$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/1C83212A22B911ECAD21FB20C4F9AE02.roa File: 1C83212A22B911ECAD21FB20C4F9AE02.roa (raw, json) Hash identifier: qekS9u08e9PXmfIKGyzp8FsGbq8ooLWGjifdTI7+22Q= Subject key identifier: 54:49:09:3C:83:5B:B5:CA:32:AD:41:C5:48:10:92:A8:78:18:01:1F Certificate issuer: /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Certificate serial: 04C6 Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/1C83212A22B911ECAD21FB20C4F9AE02.roa Signing time: Sun 11 Jun 2023 01:38:37 +0000 ROA not before: Sun 11 Jun 2023 01:38:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 396982 IP address blocks: 114.141.120.0/24 maxlen: 24 114.141.121.0/24 maxlen: 24 114.141.122.0/24 maxlen: 24 114.141.123.0/24 maxlen: 24 114.141.124.0/24 maxlen: 24 114.141.125.0/24 maxlen: 24 114.141.126.0/24 maxlen: 24 114.141.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Validity Not Before: Jun 11 01:38:37 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6485259d-a800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:86:d0:8d:be:ed:1f:e4:fd:74:f9:c6:6b:bc: d5:92:03:0d:b2:d8:56:4e:c9:54:f6:bc:f0:4f:7d: 83:51:49:4a:37:a5:66:04:c9:76:7a:8e:f2:ef:42: 29:a9:91:d1:43:e0:75:a0:94:57:62:c4:83:66:81: 1c:2d:55:52:55:e7:c3:0b:1d:48:1a:66:8c:41:35: ea:cf:55:fb:28:3f:71:51:86:10:8e:12:59:c0:99: 8d:4c:ff:e9:57:eb:cb:da:3b:5e:b0:14:3e:c4:6c: 62:b5:c8:34:4f:2c:43:b6:0c:1a:22:7d:31:24:c7: 14:59:84:2b:7e:ec:c3:a3:3b:c1:45:73:0d:66:8c: 7b:ce:f5:be:fb:68:08:5d:da:c6:38:da:66:d7:36: 61:2a:f9:a7:2b:0c:85:51:c1:00:cc:56:f3:2b:86: 4e:87:ec:c1:63:68:a0:b9:c3:21:e2:98:12:c1:57: 8f:64:35:a3:b1:54:a3:8f:b5:de:81:55:8a:3c:60: c3:5f:7f:b3:e8:9b:bf:cd:d0:5a:a3:df:73:83:52: 51:ea:a1:e1:cd:5a:39:29:aa:8a:ef:c2:09:14:11: f1:3f:11:fa:e4:58:a4:fb:e6:27:da:5d:cc:5e:0e: 08:2e:67:42:49:c4:0b:cd:d9:d8:6b:53:ea:91:b8: 66:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:49:09:3C:83:5B:B5:CA:32:AD:41:C5:48:10:92:A8:78:18:01:1F X509v3 Authority Key Identifier: keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/1C83212A22B911ECAD21FB20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.141.120.0/21 Signature Algorithm: sha256WithRSAEncryption 63:cc:14:11:bd:be:f6:e6:9c:d5:f3:cb:04:5e:57:2c:e3:32: 95:ee:b5:77:03:fa:ff:d0:cc:38:83:30:b0:e1:e8:90:56:7f: 6b:c7:d8:b7:4d:c3:05:ce:58:50:49:44:8a:cf:cc:78:61:e2: 68:e0:c7:fa:bb:eb:f6:0b:aa:87:07:e2:be:7d:8f:63:ad:e9: c0:4b:dd:02:5c:54:56:8c:da:43:77:58:cf:92:8a:65:a3:5f: e7:43:bb:05:ab:f2:bb:54:31:14:45:53:9b:fb:66:1e:b5:93: b3:57:b4:f8:c3:6e:30:d0:47:41:56:b3:aa:b7:63:c5:a0:84: 1b:3f:eb:41:32:1f:57:4e:bd:c7:53:05:f2:c7:2e:ca:f7:35: 02:66:af:8e:ea:63:d6:5c:a2:2b:ef:62:df:fe:88:21:b1:c6: e3:63:ad:6d:a6:f9:05:75:b4:19:3f:a2:34:f6:0a:e4:63:3a: 48:9b:f1:53:90:56:06:5e:64:26:7e:05:b3:8e:ce:96:c5:7e: 34:61:e9:a5:e7:0c:52:0f:d2:c2:3c:46:30:9f:ad:6f:46:46: 43:b6:10:be:7d:25:bb:cb:6c:08:97:21:77:ac:bf:a2:3f:5a: b4:f8:63:81:18:55:81:3a:ed:3f:fa:e8:95:61:65:cb:a5:ee: e5:90:bf:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzRUIxMTAvBgNVBAUTKDJGMjY1QjBDODAyNDczMDk0OTI2ODkwQTg1MTI0RTIx QjEwOURBM0MwHhcNMjMwNjExMDEzODM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg1MjU5ZC1hODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8obQjb7tH+T9dPnGa7zVkgMNsthWTslU9rzwT32DUUlKN6VmBMl2eo7y70Ip qZHRQ+B1oJRXYsSDZoEcLVVSVefDCx1IGmaMQTXqz1X7KD9xUYYQjhJZwJmNTP/p V+vL2jtesBQ+xGxitcg0TyxDtgwaIn0xJMcUWYQrfuzDozvBRXMNZox7zvW++2gI XdrGONpm1zZhKvmnKwyFUcEAzFbzK4ZOh+zBY2igucMh4pgSwVePZDWjsVSjj7Xe gVWKPGDDX3+z6Ju/zdBao99zg1JR6qHhzVo5KaqK78IJFBHxPxH65Fik++Yn2l3M Xg4ILmdCScQLzdnYa1PqkbhmuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRJCTyD W7XKMq1BxUgQkqh4GAEfMB8GA1UdIwQYMBaAFC8mWwyAJHMJSSaJCoUSTiGxCdo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNFQi9GMzYyMkU3NDk3 NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3bEpKb2tLaFJKT0liRUoy ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5WmJESUFrY3dsSkpva0toUkpPSWJFSjJqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAzRUIvRjM2MjJFNzQ5NzY5MTFFQkFCQzc3NDg2QzRGOUFFMDIvMUM4MzIxMkEy MkI5MTFFQ0FEMjFGQjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANyjXgwDQYJKoZIhvcNAQELBQADggEBAGPMFBG9vvbmnNXz ywReVyzjMpXutXcD+v/QzDiDMLDh6JBWf2vH2LdNwwXOWFBJRIrPzHhh4mjgx/q7 6/YLqocH4r59j2Ot6cBL3QJcVFaM2kN3WM+SimWjX+dDuwWr8rtUMRRFU5v7Zh61 k7NXtPjDbjDQR0FWs6q3Y8WghBs/60EyH1dOvcdTBfLHLsr3NQJmr47qY9Zcoivv Yt/+iCGxxuNjrW2m+QV1tBk/ojT2CuRjOkib8VOQVgZeZCZ+BbOOzpbFfjRh6aXn DFIP0sI8RjCfrW9GRkO2EL59JbvLbAiXIXesv6I/WrT4Y4EYVYE67T/66JVhZcul 7uWQv+0= -----END CERTIFICATE-----Generated at Sun May 5 02:13:00 2024 by rpki-client on console-ams.rpki-client.org