$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa File: 150612CA903711EEB0B65F74C4F9AE02.roa (raw, json) Hash identifier: 5zSkSiugOoY5TYS3YLBQCyzdyuEohpAoeTQRqPemxwE= Subject key identifier: 80:7E:59:7F:E7:AB:A6:85:F1:CD:BB:00:E7:A4:45:57:F7:9C:2B:2A Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 34CA Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa Signing time: Sat 27 Apr 2024 18:34:38 +0000 ROA not before: Sat 27 Apr 2024 18:34:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 17806 IP address blocks: 114.130.0.0/17 maxlen: 24 114.130.6.0/25 maxlen: 26 114.130.6.128/25 maxlen: 26 114.130.11.0/26 maxlen: 26 114.130.125.0/25 maxlen: 27 114.130.192.0/19 maxlen: 19 114.130.223.0/24 maxlen: 24 2403:ec00::/32 maxlen: 40 2403:ec00::/44 maxlen: 48 2403:ec00:8::/64 maxlen: 64 2403:ec00:8:1::/64 maxlen: 64 2403:ec00:25::/48 maxlen: 48 2403:ec00:34::/48 maxlen: 48 2403:ec00:35::/48 maxlen: 48 2403:ec00:36::/48 maxlen: 48 2403:ec00:37::/48 maxlen: 48 2403:ec00:38::/48 maxlen: 48 2403:ec00:39::/48 maxlen: 48 2403:ec00:50::/48 maxlen: 48 2403:ec00:100::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Apr 27 18:34:37 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=662d453d-e2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a0:36:f2:14:42:2e:9f:8e:a4:cd:54:fb:67: 38:ee:9c:2b:86:0c:a2:d3:e4:51:39:75:b9:0d:5a: d9:ac:7b:e8:46:13:b0:7f:5e:14:03:e9:5e:ee:9a: 0d:a2:7a:9b:2d:6e:d0:12:34:32:91:b0:7e:25:59: 48:d8:48:ce:7e:c9:a5:d8:27:a2:e1:50:95:5e:e3: 01:36:ef:1e:ea:96:5a:91:88:24:b9:5f:3e:51:c5: 78:a0:87:46:bb:92:af:d5:0a:74:e9:46:a0:5f:9e: 39:e3:38:ec:10:77:28:e9:8f:bc:5d:d3:91:43:a0: f4:a9:10:da:58:91:ce:d9:d7:cd:f1:90:33:32:6e: 17:83:0f:b8:53:12:05:9c:87:e7:c3:37:a3:91:d7: 5c:1d:54:7a:6a:23:63:9d:66:76:6e:c2:f7:6e:83: 71:93:14:be:b4:31:d0:ee:44:34:bf:9b:1a:35:0c: f4:46:a2:af:da:44:b6:cb:a1:f5:5f:b2:7e:3c:e1: 7d:bb:20:28:8a:8d:34:a7:e7:04:3c:2d:cc:57:9c: 76:d6:09:3d:56:08:e1:8a:d7:e0:82:d3:03:6a:0d: 19:f1:a3:70:68:63:36:d5:17:b2:3c:54:22:ea:00: b3:a9:15:75:f5:11:e3:ae:d5:61:86:26:14:c9:05: 66:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7E:59:7F:E7:AB:A6:85:F1:CD:BB:00:E7:A4:45:57:F7:9C:2B:2A X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.0.0/17 114.130.192.0/19 IPv6: 2403:ec00::/32 Signature Algorithm: sha256WithRSAEncryption 63:e1:95:4f:36:fe:e5:35:3e:18:f4:82:b7:59:ff:7e:27:fc: bb:57:a4:a8:ab:be:e3:50:e8:f4:13:77:ec:81:a3:0b:a2:bc: 53:76:93:26:57:e1:e3:00:5c:8a:c8:f9:f1:63:db:d9:40:5f: b5:ad:76:ae:82:d0:ce:fc:3d:53:2e:43:32:44:68:36:d0:63: 5d:fc:0a:0a:fc:52:5f:88:89:a4:7a:80:d2:87:8b:ef:e8:d6: bc:42:1b:80:38:03:cd:80:94:ed:e7:3c:a2:d2:54:c3:e2:75: b7:18:61:b7:1b:cc:06:34:8c:87:f0:1d:30:cf:3c:7f:7d:52: 0e:be:e2:9a:d2:44:dd:4a:bd:b9:cd:b6:81:5e:de:45:88:0a: 61:a4:64:55:9f:dd:ab:f7:18:84:1d:3d:85:49:e8:97:50:9d: d9:78:70:76:73:a6:0e:2d:4d:08:8a:5d:83:d0:32:ec:1a:f0: bd:9f:ab:61:44:40:ff:40:19:bf:87:a3:67:a1:c6:19:49:f9: 5b:0a:70:be:d2:ea:ef:f2:4b:2a:fe:65:52:3e:68:b5:8e:02: f0:66:e0:ee:c8:16:03:d0:7b:e3:f6:2b:84:70:18:5f:79:5c: cf:ed:f0:6e:03:b7:80:fe:8f:bb:98:e5:55:0a:a6:7d:01:5b: 11:40:0f:58 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjQwNDI3MTgzNDM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJkNDUzZC1lMmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqA28hRCLp+OpM1U+2c47pwrhgyi0+RROXW5DVrZrHvoRhOwf14UA+le7poN onqbLW7QEjQykbB+JVlI2EjOfsml2Cei4VCVXuMBNu8e6pZakYgkuV8+UcV4oIdG u5Kv1Qp06UagX5454zjsEHco6Y+8XdORQ6D0qRDaWJHO2dfN8ZAzMm4Xgw+4UxIF nIfnwzejkddcHVR6aiNjnWZ2bsL3boNxkxS+tDHQ7kQ0v5saNQz0RqKv2kS2y6H1 X7J+POF9uyAoio00p+cEPC3MV5x21gk9VgjhitfggtMDag0Z8aNwaGM21ReyPFQi 6gCzqRV19RHjrtVhhiYUyQVm+wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIB+WX/n q6aF8c27AOekRVf3nCsqMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvMTUwNjEyQ0E5 MDM3MTFFRUIwQjY1Rjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAdyggADBAVygsAwDQQCAAIwBwMFACQD7AAwDQYJKoZIhvcN AQELBQADggEBAGPhlU82/uU1Phj0grdZ/34n/LtXpKirvuNQ6PQTd+yBowuivFN2 kyZX4eMAXIrI+fFj29lAX7Wtdq6C0M78PVMuQzJEaDbQY138Cgr8Ul+IiaR6gNKH i+/o1rxCG4A4A82AlO3nPKLSVMPidbcYYbcbzAY0jIfwHTDPPH99Ug6+4prSRN1K vbnNtoFe3kWICmGkZFWf3av3GIQdPYVJ6JdQndl4cHZzpg4tTQiKXYPQMuwa8L2f q2FEQP9AGb+Ho2ehxhlJ+VsKcL7S6u/ySyr+ZVI+aLWOAvBm4O7IFgPQe+P2K4Rw GF95XM/t8G4Dt4D+j7uY5VUKpn0BWxFAD1g= -----END CERTIFICATE-----Generated at Mon May 20 17:23:56 2024 by rpki-client on console-ams.rpki-client.org