$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa File: 150612CA903711EEB0B65F74C4F9AE02.roa (raw, json) Hash identifier: Zph4qw7OPknDovoxX3cm0uRfAXTr+TUdnZIAn859WAM= Subject key identifier: CF:06:64:70:2B:86:DD:A5:8F:3F:FC:FD:5E:23:48:70:CD:BB:93:51 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 34E9 Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa Signing time: Thu 06 Jun 2024 15:11:12 +0000 ROA not before: Thu 06 Jun 2024 15:11:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 17806 IP address blocks: 114.130.0.0/17 maxlen: 24 114.130.6.0/25 maxlen: 26 114.130.6.128/25 maxlen: 26 114.130.11.0/26 maxlen: 26 114.130.125.0/25 maxlen: 27 114.130.192.0/19 maxlen: 19 114.130.223.0/24 maxlen: 24 2403:ec00::/32 maxlen: 40 2403:ec00::/44 maxlen: 48 2403:ec00:8::/64 maxlen: 64 2403:ec00:8:1::/64 maxlen: 64 2403:ec00:25::/48 maxlen: 48 2403:ec00:34::/48 maxlen: 48 2403:ec00:35::/48 maxlen: 48 2403:ec00:36::/48 maxlen: 48 2403:ec00:37::/48 maxlen: 48 2403:ec00:38::/48 maxlen: 48 2403:ec00:39::/48 maxlen: 48 2403:ec00:50::/48 maxlen: 48 2403:ec00:100::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13545 (0x34e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 6 15:11:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6661d190-9eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:46:4e:c6:8c:dd:cc:6c:50:5d:3f:24:de:00: d1:15:d8:20:1a:03:7a:fb:56:d4:99:1c:23:98:67: 11:42:eb:34:ba:11:02:a6:f0:e3:e6:7c:72:07:29: bf:ea:2f:db:69:a4:ba:af:da:d4:b8:29:25:0e:e0: ab:2d:14:79:59:54:55:70:3d:8e:72:6d:bc:33:f8: f0:cc:ec:5e:b5:23:73:d6:28:33:e1:34:94:95:7d: d4:69:1d:9f:82:fa:fe:d6:49:f6:e7:90:af:6c:8e: 07:f9:75:3a:6c:4b:78:48:c9:8f:65:ca:96:a5:7b: 4f:8d:0d:bd:e2:7a:1b:11:c0:e2:c2:75:40:f7:8d: 5d:37:8f:28:59:db:f1:56:a0:fa:bc:50:03:48:39: 8e:bf:0f:2b:9c:20:40:b1:2c:ae:04:9f:a6:75:f6: f2:f9:08:07:6b:bd:7d:85:ef:36:4b:24:55:2c:78: 33:19:dc:cc:c4:28:cc:0d:e5:2f:fd:9f:d0:50:03: a6:b8:11:e3:3d:58:85:0f:c2:7e:f6:30:db:76:47: 0c:1c:23:f5:e2:34:15:db:30:6e:50:8e:60:c2:fa: 79:e2:f4:50:c3:2f:94:e3:aa:85:86:a1:ff:7f:8a: c8:d5:2e:ce:13:6b:e7:68:c3:0a:91:93:4d:59:50: ce:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:06:64:70:2B:86:DD:A5:8F:3F:FC:FD:5E:23:48:70:CD:BB:93:51 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.0.0/17 114.130.192.0/19 IPv6: 2403:ec00::/32 Signature Algorithm: sha256WithRSAEncryption 97:8b:dd:a1:b3:5a:1c:af:e1:7c:b3:f9:47:73:8d:a4:05:0d: 92:04:b2:86:0b:e0:7a:68:af:5c:d6:67:b9:bf:a2:c4:57:d6: 7c:23:ba:2b:22:6e:ba:8f:1c:98:33:19:e5:bf:25:21:f8:2e: 5b:69:d2:5d:fc:5f:59:e9:85:81:29:31:67:c9:a0:db:97:9b: cf:e6:5e:9e:0c:09:e4:30:89:a9:ca:64:79:84:2d:8e:95:ed: 65:bb:39:0e:6b:fd:3d:99:e6:ef:84:96:46:b3:78:04:93:7d: 30:7a:28:15:cd:40:60:50:c3:2d:b5:dc:2a:96:4d:45:44:4b: 08:38:80:06:fb:51:d2:7b:6c:94:22:9b:2b:47:8f:ea:98:1e: da:a6:6e:10:95:40:2e:e9:65:10:75:e9:57:b4:22:02:d6:d2: ff:f9:b3:e5:d3:b0:9f:a6:cb:79:80:c9:85:01:d6:bd:c2:b5: ba:21:6f:37:6d:dd:7b:8d:b6:00:96:98:11:e4:db:fd:91:c2: 55:a6:3d:06:5c:6b:23:0b:6d:2c:0d:2f:01:7e:35:f4:a3:ae: 45:58:49:a0:ab:cc:f2:97:fa:8b:24:e2:21:3a:ae:ca:78:49: d4:8e:35:0b:65:58:99:96:b6:c3:97:c1:42:62:ff:36:0c:4b: e9:47:e2:39 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjQwNjA2MTUxMTEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxZDE5MC05ZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEZOxozdzGxQXT8k3gDRFdggGgN6+1bUmRwjmGcRQus0uhECpvDj5nxyBym/ 6i/baaS6r9rUuCklDuCrLRR5WVRVcD2Ocm28M/jwzOxetSNz1igz4TSUlX3UaR2f gvr+1kn255CvbI4H+XU6bEt4SMmPZcqWpXtPjQ294nobEcDiwnVA941dN48oWdvx VqD6vFADSDmOvw8rnCBAsSyuBJ+mdfby+QgHa719he82SyRVLHgzGdzMxCjMDeUv /Z/QUAOmuBHjPViFD8J+9jDbdkcMHCP14jQV2zBuUI5gwvp54vRQwy+U46qFhqH/ f4rI1S7OE2vnaMMKkZNNWVDOwwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM8GZHAr ht2ljz/8/V4jSHDNu5NRMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvMTUwNjEyQ0E5 MDM3MTFFRUIwQjY1Rjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAdyggADBAVygsAwDQQCAAIwBwMFACQD7AAwDQYJKoZIhvcN AQELBQADggEBAJeL3aGzWhyv4Xyz+UdzjaQFDZIEsoYL4Hpor1zWZ7m/osRX1nwj uisibrqPHJgzGeW/JSH4Lltp0l38X1nphYEpMWfJoNuXm8/mXp4MCeQwianKZHmE LY6V7WW7OQ5r/T2Z5u+ElkazeASTfTB6KBXNQGBQwy213CqWTUVESwg4gAb7UdJ7 bJQimytHj+qYHtqmbhCVQC7pZRB16Ve0IgLW0v/5s+XTsJ+my3mAyYUB1r3Ctboh bzdt3XuNtgCWmBHk2/2RwlWmPQZcayMLbSwNLwF+NfSjrkVYSaCrzPKX+osk4iE6 rsp4SdSONQtlWJmWtsOXwUJi/zYMS+lH4jk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:02 2024 by rpki-client on console-ams.rpki-client.org