$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa File: A012C5E0AF7911EA869B4722C4F9AE02.roa (raw, json) Hash identifier: 5tiydkgDBlI9FnJnzCFc3Jh51IY+zQLYPQGWKOyPqd4= Subject key identifier: E2:83:2E:9A:21:70:49:0A:B1:50:F9:D8:5C:38:BD:E7:22:B2:F7:E5 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D26 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:22 +0000 ROA not before: Tue 02 Jan 2024 16:54:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17638 IP address blocks: 123.151.192.0/19 maxlen: 19 123.151.210.0/24 maxlen: 24 123.151.224.0/19 maxlen: 19 218.30.175.0/24 maxlen: 24 218.30.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7462 (0x1d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:22 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fbe-ca26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b1:65:64:6b:87:92:f3:22:77:42:31:f9:88: 60:65:a9:68:5f:25:c4:08:27:28:5d:c2:e0:97:42: 57:23:e3:69:6a:09:e0:94:e1:e5:e3:2e:8e:86:c8: 1a:d9:ea:38:43:2e:be:6e:ab:e6:60:71:cf:4f:38: dd:ec:ad:14:f8:47:03:cf:35:50:34:c9:0e:85:5c: bf:9f:05:14:97:9d:ae:fb:be:6b:73:2f:51:df:8e: 55:6e:7a:63:49:f6:22:66:db:23:0c:f0:f3:c8:00: 28:5f:56:7e:3a:16:77:cc:d5:b7:58:3c:94:92:68: e2:79:e5:72:1f:42:53:52:78:6a:47:1a:37:48:9b: 36:de:85:a5:1c:78:57:9b:26:08:32:90:51:3b:d1: db:85:8c:85:2e:f2:10:22:e9:81:e3:3b:7d:0d:97: 4f:fc:46:6f:c5:e2:09:80:44:67:4b:ce:95:a8:d0: 2f:c9:95:65:61:45:da:4b:e8:b0:7e:40:75:b7:33: ce:da:98:b3:c2:e0:d9:cd:09:99:15:fe:74:01:02: 27:4a:7f:00:7f:a5:13:d6:c1:ca:55:d4:0a:9d:00: b2:3e:d4:97:c8:61:0d:da:b3:a3:10:83:90:d6:1c: 34:f1:00:2f:f8:70:fe:0f:91:cd:c2:32:57:10:a8: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:83:2E:9A:21:70:49:0A:B1:50:F9:D8:5C:38:BD:E7:22:B2:F7:E5 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.151.192.0/18 218.30.175.0/24 218.30.189.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:49:01:3c:15:18:15:18:02:f4:f1:35:28:7b:70:07:dc:ff: f4:db:06:74:d5:bd:7f:b0:d4:fd:21:98:b8:3e:bd:9e:96:8b: 12:12:ef:69:78:07:1a:63:5e:e2:48:50:05:c8:f2:b7:a1:76: 46:4b:e2:96:bf:be:1b:3d:b9:4b:34:c5:b4:e3:33:55:c4:98: 44:6d:7e:a0:04:1f:d0:e3:64:c5:b7:5c:69:ef:f3:d7:75:1b: d6:ab:1e:f1:af:40:87:21:37:bd:95:8a:c8:8d:b0:b8:af:d2: 32:de:81:b1:8c:30:5e:9a:f7:62:0b:63:57:3d:a0:14:3d:69: 8d:6d:2e:55:7d:3a:e5:5f:1b:d0:d1:1b:15:87:3c:c4:22:c7: 45:17:89:67:d9:61:23:3c:d2:7f:d5:be:b3:37:e0:1d:32:e2: ba:0d:8b:2c:6c:89:21:f5:0e:e2:9d:3d:f2:77:7c:72:0a:8e: 26:54:30:ef:49:0f:51:9c:fa:97:a6:0a:18:1b:6e:32:f5:71: 42:98:3e:10:20:49:5c:3d:7d:4c:6c:6a:85:14:c5:31:18:f9: b6:a6:3f:01:79:24:99:07:94:f7:46:77:fb:37:96:02:ee:27: 00:be:7b:07:e4:00:ec:6b:6f:e2:6c:7f:47:fb:78:40:4c:a1: a1:25:be:69 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDIyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZiZS1jYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLFlZGuHkvMid0Ix+YhgZaloXyXECCcoXcLgl0JXI+NpagnglOHl4y6Ohsga 2eo4Qy6+bqvmYHHPTzjd7K0U+EcDzzVQNMkOhVy/nwUUl52u+75rcy9R345Vbnpj SfYiZtsjDPDzyAAoX1Z+OhZ3zNW3WDyUkmjieeVyH0JTUnhqRxo3SJs23oWlHHhX myYIMpBRO9HbhYyFLvIQIumB4zt9DZdP/EZvxeIJgERnS86VqNAvyZVlYUXaS+iw fkB1tzPO2pizwuDZzQmZFf50AQInSn8Af6UT1sHKVdQKnQCyPtSXyGEN2rOjEIOQ 1hw08QAv+HD+D5HNwjJXEKjcVQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOKDLpoh cEkKsVD52Fw4vecisvflMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQTAxMkM1RTBB Rjc5MTFFQTg2OUI0NzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAZ7l8ADBADaHq8DBADaHr0wDQYJKoZIhvcNAQELBQADggEB ABxJATwVGBUYAvTxNSh7cAfc//TbBnTVvX+w1P0hmLg+vZ6WixIS72l4BxpjXuJI UAXI8rehdkZL4pa/vhs9uUs0xbTjM1XEmERtfqAEH9DjZMW3XGnv89d1G9arHvGv QIchN72VisiNsLiv0jLegbGMMF6a92ILY1c9oBQ9aY1tLlV9OuVfG9DRGxWHPMQi x0UXiWfZYSM80n/VvrM34B0y4roNiyxsiSH1DuKdPfJ3fHIKjiZUMO9JD1Gc+pem ChgbbjL1cUKYPhAgSVw9fUxsaoUUxTEY+bamPwF5JJkHlPdGd/s3lgLuJwC+ewfk AOxrb+Jsf0f7eEBMoaElvmk= -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org