$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa File: B33C5F9C05FB11EE9D130335C4F9AE02.roa (raw, json) Hash identifier: fNI06QusL/HQ5dYlBMs9UDIEqjOTE4N+DiowzCmZuiI= Subject key identifier: 49:E7:50:A6:6D:47:95:88:99:52:46:39:33:93:18:DE:F6:26:72:6D Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E20 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:50 +0000 ROA not before: Fri 20 Sep 2024 16:34:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23650 IP address blocks: 121.227.30.0/23 maxlen: 23 218.30.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7712 (0x1e20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:34:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda429-c228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:00:c0:ca:bb:91:d6:c4:88:de:08:ba:80: e3:ad:d6:b9:52:c7:2c:09:7c:93:48:8d:7f:a0:4b: 63:90:93:8b:61:78:cf:ad:d1:29:13:c7:33:64:8f: 85:f6:0e:18:16:14:f4:2f:9c:45:c9:46:2d:45:39: c8:6a:41:d7:da:0b:84:11:d7:dc:e9:08:21:54:2b: db:b3:8c:a0:a6:ce:96:99:f5:5f:67:86:62:af:75: 85:56:8a:de:68:16:4a:c3:a2:06:41:20:06:42:c8: a8:7f:2c:2d:ab:d9:1e:d0:0a:8e:d2:82:48:69:1b: aa:76:61:0a:c5:b6:15:8e:ae:37:d3:d3:95:04:04: 1c:3c:80:af:0f:90:c8:f8:3e:1b:a1:db:c1:c3:4d: c6:a4:7b:f5:ea:8c:75:d9:14:fb:fd:e9:cd:9a:af: ee:a0:f6:66:f7:c8:81:5f:36:22:07:b6:8d:45:fb: 68:45:bc:7e:7b:ff:27:d8:61:77:53:1a:c1:07:49: bd:32:60:ac:90:69:0e:8c:b8:6d:8f:bf:50:2b:1c: dd:7a:c2:f4:83:df:6c:0f:11:a5:b0:16:93:6e:61: e5:24:6e:3d:3d:f0:5b:73:04:d9:44:9a:73:b0:19: 3d:d4:0e:13:83:8f:5e:6f:b1:1a:86:e7:8b:84:e0: f7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E7:50:A6:6D:47:95:88:99:52:46:39:33:93:18:DE:F6:26:72:6D X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.227.30.0/23 218.30.129.0/24 Signature Algorithm: sha256WithRSAEncryption 27:98:37:ef:5d:c1:e7:a9:1b:9c:dd:ab:60:0e:cd:a8:f0:dd: dd:72:ff:f8:da:29:af:49:0e:0e:51:85:8c:33:d3:b9:5f:ee: 80:0b:39:42:9a:8d:0d:81:a4:28:c0:96:d3:0e:c0:c3:fc:0d: c8:45:50:46:f1:3e:36:0f:cf:79:19:59:7c:17:be:e7:ad:c2: 8d:59:ff:05:c9:e7:87:96:bd:d1:51:08:dc:94:20:83:eb:72: 9f:d4:ae:ba:fa:be:c1:0f:7c:d5:40:7c:9d:b9:e6:e5:82:f1: 63:24:3e:a0:7a:80:de:7d:36:6f:d9:d3:85:d6:91:f6:6c:65: 21:ad:41:10:36:f2:62:6c:bd:c6:bf:2d:77:70:86:45:f8:f1: 32:17:75:9b:56:61:17:6a:48:4e:dc:f7:e6:be:e5:a4:81:bf: 9f:cf:89:c5:c6:ef:5b:3f:ee:54:54:12:c5:2a:d8:19:d1:2e: 03:fd:be:cb:2d:27:c1:85:bf:90:ce:dd:7b:5e:53:e6:1b:a7: 28:7b:6c:4c:df:20:43:5e:3f:25:dd:93:4b:80:01:2b:2d:af: 73:d2:64:2f:2d:92:ae:5d:92:38:1a:e2:c5:02:65:5a:14:1b: 69:1b:22:ca:c8:d9:4c:ee:ee:c5:67:69:f2:da:9c:12:a8:a2: d4:17:f3:82 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyOS1jMjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzoAwMq7kdbEiN4IuoDjrda5UscsCXyTSI1/oEtjkJOLYXjPrdEpE8czZI+F 9g4YFhT0L5xFyUYtRTnIakHX2guEEdfc6QghVCvbs4ygps6WmfVfZ4Zir3WFVore aBZKw6IGQSAGQsiofywtq9ke0AqO0oJIaRuqdmEKxbYVjq4309OVBAQcPICvD5DI +D4bodvBw03GpHv16ox12RT7/enNmq/uoPZm98iBXzYiB7aNRftoRbx+e/8n2GF3 UxrBB0m9MmCskGkOjLhtj79QKxzdesL0g99sDxGlsBaTbmHlJG49PfBbcwTZRJpz sBk91A4Tg49eb7EahueLhOD3AwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEnnUKZt R5WImVJGOTOTGN72JnJtMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjMzQzVGOUMw NUZCMTFFRTlEMTMwMzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAF54x4DBADaHoEwDQYJKoZIhvcNAQELBQADggEBACeYN+9d weepG5zdq2AOzajw3d1y//jaKa9JDg5RhYwz07lf7oALOUKajQ2BpCjAltMOwMP8 DchFUEbxPjYPz3kZWXwXvuetwo1Z/wXJ54eWvdFRCNyUIIPrcp/Urrr6vsEPfNVA fJ255uWC8WMkPqB6gN59Nm/Z04XWkfZsZSGtQRA28mJsvca/LXdwhkX48TIXdZtW YRdqSE7c9+a+5aSBv5/PicXG71s/7lRUEsUq2BnRLgP9vsstJ8GFv5DO3XteU+Yb pyh7bEzfIENePyXdk0uAASstr3PSZC8tkq5dkjga4sUCZVoUG2kbIsrI2Uzu7sVn afLanBKootQX84I= -----END CERTIFICATE-----Generated at Fri Nov 22 09:41:15 2024 by rpki-client on console-ams.rpki-client.org