$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa File: F5CC48A804D011E994985639C4F9AE02.roa (raw, json) Hash identifier: bfDRLA/w1R1e2iMlKk3K4+sbAL4lZ6rv2ffuZk02sG4= Subject key identifier: D4:B1:0A:7E:D0:B2:DD:D2:04:FF:C8:EE:65:21:58:A5:6F:06:AA:50 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D2B Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:26 +0000 ROA not before: Tue 02 Jan 2024 16:54:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23724 IP address blocks: 218.30.25.0/24 maxlen: 24 218.30.26.0/23 maxlen: 23 218.30.26.0/24 maxlen: 24 218.30.28.0/23 maxlen: 23 218.30.96.0/19 maxlen: 19 218.30.99.0/24 maxlen: 24 218.30.107.0/24 maxlen: 24 218.30.110.0/24 maxlen: 24 218.30.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7467 (0x1d2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:26 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fc2-5bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:03:50:ea:90:c5:dc:9a:1e:07:86:a8:b6: 64:c8:48:81:d0:cd:93:7f:b6:b4:df:0c:2d:c0:4a: e6:e6:0c:b5:fd:8a:ec:5e:59:81:e6:8d:38:2e:ae: 76:67:50:0a:5f:54:02:d2:f4:5c:ed:d5:57:30:68: 60:72:c6:19:ac:1c:e9:09:44:db:e1:3a:67:bd:d2: 94:40:a2:f2:60:01:65:f3:01:18:36:00:a1:3d:2c: 68:2e:23:d8:47:a6:be:af:74:34:9a:af:b6:6b:4f: 37:80:ec:4e:ef:d9:fd:2b:e3:4c:1a:aa:dd:28:65: a5:15:2a:18:8d:68:ae:58:6c:99:82:e7:7f:13:29: 3c:d0:5b:5c:d6:62:77:84:eb:51:ab:bc:2f:1d:d4: ee:53:a4:86:d2:67:a0:a0:4a:63:b8:a7:7a:74:2c: d0:a8:d2:a7:94:91:b1:9b:26:3e:ac:4a:87:dc:2e: e7:f3:0d:51:3c:61:6b:c1:28:e2:6b:f5:c8:7a:05: 64:28:57:cf:0b:9e:58:88:49:56:d8:f8:d7:4c:4c: 40:1d:c6:ca:92:27:f5:5e:d4:68:f3:e5:e8:1d:32: ba:18:03:90:74:0d:49:43:ef:54:89:f7:57:e2:22: 38:df:5c:fc:a9:4f:e9:fd:25:48:3a:2c:9a:11:cb: 96:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B1:0A:7E:D0:B2:DD:D2:04:FF:C8:EE:65:21:58:A5:6F:06:AA:50 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.25.0-218.30.29.255 218.30.96.0/19 Signature Algorithm: sha256WithRSAEncryption 89:56:a5:ca:48:83:61:d6:72:8e:30:2d:44:5a:87:e5:00:ec: ca:54:47:23:eb:6d:12:51:21:fd:a0:1d:2a:4e:1a:ef:1e:95: 74:a3:f5:3d:36:e5:0c:d6:3f:2f:0a:a2:5e:3b:03:db:17:b5: 3b:06:e1:de:48:bd:87:52:2d:9b:e5:e2:ca:46:b2:44:e2:ca: 0e:97:36:76:03:18:0a:19:34:fb:c0:51:5f:e3:af:4a:6f:c7: 60:c7:3f:2a:fc:7a:4f:51:bf:64:96:56:56:90:6d:79:d9:a8: 97:4b:90:21:23:13:7f:29:2d:a9:ff:a2:5a:ed:37:01:63:68: aa:9c:b5:07:62:98:57:e9:1d:08:24:11:f7:4f:fa:ee:ac:67: 31:84:15:41:e6:d6:67:b2:f2:e8:d4:79:64:bd:92:51:60:87: b9:2c:11:e9:a2:82:0a:3c:9b:9c:c0:9d:9a:71:0d:73:b7:1c: 5b:5e:17:ef:7b:96:70:f6:e0:71:6f:48:13:d7:74:fd:14:64: 1a:a1:1a:24:9b:81:02:cc:c0:e4:73:67:2b:d7:de:01:7b:7e: d5:75:d1:37:3a:24:a1:9f:4e:d5:78:0a:ef:cc:b6:9e:41:c5: 9f:87:d9:fa:dc:1f:53:f0:59:f6:c0:ac:a2:28:c3:77:6d:e1: 27:f7:27:fd -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICHSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjMi01YmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOsDUOqQxdyaHgeGqLZkyEiB0M2Tf7a03wwtwErm5gy1/YrsXlmB5o04Lq52 Z1AKX1QC0vRc7dVXMGhgcsYZrBzpCUTb4TpnvdKUQKLyYAFl8wEYNgChPSxoLiPY R6a+r3Q0mq+2a083gOxO79n9K+NMGqrdKGWlFSoYjWiuWGyZgud/Eyk80Ftc1mJ3 hOtRq7wvHdTuU6SG0megoEpjuKd6dCzQqNKnlJGxmyY+rEqH3C7n8w1RPGFrwSji a/XIegVkKFfPC55YiElW2PjXTExAHcbKkif1XtRo8+XoHTK6GAOQdA1JQ+9UifdX 4iI431z8qU/p/SVIOiyaEcuWqQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFNSxCn7Q st3SBP/I7mUhWKVvBqpQMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRjVDQzQ4QTgw NEQwMTFFOTk0OTg1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEANoeGQMEAdoeHAMEBdoeYDANBgkqhkiG9w0BAQsFAAOC AQEAiValykiDYdZyjjAtRFqH5QDsylRHI+ttElEh/aAdKk4a7x6VdKP1PTblDNY/ LwqiXjsD2xe1Owbh3ki9h1Itm+XiykayROLKDpc2dgMYChk0+8BRX+OvSm/HYMc/ Kvx6T1G/ZJZWVpBtedmol0uQISMTfyktqf+iWu03AWNoqpy1B2KYV+kdCCQR90/6 7qxnMYQVQebWZ7Ly6NR5ZL2SUWCHuSwR6aKCCjybnMCdmnENc7ccW14X73uWcPbg cW9IE9d0/RRkGqEaJJuBAszA5HNnK9feAXt+1XXRNzokoZ9O1XgK78y2nkHFn4fZ +twfU/BZ9sCsoijDd23hJ/cn/Q== -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org