$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa File: 50550748066011EEA5F59657C4F9AE02.roa (raw, json) Hash identifier: 4bm3lkHj+2MTaFyaR1QGY16IHgqLgwkNrgHGb+GPfI8= Subject key identifier: 54:DB:AC:44:A6:7C:B3:B0:11:C2:1C:F9:C3:AA:A3:36:1A:59:A6:49 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D38 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:40 +0000 ROA not before: Tue 02 Jan 2024 16:54:40 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58466 IP address blocks: 121.14.0.0/19 maxlen: 19 121.14.32.0/22 maxlen: 22 121.14.36.0/22 maxlen: 22 121.14.40.0/21 maxlen: 21 121.14.48.0/20 maxlen: 20 121.14.64.0/21 maxlen: 21 121.14.192.0/20 maxlen: 20 125.88.31.0/24 maxlen: 24 125.88.64.0/23 maxlen: 23 125.88.168.0/21 maxlen: 21 125.94.32.0/19 maxlen: 19 125.94.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7480 (0x1d38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:40 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fcf-18a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7e:39:9d:7b:1c:2f:91:e4:2b:5a:78:0a:43: aa:d1:29:10:9a:99:49:74:e6:61:69:e5:cb:02:cc: 9d:d3:ce:65:b4:61:a3:b7:da:a6:8e:5d:54:95:50: 94:c5:06:41:4b:47:74:c0:5f:67:17:17:85:64:6a: 03:26:6b:63:bd:97:a5:55:0b:b8:63:be:c6:32:0b: 8a:91:8c:5b:a2:12:cc:12:ae:d2:34:03:b3:cc:9e: 27:bb:df:a4:66:f7:4a:f9:cc:a7:7d:3d:50:08:65: d7:43:8a:7f:64:4a:40:19:aa:92:0f:03:03:32:34: f1:9e:76:3e:13:1d:9f:ac:86:ce:ba:2d:9f:c9:8d: 97:e6:5e:27:d1:18:f8:e7:1a:1b:e0:f8:d0:f4:e3: 81:5c:37:72:6b:22:d0:e1:bf:8b:38:6f:b6:13:70: c3:12:7c:b8:bb:84:34:57:b1:26:5c:d0:ba:fb:e7: e2:c4:9c:55:27:ac:4d:a5:96:a7:01:ef:f7:2f:91: 88:3b:53:1c:fd:13:4d:41:37:05:10:1e:26:62:69: 41:9d:dd:b5:65:bc:40:a2:37:09:e2:93:f4:2c:d0: 80:45:d1:3f:eb:0e:da:29:c3:cf:85:34:41:2a:df: f2:e0:a6:dc:70:d2:80:2c:d9:71:28:01:8d:09:77: 43:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DB:AC:44:A6:7C:B3:B0:11:C2:1C:F9:C3:AA:A3:36:1A:59:A6:49 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.14.0.0-121.14.71.255 121.14.192.0/20 125.88.31.0/24 125.88.64.0/23 125.88.168.0/21 125.94.32.0/19 125.94.212.0/22 Signature Algorithm: sha256WithRSAEncryption 42:05:d0:ad:24:78:31:b4:20:aa:ab:ed:c5:d2:89:7d:e5:5d: bd:85:50:d4:41:75:a6:34:ab:e5:b7:86:86:21:da:7c:f4:0d: 78:b6:57:37:3d:44:aa:06:83:f6:3a:54:35:0e:d6:71:0e:85: 81:cf:b7:df:4c:90:d2:2d:e5:48:b7:17:ed:c3:49:99:71:4a: 6c:55:5a:48:69:89:6b:12:22:0f:cb:29:9a:fc:3a:24:fc:d2: 2b:dd:3c:b3:bb:cf:8d:3c:af:58:29:54:e1:d3:d2:5d:a0:56: ac:2d:58:f8:5d:db:53:7f:47:cb:b0:dd:eb:cd:93:da:71:65: 32:b9:eb:a0:e3:52:85:c6:78:83:b7:a2:fd:f0:73:be:da:9b: 10:7f:c2:d1:7a:3f:ba:82:49:9b:f2:c7:b5:9f:1d:0a:df:9a: 79:8a:ce:a0:8f:19:15:e3:c2:26:ed:6a:0c:92:6f:33:9c:d6: 8f:92:48:5f:22:f6:60:31:85:7d:c6:5c:10:25:12:71:41:f2: 17:96:f5:31:2b:4c:87:92:c6:d0:20:4b:46:ad:0f:ac:4c:ca: eb:97:df:72:6c:5c:c8:2e:d3:f3:12:cb:e5:61:d5:83:dd:7d: b2:56:cf:4a:1e:2b:ea:df:c0:98:13:07:fc:ee:a9:95:52:09: 52:d1:f4:cc -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICHTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDQwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjZi0xOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX45nXscL5HkK1p4CkOq0SkQmplJdOZhaeXLAsyd085ltGGjt9qmjl1UlVCU xQZBS0d0wF9nFxeFZGoDJmtjvZelVQu4Y77GMguKkYxbohLMEq7SNAOzzJ4nu9+k ZvdK+cynfT1QCGXXQ4p/ZEpAGaqSDwMDMjTxnnY+Ex2frIbOui2fyY2X5l4n0Rj4 5xob4PjQ9OOBXDdyayLQ4b+LOG+2E3DDEny4u4Q0V7EmXNC6++fixJxVJ6xNpZan Ae/3L5GIO1Mc/RNNQTcFEB4mYmlBnd21ZbxAojcJ4pP0LNCARdE/6w7aKcPPhTRB Kt/y4KbccNKALNlxKAGNCXdDpwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFFTbrESm fLOwEcIc+cOqozYaWaZJMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNTA1NTA3NDgw NjYwMTFFRUE1RjU5NjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MDcEAgABMDEwCwMDAXkOAwQDeQ5AAwQEeQ7AAwQAfVgfAwQBfVhAAwQDfVio AwQFfV4gAwQCfV7UMA0GCSqGSIb3DQEBCwUAA4IBAQBCBdCtJHgxtCCqq+3F0ol9 5V29hVDUQXWmNKvlt4aGIdp89A14tlc3PUSqBoP2OlQ1DtZxDoWBz7ffTJDSLeVI txftw0mZcUpsVVpIaYlrEiIPyyma/Dok/NIr3Tyzu8+NPK9YKVTh09JdoFasLVj4 XdtTf0fLsN3rzZPacWUyueug41KFxniDt6L98HO+2psQf8LRej+6gkmb8se1nx0K 35p5is6gjxkV48Im7WoMkm8znNaPkkhfIvZgMYV9xlwQJRJxQfIXlvUxK0yHksbQ IEtGrQ+sTMrrl99ybFzILtPzEsvlYdWD3X2yVs9KHivq38CYEwf87qmVUglS0fTM -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org