$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa File: 7D7B467CE06011EDBB10FD53C4F9AE02.roa (raw, json) Hash identifier: pvGor71t4ioPGT4f0E8Hry/0JGwGZCFr6ATYIOq/AWA= Subject key identifier: 1F:22:4E:56:58:EC:56:F0:A7:F8:59:CD:C9:06:45:67:A9:46:61:13 Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Certificate serial: 05E2 Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa Signing time: Sat 03 Jun 2023 00:37:20 +0000 ROA not before: Sat 03 Jun 2023 00:37:20 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45250 IP address blocks: 114.199.64.0/24 maxlen: 24 114.199.66.0/24 maxlen: 24 114.199.72.0/24 maxlen: 24 114.199.76.0/24 maxlen: 24 114.199.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 23:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Validity Not Before: Jun 3 00:37:20 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a8b3f-4ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:7d:44:3a:4a:84:9e:c6:ff:73:df:05:e8: 5d:26:ce:b1:c5:c2:72:fd:21:c2:ae:2d:16:06:48: 62:8b:9c:69:c5:aa:92:9a:b8:f7:d5:f6:ef:3c:4c: f8:ce:0b:77:a4:c1:d3:10:84:05:f6:94:24:65:03: 19:50:7b:e6:9b:26:50:45:9d:14:4b:52:90:01:e0: 3c:fe:f6:51:63:f8:59:94:32:06:26:b6:f5:df:89: ac:fb:4c:58:fc:15:f9:95:04:b8:dc:74:cd:71:db: dc:32:8f:29:21:d2:24:a0:30:39:da:1b:26:39:df: 0e:33:70:c6:7d:f0:b6:cc:71:40:14:64:81:18:f3: c9:c8:ff:52:6e:e5:43:8c:38:93:4e:2c:64:70:6e: 96:14:92:38:0d:8e:2c:7a:5a:3f:46:2d:e5:22:b0: d4:89:16:aa:ee:76:9b:f5:9b:33:f0:1d:06:06:ea: 0e:d8:5c:30:43:88:ed:61:b7:2d:f6:0e:c3:e0:fe: 8e:0f:6f:46:7c:5e:7e:d6:9e:04:7a:93:7b:a5:6f: 1a:1e:51:7e:23:80:a9:05:df:c9:9f:00:c9:07:9f: ee:59:4a:a8:67:7d:dd:d4:49:64:5b:8d:de:45:ce: 45:78:ee:08:b3:97:59:57:b6:57:0f:c7:b6:b3:cb: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:22:4E:56:58:EC:56:F0:A7:F8:59:CD:C9:06:45:67:A9:46:61:13 X509v3 Authority Key Identifier: keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.199.64.0/24 114.199.66.0/24 114.199.72.0/24 114.199.76.0/24 114.199.79.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:d2:2c:cf:7c:f0:01:85:e9:71:80:dd:97:60:d0:27:2f:5d: 95:fe:3f:9a:e2:c6:39:59:63:71:1f:c5:cb:54:34:bd:79:31: 73:5d:ac:b9:c7:e5:ca:21:4b:65:85:af:85:d4:58:5b:05:95: 43:11:07:c1:96:f8:fe:7c:4a:ef:8a:11:76:e9:32:8b:54:3c: 31:e7:e4:6a:9b:43:ab:03:d2:9a:86:1c:e2:94:4e:a4:b0:ba: 10:03:43:9e:e0:38:2b:ec:e4:72:44:b9:f3:d5:ee:0e:09:71: 96:a6:75:e5:bc:77:74:a3:a1:63:62:39:67:48:45:38:17:01: b5:4c:0c:36:6d:b4:e1:5d:6d:96:a9:e3:f8:1e:4e:2c:65:ae: 72:d6:53:6d:00:ad:12:d6:e9:b4:fc:88:56:8a:77:61:3e:66: 5b:ac:0f:0b:70:bd:13:ad:bb:db:b9:8c:9e:7d:ac:62:b5:27: 9d:da:56:0f:7d:5b:c4:9e:1f:e1:39:0f:be:38:84:f5:a9:7c: 84:81:15:b0:32:22:9a:6e:e0:6f:e2:2c:11:3e:c8:e7:e8:3d: 4d:30:b2:6e:8c:c0:1c:f1:ed:45:a3:08:ba:4b:fb:8c:ae:80: c3:b1:93:f3:04:4a:58:da:43:a3:c3:53:53:97:c0:12:95:8d: 6d:f8:1b:27 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NkMxMTAvBgNVBAUTKDgxOTc2NjNBN0Y2MzQ3RDU5MUI2QjJCOUFERDVBMkQ1 NzRFOTExMjQwHhcNMjMwNjAzMDAzNzIwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhOGIzZi00ZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQR9RDpKhJ7G/3PfBehdJs6xxcJy/SHCri0WBkhii5xpxaqSmrj31fbvPEz4 zgt3pMHTEIQF9pQkZQMZUHvmmyZQRZ0US1KQAeA8/vZRY/hZlDIGJrb134ms+0xY /BX5lQS43HTNcdvcMo8pIdIkoDA52hsmOd8OM3DGffC2zHFAFGSBGPPJyP9SbuVD jDiTTixkcG6WFJI4DY4selo/Ri3lIrDUiRaq7nab9Zsz8B0GBuoO2FwwQ4jtYbct 9g7D4P6OD29GfF5+1p4EepN7pW8aHlF+I4CpBd/JnwDJB5/uWUqoZ33d1ElkW43e Rc5FeO4Is5dZV7ZXD8e2s8vatQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFB8iTlZY 7Fbwp/hZzckGRWepRmETMB8GA1UdIwQYMBaAFIGXZjp/Y0fVkbayua3VotV06REk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk2Qy8xRDMxQzE4NDI4 OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5V1J0cks1cmRXaTFYVHBF U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2daZG1PbjlqUjlXUnRySzVyZFdpMVhUcEVTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA5NkMvMUQzMUMxODQyODkyMTFFQkFDOENDRTEzQzRGOUFFMDIvN0Q3QjQ2N0NF MDYwMTFFREJCMTBGRDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAByx0ADBAByx0IDBAByx0gDBAByx0wDBAByx08wDQYJKoZI hvcNAQELBQADggEBAA/SLM988AGF6XGA3Zdg0CcvXZX+P5rixjlZY3EfxctUNL15 MXNdrLnH5cohS2WFr4XUWFsFlUMRB8GW+P58Su+KEXbpMotUPDHn5GqbQ6sD0pqG HOKUTqSwuhADQ57gOCvs5HJEufPV7g4JcZamdeW8d3SjoWNiOWdIRTgXAbVMDDZt tOFdbZap4/geTixlrnLWU20ArRLW6bT8iFaKd2E+ZlusDwtwvROtu9u5jJ59rGK1 J53aVg99W8SeH+E5D744hPWpfISBFbAyIppu4G/iLBE+yOfoPU0wsm6MwBzx7UWj CLpL+4yugMOxk/MESljaQ6PDU1OXwBKVjW34Gyc= -----END CERTIFICATE-----Generated at Wed May 15 01:43:40 2024 by rpki-client on console-ams.rpki-client.org