$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa File: 2921D24E067C11ED882FC127C4F9AE02.roa (raw, json) Hash identifier: SYNFbcH8HzGPIsMBW9XTocpmE1aT0mHnM63Xr+TRRF0= Subject key identifier: BF:0E:B8:32:C5:B0:55:0F:AE:9E:38:8A:34:78:50:93:E8:9C:F2:19 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 0834 Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa Signing time: Fri 31 May 2024 22:09:31 +0000 ROA not before: Fri 31 May 2024 22:09:31 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 134806 IP address blocks: 114.129.12.0/22 maxlen: 22 114.129.12.0/24 maxlen: 24 114.129.13.0/24 maxlen: 24 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: May 31 22:09:31 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a4a9b-cd38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c5:df:4f:9b:3f:0b:ab:d7:f9:69:ee:e5:17: 4d:6c:86:d6:4e:79:6a:f8:4d:37:6d:df:5d:7f:d5: 9f:7e:cf:f7:ef:e8:ab:ca:9f:31:e3:cf:6a:98:ed: 58:a8:8b:4e:c3:86:71:eb:4a:bf:ad:85:d5:d2:49: d1:cb:bf:ce:9e:c3:8c:70:5d:15:8d:85:6e:6d:84: 8d:9c:53:c7:e5:14:c8:55:0a:55:af:af:36:bb:4e: 68:54:41:14:07:91:b4:a7:f5:65:af:f1:f8:5a:dc: 0e:92:7d:8a:41:3d:04:ee:7e:bf:17:bb:e5:d9:8b: 1b:6b:4b:ff:fc:de:43:4f:48:de:44:54:d2:96:83: 85:dc:36:ed:fb:ee:a5:aa:b0:06:0d:a3:04:07:bf: ef:f6:7c:99:a2:f1:28:e4:b8:77:a7:b9:ac:94:0e: 4a:40:b7:4b:ac:8e:31:1c:95:a5:c9:cf:57:9c:39: 04:a9:ba:8b:5a:62:82:84:d5:01:10:ff:1e:be:e6: 0b:e9:63:66:b4:b2:b7:89:a9:05:7e:b0:07:8a:d8: a9:7e:51:d7:b1:01:70:b9:53:31:5d:da:dd:d9:fc: ca:87:c1:eb:36:82:5b:d6:2e:cb:7f:1a:88:34:61: 61:c5:f4:76:50:a7:f0:35:b8:9f:d2:c1:e3:49:10: c7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0E:B8:32:C5:B0:55:0F:AE:9E:38:8A:34:78:50:93:E8:9C:F2:19 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.12.0/22 Signature Algorithm: sha256WithRSAEncryption b7:30:18:23:5c:16:3e:be:75:c8:6e:33:57:28:7f:8e:83:16: da:d1:c3:e2:47:08:fe:4f:f5:b4:ac:1d:d6:80:28:d7:7b:2e: 3b:57:bf:82:fd:28:06:8a:e2:6e:33:92:3d:b2:3c:f8:5d:6f: 54:27:6f:d1:ca:97:2a:eb:f8:fd:93:08:d2:08:3e:ec:e9:f4: 43:ad:64:9f:78:ff:e2:fe:74:62:8c:99:e5:05:51:5b:f8:f4: 0b:7b:c8:0a:59:a8:0d:2d:eb:c3:23:07:6e:b8:a5:21:69:2f: ff:a0:ad:88:41:a6:b1:be:9b:ea:94:96:b0:5a:6e:05:85:a3: a2:e8:3a:8b:01:00:37:f5:d8:9c:32:84:53:7a:36:48:b7:e7: c9:99:84:94:73:dc:85:dd:86:cb:fc:45:ae:61:8e:dd:d5:f2: 2c:d1:c1:a5:07:88:85:5e:d7:d1:7e:05:48:17:50:99:36:02: 40:cf:cc:a4:17:6e:7a:34:ce:49:a7:30:88:22:3f:55:ad:53: 90:66:ca:fc:a5:02:72:bd:47:6c:1d:19:07:3d:51:94:2f:86: 46:05:15:e1:eb:86:d2:a7:93:69:e9:df:73:3f:0a:57:ba:ce: bd:47:3b:30:da:89:5c:c4:4c:1b:0c:30:d0:4c:ba:48:e9:06: 1b:16:ba:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjQwNTMxMjIwOTMxWhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNGE5Yi1jZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8XfT5s/C6vX+Wnu5RdNbIbWTnlq+E03bd9df9Wffs/37+iryp8x489qmO1Y qItOw4Zx60q/rYXV0knRy7/OnsOMcF0VjYVubYSNnFPH5RTIVQpVr682u05oVEEU B5G0p/Vlr/H4WtwOkn2KQT0E7n6/F7vl2Ysba0v//N5DT0jeRFTSloOF3Dbt++6l qrAGDaMEB7/v9nyZovEo5Lh3p7mslA5KQLdLrI4xHJWlyc9XnDkEqbqLWmKChNUB EP8evuYL6WNmtLK3iakFfrAHitipflHXsQFwuVMxXdrd2fzKh8HrNoJb1i7LfxqI NGFhxfR2UKfwNbif0sHjSRDH0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFL8OuDLF sFUPrp44ijR4UJPonPIZMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjkyMUQyNEUw NjdDMTFFRDg4MkZDMTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJygQwwDQYJKoZIhvcNAQELBQADggEBALcwGCNcFj6+dchu M1cof46DFtrRw+JHCP5P9bSsHdaAKNd7LjtXv4L9KAaK4m4zkj2yPPhdb1Qnb9HK lyrr+P2TCNIIPuzp9EOtZJ94/+L+dGKMmeUFUVv49At7yApZqA0t68MjB264pSFp L/+grYhBprG+m+qUlrBabgWFo6LoOosBADf12JwyhFN6Nki358mZhJRz3IXdhsv8 Ra5hjt3V8izRwaUHiIVe19F+BUgXUJk2AkDPzKQXbno0zkmnMIgiP1WtU5Bmyvyl AnK9R2wdGQc9UZQvhkYFFeHrhtKnk2np33M/Cle6zr1HOzDaiVzETBsMMNBMukjp BhsWuoY= -----END CERTIFICATE-----Generated at Fri May 31 22:56:58 2024 by rpki-client on console-fra.rpki-client.org