$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/21B96F2E7BC911EBABCF472DC4F9AE02.roa File: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (raw, json) Hash identifier: X9o/v5wYJkFdzl1FkFmnIPmrW4Pro2cDkxKRbU0epdA= Subject key identifier: F1:FA:A2:74:32:6D:AE:D0:C9:29:45:41:99:C7:3D:26:C0:5C:1B:E0 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 06F3 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/21B96F2E7BC911EBABCF472DC4F9AE02.roa Signing time: Sat 24 Feb 2024 21:49:45 +0000 ROA not before: Sat 24 Feb 2024 21:49:45 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137280 IP address blocks: 213.255.228.0/23 maxlen: 23 213.255.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Feb 24 21:49:45 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65da6479-9f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:03:3e:bb:95:5b:e8:e6:f9:d9:44:5b:37:d3: 24:1c:0d:43:6e:d0:c6:a8:75:9b:41:a9:5d:bd:8a: d9:4e:66:55:6e:22:6e:fd:6e:e5:d4:84:c0:e5:2f: d5:11:64:f2:d9:cb:38:aa:5f:5d:1c:bb:43:cb:6d: 01:1b:6f:23:f6:0a:ac:b7:3f:63:7f:54:3d:3a:78: 54:b8:60:42:66:f6:af:6f:e1:a4:1b:4b:87:12:b7: 2c:5e:87:3c:c3:33:ce:25:7a:87:14:2e:24:ec:b1: eb:5d:46:a9:ee:85:4b:3e:de:8b:c7:55:b1:13:b0: 6c:f4:d9:bf:e3:d0:c4:64:0b:36:38:55:e8:09:69: f9:6a:12:47:95:f5:ee:f4:48:f3:15:22:6a:84:9d: ec:22:7a:70:51:52:21:de:ce:b1:cf:f3:ba:4f:2e: d7:d6:4d:01:da:07:65:8a:49:2d:28:42:1a:53:26: 73:5e:4d:6e:91:bc:f3:05:fe:2e:86:f0:6b:dd:af: 8e:42:a7:c3:33:03:77:9f:f5:63:54:48:12:09:c8: 5f:af:fb:6d:01:28:ad:25:c1:3a:c6:b0:2e:fb:26: c0:3c:ce:06:e4:35:46:2c:d9:4a:97:c7:89:bf:a4: 66:6e:b3:9f:35:6f:20:9b:d7:73:f2:f4:55:fe:8f: 95:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FA:A2:74:32:6D:AE:D0:C9:29:45:41:99:C7:3D:26:C0:5C:1B:E0 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/21B96F2E7BC911EBABCF472DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.255.228.0-213.255.230.255 Signature Algorithm: sha256WithRSAEncryption 77:fb:de:4a:2f:93:4b:76:31:0e:7a:6c:d7:d6:01:b9:bd:70: 57:7a:11:5f:de:21:5e:f2:bb:b4:39:19:f0:f4:71:92:2c:b8: 70:e7:6a:97:40:ef:c1:50:03:62:f3:5d:49:82:19:e0:13:23: 40:52:ac:aa:86:cc:e6:00:71:54:2e:b7:e1:43:a8:56:5e:5b: a6:c2:67:73:ba:a7:54:93:cc:6b:33:ea:a3:cc:08:10:1c:2b: 1f:b6:68:3a:77:92:9a:6f:42:eb:d8:ed:a9:f3:c5:79:2e:7d: 81:91:cd:71:b0:fc:05:bc:00:aa:ef:ee:56:0e:53:e5:81:ad: b2:10:ff:bd:0f:57:f5:02:cc:b4:5e:6b:c3:90:3d:4d:7f:72: ee:bd:7e:08:fa:dd:0f:69:97:20:8c:7e:b3:2b:81:1f:b9:e1: 88:ac:83:76:25:48:1a:37:ca:84:b2:71:6f:48:1d:0a:53:f1: a7:69:0f:cc:b1:9c:62:47:26:a4:6f:4a:c9:b4:52:b9:c3:41: 57:ce:f8:ce:f4:24:a2:0e:2d:00:24:59:d0:a6:eb:f3:d1:fd: d9:a9:86:15:f7:41:68:0f:7a:93:97:87:19:4d:b6:dc:0d:a3: de:c2:cb:7a:48:b8:18:38:a7:3f:a2:68:86:a0:d8:00:51:d9: 07:61:77:b0 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjQwMjI0MjE0OTQ1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhNjQ3OS05ZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgM+u5Vb6Ob52URbN9MkHA1DbtDGqHWbQaldvYrZTmZVbiJu/W7l1ITA5S/V EWTy2cs4ql9dHLtDy20BG28j9gqstz9jf1Q9OnhUuGBCZvavb+GkG0uHErcsXoc8 wzPOJXqHFC4k7LHrXUap7oVLPt6Lx1WxE7Bs9Nm/49DEZAs2OFXoCWn5ahJHlfXu 9EjzFSJqhJ3sInpwUVIh3s6xz/O6Ty7X1k0B2gdlikktKEIaUyZzXk1ukbzzBf4u hvBr3a+OQqfDMwN3n/VjVEgSCchfr/ttASitJcE6xrAu+ybAPM4G5DVGLNlKl8eJ v6RmbrOfNW8gm9dz8vRV/o+VlwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPH6onQy ba7QySlFQZnHPSbAXBvgMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4QkEvMjUxMEI0RTZGMEZDMTFFQUI5ODVGQTVGQzRGOUFFMDIvMjFCOTZGMkU3 QkM5MTFFQkFCQ0Y0NzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtX/5AMEANX/5jANBgkqhkiG9w0BAQsFAAOCAQEAd/ve Si+TS3YxDnps19YBub1wV3oRX94hXvK7tDkZ8PRxkiy4cOdql0DvwVADYvNdSYIZ 4BMjQFKsqobM5gBxVC634UOoVl5bpsJnc7qnVJPMazPqo8wIEBwrH7ZoOneSmm9C 69jtqfPFeS59gZHNcbD8BbwAqu/uVg5T5YGtshD/vQ9X9QLMtF5rw5A9TX9y7r1+ CPrdD2mXIIx+syuBH7nhiKyDdiVIGjfKhLJxb0gdClPxp2kPzLGcYkcmpG9KybRS ucNBV874zvQkog4tACRZ0Kbr89H92amGFfdBaA96k5eHGU223A2j3sLLeki4GDin P6JohqDYAFHZB2F3sA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:46 2024 by rpki-client on console-fra.rpki-client.org