:60:22: fd:c0:63:43:6a:cf:fe:20:f3:93:c6:c6:04:f7:3f: b1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CE:AA:DB:C9:2D:58:1B:8B:8D:5F:86:29:5A:06:B9:C0:76:C4:B0 X509v3 Authority Key Identifier: keyid:56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.136.16.0/21 Signature Algorithm: sha256WithRSAEncryption 65:f3:0c:e0:f2:48:e7:80:00:e7:e6:7f:44:de:4b:af:48:1a: 22:33:3f:b9:27:7e:e1:a9:5b:85:b1:52:33:18:70:e9:ac:f6: 69:5f:82:46:39:a3:fd:2c:a4:02:e5:9f:83:c9:3a:73:7e:9d: 71:62:9e:4e:fb:9d:f9:d6:ca:ea:79:c5:e6:ac:63:f8:6f:7a: 86:68:2c:c3:11:48:d9:a3:ac:77:67:09:4e:9d:6e:27:2d:45: e9:b5:11:9e:fe:fa:e0:b1:29:81:80:9e:d2:33:d0:bf:1f:b7: ab:df:44:5f:65:30:b8:81:c8:eb:28:13:c2:31:26:8d:80:82: d6:33:41:1b:c8:90:b7:40:09:88:14:e0:94:82:e3:f4:cd:cc: f9:cc:56:cb:f3:08:d0:67:1a:d3:a1:74:ab:2b:b9:e0:ec:8c: 9d:57:ab:37:a3:33:45:fd:86:ea:a4:aa:fe:e3:d7:7f:52:31: ce:cd:13:8f:91:47:1b:e7:48:36:43:12:a7:80:d8:c4:32:ae: fd:cd:96:d2:c8:1c:42:cb:be:cd:58:01:46:a5:d9:13:3c:a7: 9c:47:ab:7d:d0:45:c7:d2:51:fc:bc:22:f0:6d:cf:5a:b1:54: 27:b4:80:8e:7f:fb:f1:3a:62:bd:58:d0:2f:12:d5:7e:a4:45: 3d:da:7b:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVCNDYxMTAvBgNVBAUTKDU2Q0QzMkQxM0Y4Q0FFMUU5MkY5Qzk3RjM5NUYxQTIz QUJCOUM2RjcwHhcNMjQwNDE4MTYyMjU4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxNDhlMi03YWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zPuH7QCfEnYGP9HtvXajbRUKPnAsKm+xAwhtDKdyQUHeiVE+b4i8Ffmi5dn BCTJy3ZF4yLu7GS2JTOV1gODlC/GBN4gx2kDN1O/kZUllWpGQCLHY1+atXMJx3C+ iU/48gdPfzo/asb54Bfpf7MaSTkM39Hm/wC6dZ1/1Y4+y4ld4AQIN2t/zjFcUvv/ YJsVI2YfCsHqMqYZTcgYToZ+g/OoC5yTKQ5h/1hcG9u3dd2LY1HmkkCmdkfULCGv r2F2KmfFot/R5jF8MgHIBZ9w27fWy2BiTKG5mkoNp5grEAYwxQO4KfET8UhFV6Ke YCL9wGNDas/+IPOTxsYE9z+xAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBzOqtvJ LVgbi41fhilaBrnAdsSwMB8GA1UdIwQYMBaAFFbNMtE/jK4ekvnJfzlfGiOrucb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUI0Ni9CQTBCODQzMDAy ODgxMUU1QUUxRTQ3NjFDNEY5QUUwMi9WczB5MFQtTXJoNlMtY2xfT1Y4YUk2dTV4 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZzMHkwVC1Ncmg2Uy1jbF9PVjhhSTZ1NXh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzVCNDYvQkEwQjg0MzAwMjg4MTFFNUFFMUU0NzYxQzRGOUFFMDIvRTIxRTFDNkNG M0VFMTFFQ0JBRTEwMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN7iBAwDQYJKoZIhvcNAQELBQADggEBAGXzDODySOeAAOfm f0TeS69IGiIzP7knfuGpW4WxUjMYcOms9mlfgkY5o/0spALln4PJOnN+nXFink77 nfnWyup5xeasY/hveoZoLMMRSNmjrHdnCU6dbictRem1EZ7++uCxKYGAntIz0L8f t6vfRF9lMLiByOsoE8IxJo2AgtYzQRvIkLdACYgU4JSC4/TNzPnMVsvzCNBnGtOh dKsrueDsjJ1XqzejM0X9huqkqv7j139SMc7NE4+RRxvnSDZDEqeA2MQyrv3NltLI HELLvs1YAUal2RM8p5xHq33QRcfSUfy8IvBtz1qxVCe0gI5/+/E6Yr1Y0C8S1X6k RT3ae0k= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:51 2024 by rpki-client on console-fra.rpki-client.org