$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa File: E1E1C946E01611ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: gbL5YdZTHqc1+AYVgeQGhidBA9l2vPBqB2sFfIs66k0= Subject key identifier: 39:D2:7B:4C:69:D3:66:89:63:EE:80:81:FF:A4:E4:55:FA:F4:9D:44 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D35 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:37 +0000 ROA not before: Tue 02 Jan 2024 16:54:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4835 IP address blocks: 124.116.158.0/23 maxlen: 23 125.76.224.0/19 maxlen: 24 218.30.19.0/24 maxlen: 24 218.30.20.0/24 maxlen: 24 218.30.21.0/24 maxlen: 24 218.30.22.0/24 maxlen: 24 218.30.23.0/24 maxlen: 24 218.30.24.0/24 maxlen: 24 218.30.66.0/24 maxlen: 24 218.30.67.0/24 maxlen: 24 218.30.68.0/22 maxlen: 22 218.30.72.0/22 maxlen: 22 218.30.72.0/24 maxlen: 24 218.30.73.0/24 maxlen: 24 218.30.74.0/24 maxlen: 24 218.30.76.0/22 maxlen: 23 218.30.80.0/24 maxlen: 24 218.30.81.0/24 maxlen: 24 218.30.82.0/24 maxlen: 24 218.30.83.0/24 maxlen: 24 218.30.85.0/24 maxlen: 24 218.30.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7477 (0x1d35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:37 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fcc-a2c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:72:6a:ef:a4:a4:fb:b8:18:55:d0:3e:b7:f1: 2e:95:47:1e:e1:0e:23:ae:29:49:7b:56:9f:f4:44: df:bd:e0:f5:9d:09:29:b1:74:0e:26:80:23:72:49: 09:46:09:55:69:0c:7f:72:9c:6b:c6:88:70:63:45: 0a:71:65:35:91:c2:35:25:18:d0:ba:1b:8c:65:a3: 6f:f0:31:c5:5f:cd:04:3e:7b:cb:9a:5c:08:d8:2f: 1c:d0:a2:74:ce:83:fa:c6:a9:78:8f:4e:10:fd:0b: 60:45:cb:8b:1b:42:f9:3c:fe:7d:66:16:b0:b3:65: 78:44:5c:b6:db:44:8b:e9:b9:87:7a:fe:ce:c7:63: 3e:b4:ee:eb:10:2c:a4:62:e9:bb:c9:9f:31:8a:5b: 79:51:6d:b4:22:6b:99:6d:dd:0a:8c:d3:a7:8d:2c: 9f:46:35:92:7b:2b:15:96:50:f3:8d:bd:32:76:f0: ab:1f:4e:ae:38:3c:91:94:11:1f:be:aa:0d:78:db: 30:d4:be:a7:4b:84:cb:ac:ac:c7:a0:c1:42:31:f8: 69:85:8a:89:c8:ac:0d:b5:de:64:89:de:3c:b7:e7: e5:76:48:59:64:ad:c7:fe:bc:cf:c1:1e:ba:0c:ce: 24:a6:d0:68:c5:de:71:2f:7a:17:ee:3b:b3:9f:0d: f2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D2:7B:4C:69:D3:66:89:63:EE:80:81:FF:A4:E4:55:FA:F4:9D:44 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.116.158.0/23 125.76.224.0/19 218.30.19.0-218.30.24.255 218.30.66.0-218.30.83.255 218.30.85.0/24 218.30.88.0/22 Signature Algorithm: sha256WithRSAEncryption 41:20:ab:76:48:ac:09:8f:bb:b0:d6:47:d9:8b:c1:55:f7:82: 63:5b:1c:0b:80:45:59:7e:0c:1b:8f:32:0f:4c:15:98:05:fa: af:03:11:dc:af:0a:32:d6:6f:a5:eb:7c:01:38:45:c0:85:22: 35:e1:a0:f7:4b:90:8a:4a:a6:b9:59:54:c4:2d:6d:19:30:a8: 6e:6c:19:f5:c2:03:d4:9c:fe:5f:c6:f8:4c:6a:a3:14:96:22: 69:17:52:ce:17:a7:8c:7b:49:40:f1:31:a1:7e:2b:73:32:10: e7:b5:e1:fc:9f:ef:c3:1a:32:66:fb:2e:5a:a9:e7:46:9a:3e: 47:a9:00:01:27:6d:ba:1c:49:32:f5:31:5e:a8:2a:77:ea:19: cf:22:fd:d5:2d:50:65:f3:6a:f1:5d:6a:f2:6b:bd:53:96:a4: 80:10:d5:b8:83:25:ba:c5:25:8e:68:91:f4:6d:fe:c0:5a:60: 36:96:8b:a7:1a:ff:68:29:a2:e4:36:91:bd:16:bf:40:96:75: 4c:89:2c:a7:8c:0c:67:66:b8:ed:d0:d6:9a:b1:8d:58:8a:e7: 2b:c3:29:15:7f:40:64:c7:fd:6b:1f:cf:f5:fa:ec:c4:c3:4a: 35:61:9f:c4:54:0b:c7:cd:c3:46:d3:68:24:75:d7:e5:50:ef: 9b:a1:b2:8a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICHTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjYy1hMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Jq76Sk+7gYVdA+t/EulUce4Q4jrilJe1af9ETfveD1nQkpsXQOJoAjckkJ RglVaQx/cpxrxohwY0UKcWU1kcI1JRjQuhuMZaNv8DHFX80EPnvLmlwI2C8c0KJ0 zoP6xql4j04Q/QtgRcuLG0L5PP59Zhaws2V4RFy220SL6bmHev7Ox2M+tO7rECyk Yum7yZ8xilt5UW20ImuZbd0KjNOnjSyfRjWSeysVllDzjb0ydvCrH06uODyRlBEf vqoNeNsw1L6nS4TLrKzHoMFCMfhphYqJyKwNtd5kid48t+fldkhZZK3H/rzPwR66 DM4kptBoxd5xL3oX7juznw3y0QIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFDnSe0xp 02aJY+6Agf+k5FX69J1EMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRTFFMUM5NDZF MDE2MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBAF8dJ4DBAV9TOAwDAMEANoeEwMEANoeGDAMAwQB2h5CAwQC 2h5QAwQA2h5VAwQC2h5YMA0GCSqGSIb3DQEBCwUAA4IBAQBBIKt2SKwJj7uw1kfZ i8FV94JjWxwLgEVZfgwbjzIPTBWYBfqvAxHcrwoy1m+l63wBOEXAhSI14aD3S5CK Sqa5WVTELW0ZMKhubBn1wgPUnP5fxvhMaqMUliJpF1LOF6eMe0lA8TGhfitzMhDn teH8n+/DGjJm+y5aqedGmj5HqQABJ226HEky9TFeqCp36hnPIv3VLVBl82rxXWry a71TlqSAENW4gyW6xSWOaJH0bf7AWmA2lounGv9oKaLkNpG9Fr9AlnVMiSynjAxn Zrjt0NaasY1YiucrwykVf0Bkx/1rH8/1+uzEw0o1YZ/EVAvHzcNG02gkddflUO+b obKK -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org