$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa File: 51638C369F0D11EE829DC428C4F9AE02.roa (raw, json) Hash identifier: x0XdCXr+fHMkPRUmR0MUNWWzOe9z+9CTwMrqymaTnKg= Subject key identifier: DD:14:AF:71:D2:23:C3:0C:07:11:BC:80:4B:9D:43:63:4D:2C:23:77 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 0149 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa Signing time: Wed 20 Dec 2023 07:56:44 +0000 ROA not before: Wed 20 Dec 2023 07:56:44 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149977 IP address blocks: 203.21.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Dec 20 07:56:44 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65829e3c-3437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:63:b2:ed:59:70:e6:8c:ab:56:91:eb:e9:00: 03:c4:86:c0:bc:6f:36:3f:58:de:45:d4:53:67:7d: 01:a9:4d:5e:fb:6b:50:fe:97:b7:ff:bd:b8:7d:ab: 81:98:90:c0:69:85:da:ec:c3:33:7c:b7:15:bb:6a: 51:d4:04:51:f1:6e:e4:49:7f:6f:c5:c6:f2:d8:e2: bd:cf:91:2b:85:e5:92:9f:c8:1d:ed:f3:66:23:05: 6b:f9:1f:d4:23:dd:1c:02:85:48:3f:06:98:7f:37: a8:04:d9:3c:7e:3d:58:ce:df:9f:b8:79:b5:5e:08: b6:b2:e7:05:59:c9:6c:74:80:49:04:38:7e:02:fc: 96:56:00:24:3d:24:bd:54:35:f7:34:9e:67:a3:61: 52:f7:80:3e:4e:41:ce:41:55:8c:88:6e:07:1b:30: 18:d3:63:65:9e:0a:0c:59:fc:2e:08:88:d4:2d:02: c6:8e:8f:9f:77:f5:ea:d3:6b:6f:4d:90:03:0d:ed: 11:50:c3:e1:8e:c2:13:c0:d4:6a:e4:95:20:47:8f: 97:c6:f4:64:0f:26:cc:d4:5c:e7:d3:74:bb:35:86: 12:3a:46:e5:46:d8:58:05:67:b4:99:d4:7b:3f:cf: 86:ca:90:25:1b:e0:40:43:cf:b5:e5:1e:b8:00:17: 7c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:14:AF:71:D2:23:C3:0C:07:11:BC:80:4B:9D:43:63:4D:2C:23:77 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.72.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:4d:fe:c6:b6:14:71:33:7c:48:f0:94:ac:2f:53:8a:56:25: 91:b9:92:1c:8b:97:0d:4d:11:0c:c0:7a:e7:41:50:c5:d2:c7: 36:43:19:5a:08:72:61:0e:bc:63:06:f0:86:8d:d5:df:3b:08: 6d:d6:2a:5c:35:dd:2f:4f:3a:9f:9f:ad:4a:fe:e1:02:f7:ef: d2:a2:31:df:28:30:cc:7d:87:c3:79:97:ff:82:15:58:3e:50: 62:53:6b:c2:37:d8:5f:b6:8a:f6:51:19:6d:6d:09:63:07:b7: 3b:59:1c:60:81:6f:69:02:2a:c5:bc:fc:86:c7:ad:42:22:7f: e9:2a:d2:82:0a:d5:ad:58:a4:de:6c:1e:eb:a0:8d:a4:81:79: 48:04:99:b4:67:af:7f:fd:c5:85:31:15:65:7e:56:0b:2c:fe: f8:ee:90:28:63:e8:30:8f:35:25:51:16:dd:07:e8:55:58:49: 36:f9:6b:38:a9:3d:0e:e3:cf:62:fd:56:2c:55:c5:af:3a:ec: ea:97:f7:13:69:6a:8a:14:51:ac:7b:8d:41:63:84:2c:29:54: b0:1b:01:81:38:42:ae:d0:eb:aa:a7:ba:a0:52:eb:6c:eb:aa: 8e:6a:c7:cb:f0:aa:17:85:3c:42:93:06:c1:5a:28:38:85:1a: a8:41:ae:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjMxMjIwMDc1NjQ0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgyOWUzYy0zNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmOy7Vlw5oyrVpHr6QADxIbAvG82P1jeRdRTZ30BqU1e+2tQ/pe3/724fauB mJDAaYXa7MMzfLcVu2pR1ARR8W7kSX9vxcby2OK9z5ErheWSn8gd7fNmIwVr+R/U I90cAoVIPwaYfzeoBNk8fj1Yzt+fuHm1Xgi2sucFWclsdIBJBDh+AvyWVgAkPSS9 VDX3NJ5no2FS94A+TkHOQVWMiG4HGzAY02NlngoMWfwuCIjULQLGjo+fd/Xq02tv TZADDe0RUMPhjsITwNRq5JUgR4+XxvRkDybM1Fzn03S7NYYSOkblRthYBWe0mdR7 P8+GypAlG+BAQ8+15R64ABd8UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN0Ur3HS I8MMBxG8gEudQ2NNLCN3MB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvNTE2MzhDMzY5 RjBEMTFFRTgyOURDNDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFUgwDQYJKoZIhvcNAQELBQADggEBAGpN/sa2FHEzfEjw lKwvU4pWJZG5khyLlw1NEQzAeudBUMXSxzZDGVoIcmEOvGMG8IaN1d87CG3WKlw1 3S9POp+frUr+4QL379KiMd8oMMx9h8N5l/+CFVg+UGJTa8I32F+2ivZRGW1tCWMH tztZHGCBb2kCKsW8/IbHrUIif+kq0oIK1a1YpN5sHuugjaSBeUgEmbRnr3/9xYUx FWV+Vgss/vjukChj6DCPNSVRFt0H6FVYSTb5azipPQ7jz2L9VixVxa867OqX9xNp aooUUax7jUFjhCwpVLAbAYE4Qq7Q66qnuqBS62zrqo5qx8vwqheFPEKTBsFaKDiF GqhBrk8= -----END CERTIFICATE-----Generated at Fri May 17 06:46:29 2024 by rpki-client on console-ams.rpki-client.org