$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/E5856BB4ECF111EE869C1110C4F9AE02.roa File: E5856BB4ECF111EE869C1110C4F9AE02.roa (raw, json) Hash identifier: jracO1XGslY8JLsX5SrzVCcox71Rn8FTOjjOprv0Ah0= Subject key identifier: FD:38:F8:76:45:28:9E:85:8D:A1:AA:B7:A2:C4:33:E0:73:DE:4D:D7 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 093F Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/E5856BB4ECF111EE869C1110C4F9AE02.roa Signing time: Thu 28 Mar 2024 10:56:58 +0000 ROA not before: Thu 28 Mar 2024 10:56:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 150750 IP address blocks: 14.192.130.0/23 maxlen: 23 14.192.130.0/24 maxlen: 24 14.192.131.0/24 maxlen: 24 14.192.132.0/22 maxlen: 22 14.192.132.0/24 maxlen: 24 14.192.133.0/24 maxlen: 24 14.192.134.0/24 maxlen: 24 14.192.135.0/24 maxlen: 24 14.192.136.0/22 maxlen: 22 14.192.136.0/24 maxlen: 24 14.192.137.0/24 maxlen: 24 14.192.138.0/24 maxlen: 24 14.192.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Mar 28 10:56:58 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66054cf9-04b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:87:81:55:ef:87:35:e4:23:50:a9:71:40:be: b0:ce:28:45:35:43:fe:b1:0e:32:2a:79:82:9b:92: 36:71:08:c7:b1:d3:73:23:0b:b2:70:32:89:47:4a: 81:2f:fd:38:98:b2:06:dc:bc:05:ad:20:bc:1f:cf: b2:6c:fd:8d:25:17:7d:24:17:f2:8b:da:c1:07:61: a4:05:3f:2e:44:4e:a0:f2:58:22:9d:af:4d:5b:36: 7c:5a:95:8a:9b:8c:c1:1a:a0:9b:31:03:7d:5f:17: ba:80:ba:12:68:9f:c5:d2:c5:c2:87:15:6f:48:9f: 7e:79:55:d5:9d:a5:c5:34:53:c5:85:7f:61:03:e8: 15:e5:fe:83:27:72:ae:e0:3e:89:94:77:3a:be:29: 93:76:c7:be:df:38:e2:89:e5:a4:b4:ef:e5:61:7f: cf:26:bc:b1:f7:f7:6f:dd:ad:7b:c9:73:13:87:e7: b3:21:5d:f4:97:2d:90:ac:98:c5:fb:28:2f:51:45: 23:86:09:cf:16:23:42:61:1c:f5:43:55:67:4b:c4: c3:93:14:ef:5d:e6:8a:05:23:04:4e:cc:f6:a0:ae: a8:e4:80:2e:fb:ef:05:02:55:ea:e3:b6:73:a5:74: 48:d1:b5:18:f9:7f:31:c4:10:60:d7:ef:ae:a7:a8: 5e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:38:F8:76:45:28:9E:85:8D:A1:AA:B7:A2:C4:33:E0:73:DE:4D:D7 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/E5856BB4ECF111EE869C1110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.130.0-14.192.139.255 Signature Algorithm: sha256WithRSAEncryption 8c:78:00:d2:8b:b0:1d:a7:3c:47:ad:8e:bd:6c:26:e6:62:f9: 2e:68:99:84:16:e4:46:d2:bb:d8:43:3a:33:24:f5:23:42:5b: f1:cb:37:ac:fd:27:f6:c1:e1:44:82:d1:4f:21:5e:9b:9d:5a: 52:d8:cb:e5:72:a7:db:60:77:70:01:1f:77:f4:c7:cf:97:3e: 84:7e:ba:91:0e:87:18:63:c4:61:12:c7:ab:00:e3:2f:bd:11: be:df:d3:78:d3:44:78:11:79:dc:72:b4:2d:4f:88:62:05:88: 05:54:da:4e:75:65:f4:21:13:19:4a:0b:1c:6e:3e:1e:0e:f2: 08:dc:ce:d2:b0:74:e5:94:b3:aa:2e:db:00:08:21:ec:c7:53: 4a:a6:93:49:16:35:84:5f:68:c6:99:29:c5:4d:a9:8c:56:d3: c6:38:85:ac:b8:4e:a6:eb:fd:ed:83:96:81:6c:40:57:27:f8: c1:1f:35:3f:91:2b:1c:3d:a6:cd:aa:60:bc:18:92:fc:bf:3c: a4:2b:9f:72:53:d4:44:0e:24:bc:9f:0f:58:25:99:60:5e:f7: 6f:03:15:1a:bb:31:1d:2c:68:4b:04:3f:92:89:50:e0:d1:f6: d2:d0:cb:ad:70:3f:70:c8:a1:08:c6:0f:c7:a5:f8:b8:7d:3c: f4:88:dc:86 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjQwMzI4MTA1NjU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1NGNmOS0wNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IeBVe+HNeQjUKlxQL6wzihFNUP+sQ4yKnmCm5I2cQjHsdNzIwuycDKJR0qB L/04mLIG3LwFrSC8H8+ybP2NJRd9JBfyi9rBB2GkBT8uRE6g8lgina9NWzZ8WpWK m4zBGqCbMQN9Xxe6gLoSaJ/F0sXChxVvSJ9+eVXVnaXFNFPFhX9hA+gV5f6DJ3Ku 4D6JlHc6vimTdse+3zjiieWktO/lYX/PJryx9/dv3a17yXMTh+ezIV30ly2QrJjF +ygvUUUjhgnPFiNCYRz1Q1VnS8TDkxTvXeaKBSMETsz2oK6o5IAu++8FAlXq47Zz pXRI0bUY+X8xxBBg1++up6hefwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFP04+HZF KJ6FjaGqt6LEM+Bz3k3XMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvRTU4NTZCQjRF Q0YxMTFFRTg2OUMxMTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAQ7AggMEAg7AiDANBgkqhkiG9w0BAQsFAAOCAQEAjHgA 0ouwHac8R62OvWwm5mL5LmiZhBbkRtK72EM6MyT1I0Jb8cs3rP0n9sHhRILRTyFe m51aUtjL5XKn22B3cAEfd/THz5c+hH66kQ6HGGPEYRLHqwDjL70Rvt/TeNNEeBF5 3HK0LU+IYgWIBVTaTnVl9CETGUoLHG4+Hg7yCNzO0rB05ZSzqi7bAAgh7MdTSqaT SRY1hF9oxpkpxU2pjFbTxjiFrLhOpuv97YOWgWxAVyf4wR81P5ErHD2mzapgvBiS /L88pCufclPURA4kvJ8PWCWZYF73bwMVGrsxHSxoSwQ/kolQ4NH20tDLrXA/cMih CMYPx6X4uH089Ijchg== -----END CERTIFICATE-----Generated at Thu May 16 22:23:36 2024 by rpki-client on console-fra.rpki-client.org