$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa File: 214232EC4FD311EF90027A63C4F9AE02.roa (raw, json) Hash identifier: zfbAmczU0TvDg++Ahlw3nwgh74bmLp4RT834l0v2hLY= Subject key identifier: B1:41:D6:01:BD:6A:BD:45:C7:32:97:A6:71:F4:1B:DF:F9:22:44:2E Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 085D Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa Signing time: Thu 01 Aug 2024 06:56:09 +0000 ROA not before: Thu 01 Aug 2024 06:56:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 63526 IP address blocks: 114.129.14.0/23 maxlen: 23 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: Aug 1 06:56:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66ab3188-ef53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d6:3b:6a:92:cc:b7:9b:93:17:f2:31:8d:47: f3:3d:47:78:5a:0f:54:94:e1:ac:4f:9d:88:bb:6d: 11:5f:3f:3f:85:1b:32:09:7d:e3:55:78:63:f5:8c: c7:0c:67:89:94:84:d8:c4:cd:7b:f4:1b:69:73:83: 59:6c:6d:7c:51:75:29:f1:04:23:6e:62:3d:71:da: 15:db:f0:9b:0b:89:25:01:db:11:4c:f1:2b:9a:7a: 0e:b4:66:0d:e3:74:7d:bb:e0:d1:89:78:ea:b0:df: 06:1d:6f:f8:83:90:dd:e6:82:1a:46:e8:a4:01:23: 86:14:dd:90:8b:b5:d5:5b:fa:61:4f:59:17:31:63: 0e:4a:66:23:b1:43:02:c9:3f:c9:eb:5a:05:98:3f: f2:bf:17:34:37:1e:4d:15:7b:e3:63:66:75:e1:a5: 05:86:ba:bc:ad:37:a9:45:ed:26:08:44:74:2c:9c: d0:50:68:38:8c:6a:e8:89:ab:6e:0c:b0:f1:02:5f: 9c:ec:bb:ea:a8:b0:77:8e:d4:65:e2:e6:6d:0c:f7: a8:d6:2d:87:f6:16:41:b0:24:6a:e0:fe:29:46:e5: 63:7b:fd:be:b3:d6:5a:0a:54:9d:15:b2:ec:2d:11: 1b:bd:6f:b5:eb:ad:8f:dc:d8:0f:d2:ce:c3:4c:85: ba:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:41:D6:01:BD:6A:BD:45:C7:32:97:A6:71:F4:1B:DF:F9:22:44:2E X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.14.0/23 Signature Algorithm: sha256WithRSAEncryption 06:af:08:65:e7:bd:86:77:a1:25:d6:5f:85:67:f0:3d:bc:9e: 87:b0:8d:73:71:52:45:44:a3:f7:c6:83:cd:2d:93:26:99:96: 41:5d:35:27:d9:f3:67:ed:30:f5:bf:34:14:7f:29:40:eb:8c: 1c:30:71:b8:d0:4b:04:2f:85:1a:9d:2a:94:e0:c2:20:96:3e: ab:e0:7c:eb:35:b0:90:2f:fa:e7:7f:3f:46:01:f5:3f:4e:f3: 63:e2:f4:31:a6:85:2f:19:4b:85:8c:b2:4c:8b:fe:54:8f:96: 5e:1d:be:a7:4a:03:35:27:2e:0f:b4:a5:8f:20:51:a3:3d:94: 8f:8c:ed:b6:ed:b8:07:81:52:99:40:d3:29:3b:b2:e2:40:fe: 2c:ca:83:4c:ff:89:a4:b0:58:b6:95:ae:de:66:ce:a2:04:e9: 45:58:e9:30:cf:55:b8:61:8a:6b:7b:92:09:8f:56:2d:62:04: ad:33:ba:3a:de:b8:7d:74:68:34:70:e0:1d:de:74:f5:c3:01: 10:68:0c:73:e3:cc:af:b9:97:3f:75:7e:cf:a1:77:80:e0:27: 2c:9f:99:83:62:ec:7b:a6:93:eb:cc:75:f6:c2:a4:6f:a8:87: 16:62:59:69:62:87:b2:7b:da:3e:41:d8:79:db:98:fd:c9:39: e6:cd:0b:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjQwODAxMDY1NjA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFiMzE4OC1lZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9Y7apLMt5uTF/IxjUfzPUd4Wg9UlOGsT52Iu20RXz8/hRsyCX3jVXhj9YzH DGeJlITYxM179Btpc4NZbG18UXUp8QQjbmI9cdoV2/CbC4klAdsRTPErmnoOtGYN 43R9u+DRiXjqsN8GHW/4g5Dd5oIaRuikASOGFN2Qi7XVW/phT1kXMWMOSmYjsUMC yT/J61oFmD/yvxc0Nx5NFXvjY2Z14aUFhrq8rTepRe0mCER0LJzQUGg4jGroiatu DLDxAl+c7LvqqLB3jtRl4uZtDPeo1i2H9hZBsCRq4P4pRuVje/2+s9ZaClSdFbLs LREbvW+1662P3NgP0s7DTIW6fwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLFB1gG9 ar1FxzKXpnH0G9/5IkQuMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjE0MjMyRUM0 RkQzMTFFRjkwMDI3QTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFygQ4wDQYJKoZIhvcNAQELBQADggEBAAavCGXnvYZ3oSXW X4Vn8D28noewjXNxUkVEo/fGg80tkyaZlkFdNSfZ82ftMPW/NBR/KUDrjBwwcbjQ SwQvhRqdKpTgwiCWPqvgfOs1sJAv+ud/P0YB9T9O82Pi9DGmhS8ZS4WMskyL/lSP ll4dvqdKAzUnLg+0pY8gUaM9lI+M7bbtuAeBUplA0yk7suJA/izKg0z/iaSwWLaV rt5mzqIE6UVY6TDPVbhhimt7kgmPVi1iBK0zujreuH10aDRw4B3edPXDARBoDHPj zK+5lz91fs+hd4DgJyyfmYNi7Humk+vMdfbCpG+ohxZiWWlih7J72j5B2HnbmP3J OebNC8c= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:58 2024 by rpki-client on console-ams.rpki-client.org