$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa File: D36286F2D55C11EAA224E026C4F9AE02.roa (raw, json) Hash identifier: u8phKN2nzTC3a+z4U/Bllu+StDeRWSLvDPFHmukoXBg= Subject key identifier: 5C:9B:06:8C:B2:8D:6F:9D:94:10:35:88:94:57:A3:F7:F1:59:0A:FB Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D1E Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:14 +0000 ROA not before: Tue 02 Jan 2024 16:54:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134419 IP address blocks: 124.227.64.0/20 maxlen: 20 124.227.144.0/22 maxlen: 22 202.103.214.0/23 maxlen: 23 202.103.247.0/24 maxlen: 24 218.21.104.0/21 maxlen: 21 218.21.112.0/21 maxlen: 21 218.65.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7454 (0x1d1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:14 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fb6-d939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:ad:73:7d:72:f6:89:29:3e:39:77:6f:33: 5c:d3:47:68:2c:9b:33:95:bc:bb:c6:bd:28:4b:58: cb:98:80:06:36:72:60:9f:dd:f5:eb:ed:8b:1e:44: 5c:31:4c:8e:91:c8:1c:c4:fe:89:3f:93:6d:6c:ef: 37:4b:e3:ce:c2:4b:54:5d:7b:3a:2a:2a:c3:72:35: c6:c2:d1:5c:b5:4d:7f:cb:11:ad:0a:17:10:36:1c: 53:45:7c:b1:79:cf:42:cb:79:45:cf:21:fc:a0:89: 95:47:0d:18:73:5f:70:3b:eb:97:b8:04:de:2d:c1: 76:2d:ef:f8:05:e4:6e:4d:b9:a3:8c:6f:71:6f:52: 92:e0:20:1e:10:11:f0:d8:ae:08:b3:8a:54:ab:d8: 44:fa:41:bf:5d:2e:8f:23:ad:83:59:b7:f2:e6:18: 34:d6:1e:d7:26:24:87:1d:c3:8f:24:e0:ca:80:27: bc:21:9a:1f:0c:2e:f8:90:0a:9a:fd:d2:fd:19:36: d2:f3:ae:9f:4a:8b:61:a7:16:b3:2b:31:c9:cf:6e: 90:5b:b1:9a:e3:10:34:bf:a8:a5:98:b1:8e:02:5d: 85:53:a3:52:b2:17:5e:23:df:30:e0:fb:ec:4f:d8: 11:89:2b:26:d1:c7:73:16:78:e8:a4:25:77:cd:b1: eb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9B:06:8C:B2:8D:6F:9D:94:10:35:88:94:57:A3:F7:F1:59:0A:FB X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.227.64.0/20 124.227.144.0/22 202.103.214.0/23 202.103.247.0/24 218.21.104.0-218.21.119.255 218.65.132.0/24 Signature Algorithm: sha256WithRSAEncryption 32:60:93:0d:09:09:ad:ff:ee:2e:c6:ce:cb:3d:0f:d4:f2:14: 17:7c:03:e2:be:aa:93:41:71:41:5e:a5:a4:14:34:60:a3:fc: e7:49:fa:32:c2:3d:f5:92:2f:36:50:e0:1b:34:c6:62:ce:6c: de:79:fb:5b:6e:50:7f:f1:b2:3c:9a:07:ed:95:28:94:03:bd: 22:f3:38:57:4d:ae:f8:58:ef:90:db:8e:62:0e:50:1e:d0:a1: 44:dd:dd:83:45:f3:2f:01:b3:6f:d1:e8:84:8b:15:bd:eb:c0: 3d:1c:74:a3:02:2f:fa:1a:8d:30:35:db:cc:ec:b9:95:49:6b: 7e:b6:b9:ed:cb:d2:00:db:cb:a6:43:a9:10:2a:98:fb:1e:56: 00:a1:27:f1:b5:65:17:96:b1:4b:61:c3:45:75:09:db:49:9a: 66:00:05:ab:50:fb:ff:a1:cf:b7:04:22:3d:8a:e8:27:4a:70: b9:48:7d:63:05:0f:bf:1d:06:3f:cf:b9:71:39:3e:9c:27:73: 8e:35:81:36:f4:aa:80:68:92:d7:3d:37:0c:96:1c:b4:f6:8d: 74:74:99:7d:a8:11:12:8e:91:e3:db:2e:2d:bf:69:ab:5e:55: 82:c1:ee:56:ae:1d:12:f6:78:05:8e:c0:25:01:85:87:21:2a: 51:2e:89:f7 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICHR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDE0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZiNi1kOTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsytc31y9okpPjl3bzNc00doLJszlby7xr0oS1jLmIAGNnJgn9316+2LHkRc MUyOkcgcxP6JP5NtbO83S+POwktUXXs6KirDcjXGwtFctU1/yxGtChcQNhxTRXyx ec9Cy3lFzyH8oImVRw0Yc19wO+uXuATeLcF2Le/4BeRuTbmjjG9xb1KS4CAeEBHw 2K4Is4pUq9hE+kG/XS6PI62DWbfy5hg01h7XJiSHHcOPJODKgCe8IZofDC74kAqa /dL9GTbS866fSothpxazKzHJz26QW7Ga4xA0v6ilmLGOAl2FU6NSshdeI98w4Pvs T9gRiSsm0cdzFnjopCV3zbHr2wIDAQABo4ICuzCCArcwHQYDVR0OBBYEFFybBoyy jW+dlBA1iJRXo/fxWQr7MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDM2Mjg2RjJE NTVDMTFFQUEyMjRFMDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAR840ADBAJ845ADBAHKZ9YDBADKZ/cwDAMEA9oVaAMEA9oV cAMEANpBhDANBgkqhkiG9w0BAQsFAAOCAQEAMmCTDQkJrf/uLsbOyz0P1PIUF3wD 4r6qk0FxQV6lpBQ0YKP850n6MsI99ZIvNlDgGzTGYs5s3nn7W25Qf/GyPJoH7ZUo lAO9IvM4V02u+FjvkNuOYg5QHtChRN3dg0XzLwGzb9HohIsVvevAPRx0owIv+hqN MDXbzOy5lUlrfra57cvSANvLpkOpECqY+x5WAKEn8bVlF5axS2HDRXUJ20maZgAF q1D7/6HPtwQiPYroJ0pwuUh9YwUPvx0GP8+5cTk+nCdzjjWBNvSqgGiS1z03DJYc tPaNdHSZfagREo6R49suLb9pq15VgsHuVq4dEvZ4BY7AJQGFhyEqUS6J9w== -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org