$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/12326B1E3ED211EDAE00DB18C4F9AE02.roa File: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (raw, json) Hash identifier: MuB76Lbxbupdwoe9xhayAdd4VVYRzmFU6otiNJ6/kG0= Subject key identifier: CA:5C:7F:AB:75:F4:35:AC:74:42:CE:78:AF:46:68:A3:BE:F7:A4:03 Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: DB Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/12326B1E3ED211EDAE00DB18C4F9AE02.roa Signing time: Mon 13 Nov 2023 04:15:01 +0000 ROA not before: Mon 13 Nov 2023 04:15:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135060 IP address blocks: 111.235.140.0/22 maxlen: 22 111.235.140.0/24 maxlen: 24 111.235.141.0/24 maxlen: 24 111.235.142.0/24 maxlen: 24 111.235.143.0/24 maxlen: 24 125.254.60.0/24 maxlen: 24 125.254.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: Nov 13 04:15:01 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6551a2c5-d687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:04:d7:b6:09:c9:a0:e3:eb:1f:f9:1b:9a:1d: 48:d4:13:88:aa:5f:82:79:6b:41:f5:92:94:a4:fc: ed:25:2f:d2:e4:cd:c6:9c:3f:16:f7:58:ff:a8:9a: 91:ca:12:66:b1:e8:85:89:41:ba:9b:8e:e0:07:37: 0e:6b:7a:a5:63:d4:40:ea:fc:f9:4c:57:4b:e1:d5: ba:54:70:71:ce:e1:cd:b1:16:ab:fe:1e:f5:33:bb: d0:10:1c:a9:31:74:0b:9a:08:96:b9:0b:59:e8:c7: ba:11:ce:51:91:8d:ac:f1:02:d9:69:ee:db:ff:a0: 78:59:b5:03:49:ee:3a:60:f2:40:fb:28:31:b5:17: 20:d4:92:5c:5e:aa:76:6d:98:7f:46:40:17:b5:a1: 5f:f0:e9:48:b2:72:62:5f:7e:8a:7a:8b:99:92:9b: 02:4a:d1:96:17:f1:fb:41:24:65:cb:b7:43:4c:f4: 60:51:ab:5d:87:d6:6f:2d:ba:1c:3f:a5:a7:da:e5: b8:ae:98:2e:3c:13:b5:79:f5:cb:7d:10:d5:37:f2: 2e:ab:51:92:e9:75:30:b1:6d:4b:17:6b:d1:7e:39: fb:c1:2b:39:90:27:aa:b8:7d:c6:f4:3a:cb:78:a9: 9c:b3:8f:43:f1:1d:a0:97:bd:18:8b:91:c0:d7:a1: 8b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5C:7F:AB:75:F4:35:AC:74:42:CE:78:AF:46:68:A3:BE:F7:A4:03 X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/12326B1E3ED211EDAE00DB18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.235.140.0/22 125.254.60.0/23 Signature Algorithm: sha256WithRSAEncryption 75:ef:3a:4c:06:03:c9:b6:18:45:d7:56:b9:a5:f5:a1:0f:a7: 0c:67:48:91:f7:27:66:4a:8d:65:e1:a6:eb:d1:00:c8:52:a7: 59:3d:ae:6e:c0:03:e2:df:a3:70:43:53:c0:e8:61:bf:0e:b0: 22:35:50:a7:1b:1f:e4:fe:46:65:99:4e:08:13:9c:4b:98:b9: fc:61:f6:44:e8:ce:c3:29:e7:9f:d2:ef:53:f1:48:3c:de:c6: 6c:ca:56:7d:e9:6a:25:d2:fd:7f:01:0d:e6:4c:f0:c4:3a:6a: ea:90:6a:a7:d4:01:45:2c:b5:37:af:1e:3a:55:8b:b5:d4:d9: 6b:a6:57:ff:ea:f9:c5:c8:b9:3d:b6:e2:a9:24:82:05:0c:c9: b6:b9:d1:12:8d:a8:58:bc:be:a3:0c:e8:13:8b:c8:18:52:0b: 09:d8:65:83:f0:84:2d:ce:f0:12:9a:b8:69:55:88:51:1e:2d: 8a:c4:ce:f4:ee:c6:25:e1:00:8c:6e:96:a4:34:c6:3b:a8:83: c4:98:e3:fa:80:d1:52:d1:03:c0:29:de:a4:e5:06:63:f1:d1: 40:b7:e3:63:9b:65:09:a4:57:31:21:11:6a:96:e8:38:75:94: 76:5c:01:a4:9e:4b:8c:98:c2:79:51:cb:83:ce:e6:3f:a3:5e: d4:04:b0:04 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjMxMTEzMDQxNTAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUxYTJjNS1kNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwTXtgnJoOPrH/kbmh1I1BOIql+CeWtB9ZKUpPztJS/S5M3GnD8W91j/qJqR yhJmseiFiUG6m47gBzcOa3qlY9RA6vz5TFdL4dW6VHBxzuHNsRar/h71M7vQEByp MXQLmgiWuQtZ6Me6Ec5RkY2s8QLZae7b/6B4WbUDSe46YPJA+ygxtRcg1JJcXqp2 bZh/RkAXtaFf8OlIsnJiX36KeouZkpsCStGWF/H7QSRly7dDTPRgUatdh9ZvLboc P6Wn2uW4rpguPBO1efXLfRDVN/Iuq1GS6XUwsW1LF2vRfjn7wSs5kCequH3G9DrL eKmcs49D8R2gl70Yi5HA16GLkwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMpcf6t1 9DWsdELOeK9GaKO+96QDMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UwRDcvOEZFRjg0MDQzRUNGMTFFREE1RjFGQTE3QzRGOUFFMDIvMTIzMjZCMUUz RUQyMTFFREFFMDBEQjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJv64wDBAF9/jwwDQYJKoZIhvcNAQELBQADggEBAHXvOkwG A8m2GEXXVrml9aEPpwxnSJH3J2ZKjWXhpuvRAMhSp1k9rm7AA+Lfo3BDU8DoYb8O sCI1UKcbH+T+RmWZTggTnEuYufxh9kTozsMp55/S71PxSDzexmzKVn3paiXS/X8B DeZM8MQ6auqQaqfUAUUstTevHjpVi7XU2WumV//q+cXIuT224qkkggUMyba50RKN qFi8vqMM6BOLyBhSCwnYZYPwhC3O8BKauGlViFEeLYrEzvTuxiXhAIxulqQ0xjuo g8SY4/qA0VLRA8Ap3qTlBmPx0UC342ObZQmkVzEhEWqW6Dh1lHZcAaSeS4yYwnlR y4PO5j+jXtQEsAQ= -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org