$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa File: B33C5F9C05FB11EE9D130335C4F9AE02.roa (raw, json) Hash identifier: +Uzrn8/gC0o1YuNLjKUCDrjCamhqi8oC58qAppmbNeA= Subject key identifier: CD:15:76:82:E3:D4:9E:96:D8:96:7E:E1:E3:94:4D:AF:87:A7:7A:7F Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D2A Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:25 +0000 ROA not before: Tue 02 Jan 2024 16:54:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23650 IP address blocks: 121.227.30.0/23 maxlen: 23 218.30.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7466 (0x1d2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:25 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fc1-80b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:c3:2a:c7:cd:e2:67:c9:9f:87:d7:c5:33: fb:79:72:bc:14:b1:d2:dd:16:0b:2e:0d:34:d4:39: ea:c2:e3:4b:79:1e:75:4d:3f:d2:75:95:e7:24:f9: d3:fd:cb:32:a6:82:a7:c1:20:87:bc:ca:a5:e1:a9: 2b:b6:83:41:1f:4d:64:a4:7b:a5:b1:3b:2a:5c:78: 97:f0:98:9a:24:80:3b:a1:45:e5:ee:11:e3:69:4f: 19:9c:53:c0:b4:e9:4e:36:de:5f:ca:cf:3f:6d:1e: 04:15:0f:b9:fc:09:78:c5:d2:c6:08:07:70:b1:43: 02:dd:70:fc:21:01:ed:38:3d:bf:26:c5:f3:e4:c5: de:3f:48:fa:ba:65:d1:bc:4f:1a:6b:ab:c2:e8:b6: 90:d6:99:6d:5e:a7:62:3f:3a:a8:bf:12:db:b1:bf: 84:e3:fa:f4:23:0e:65:83:33:4d:e5:3a:e4:0f:03: db:11:ff:98:9b:82:01:91:46:d4:74:ea:4d:36:6f: d0:65:fc:c3:e7:e4:3e:a9:78:7c:a8:88:ec:98:b5: 50:bc:fe:a1:d3:f8:3f:63:75:6f:b3:dd:33:a7:99: 27:3b:d5:ab:74:99:83:86:85:ea:85:34:aa:33:e0: 7f:bf:be:fd:06:10:40:be:86:fa:f6:d7:28:6a:dd: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:15:76:82:E3:D4:9E:96:D8:96:7E:E1:E3:94:4D:AF:87:A7:7A:7F X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.227.30.0/23 218.30.129.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:5a:f2:b4:35:e7:3f:23:76:dc:77:8a:72:e6:cd:37:db:a5: 44:02:c4:6b:af:68:3f:50:ba:b3:55:23:82:ae:97:2a:68:f2: 61:b9:cd:0e:34:2d:e6:6e:b0:83:3e:57:b0:43:aa:a3:ef:42: de:34:9d:0f:12:75:4a:17:14:c8:35:58:9e:39:d5:60:f2:bc: 0e:f9:6a:16:ef:69:ad:d7:31:01:e2:71:0d:d7:53:f0:15:89: b7:17:03:df:80:e9:bc:4d:5d:b1:c9:65:8b:39:d0:b0:e4:44: ed:2a:38:3f:cc:53:1e:4e:79:6f:27:9f:a9:17:89:a0:13:f6: f7:e3:60:8f:25:ed:fb:69:53:5e:f2:dc:ac:80:25:fe:16:ec: 46:6f:98:f6:d4:c7:7c:e2:7e:ae:72:02:32:b3:5c:b7:54:17: 3e:a2:4f:2d:f6:cd:21:d0:1b:f3:05:29:e3:b4:f5:30:40:f2: 22:fc:27:33:fb:f6:2a:ea:9e:9d:7c:14:38:24:59:4f:fc:41: 78:a4:7b:21:01:c6:cb:b0:ca:17:61:c6:71:a4:28:4b:35:27: dd:47:10:43:fa:a0:40:b3:0b:28:cb:61:4e:d8:5e:98:db:78: cf:91:e6:1b:cf:a8:92:d0:9a:95:19:6e:15:54:bf:1e:28:7e: 3b:a7:05:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjMS04MGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhPDKsfN4mfJn4fXxTP7eXK8FLHS3RYLLg001DnqwuNLeR51TT/SdZXnJPnT /csypoKnwSCHvMql4akrtoNBH01kpHulsTsqXHiX8JiaJIA7oUXl7hHjaU8ZnFPA tOlONt5fys8/bR4EFQ+5/Al4xdLGCAdwsUMC3XD8IQHtOD2/JsXz5MXeP0j6umXR vE8aa6vC6LaQ1pltXqdiPzqovxLbsb+E4/r0Iw5lgzNN5TrkDwPbEf+Ym4IBkUbU dOpNNm/QZfzD5+Q+qXh8qIjsmLVQvP6h0/g/Y3Vvs90zp5knO9WrdJmDhoXqhTSq M+B/v779BhBAvob69tcoat3M4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM0VdoLj 1J6W2JZ+4eOUTa+Hp3p/MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjMzQzVGOUMw NUZCMTFFRTlEMTMwMzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAF54x4DBADaHoEwDQYJKoZIhvcNAQELBQADggEBAA5a8rQ1 5z8jdtx3inLmzTfbpUQCxGuvaD9QurNVI4Kulypo8mG5zQ40LeZusIM+V7BDqqPv Qt40nQ8SdUoXFMg1WJ451WDyvA75ahbvaa3XMQHicQ3XU/AVibcXA9+A6bxNXbHJ ZYs50LDkRO0qOD/MUx5OeW8nn6kXiaAT9vfjYI8l7ftpU17y3KyAJf4W7EZvmPbU x3zifq5yAjKzXLdUFz6iTy32zSHQG/MFKeO09TBA8iL8JzP79irqnp18FDgkWU/8 QXikeyEBxsuwyhdhxnGkKEs1J91HEEP6oECzCyjLYU7YXpjbeM+R5hvPqJLQmpUZ bhVUvx4ofjunBd4= -----END CERTIFICATE-----Generated at Thu May 16 17:51:20 2024 by rpki-client on console-ams.rpki-client.org