$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa File: 2921D24E067C11ED882FC127C4F9AE02.roa (raw, json) Hash identifier: yc/5nfOTItcG0NV1AdeMQ8Pj65RtxD47YTJrDDnkdqk= Subject key identifier: 3C:BA:79:E5:CB:8A:9B:6D:B1:E9:01:97:8B:40:95:24:37:A4:DC:DD Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 0746 Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa Signing time: Sun 30 Apr 2023 22:19:08 +0000 ROA not before: Sun 30 Apr 2023 22:19:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134806 IP address blocks: 114.129.12.0/22 maxlen: 22 114.129.12.0/24 maxlen: 24 114.129.13.0/24 maxlen: 24 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1862 (0x746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: Apr 30 22:19:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=644ee95c-70df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b5:9b:8a:fb:79:82:76:35:75:25:da:02:26: 0e:cc:0e:f6:df:5d:1b:9e:99:79:0a:82:7c:78:56: 61:62:ae:44:0f:5c:42:e8:3e:12:ff:5f:f4:8b:0f: 72:7c:1e:91:b6:5b:39:a7:f7:94:39:cc:c6:62:8f: cf:b4:31:7c:33:24:20:b0:6b:a0:97:1f:a3:91:2d: 9f:db:3a:1b:27:36:42:c7:89:77:f7:70:a1:6f:ee: e9:fa:bd:70:bc:dd:1f:7f:fe:9c:c1:61:a3:43:73: 12:6b:d9:27:b9:7e:4e:d6:d4:13:bd:a8:bc:be:91: 86:11:eb:6d:43:6c:fb:f2:74:43:fb:78:6c:eb:8c: ef:2b:27:ff:be:f9:c4:21:46:3a:87:31:f4:ac:23: f9:53:c3:0c:e6:00:4e:31:54:63:cd:58:4d:57:32: d1:e4:28:99:0e:42:6d:22:13:66:a5:96:e3:29:e7: 8e:fc:cc:9c:dc:29:f8:fa:fb:4c:eb:7b:f2:1f:87: 4b:19:ec:ec:0a:e4:dc:26:d7:d3:a0:b2:ae:50:4e: 30:08:15:10:fe:a0:bd:b9:ca:62:19:2f:7a:bc:54: bd:81:fb:c7:18:0f:bb:78:42:4b:14:ad:89:e7:06: c9:f6:2d:2e:db:18:8e:0a:d5:2d:2b:f7:07:0b:07: aa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BA:79:E5:CB:8A:9B:6D:B1:E9:01:97:8B:40:95:24:37:A4:DC:DD X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.12.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:0e:20:03:6a:82:b8:fd:da:19:f7:8b:94:a9:88:87:6d:94: f0:d2:f9:b1:6e:17:b9:dd:2c:b8:31:94:30:48:66:50:f6:91: f8:c6:66:99:81:cc:6b:25:8a:4c:68:59:29:ac:2b:9b:f1:82: 8d:75:09:37:46:8b:93:dc:f4:a2:7e:8a:72:3c:9f:4c:8c:e1: 5e:5c:a3:77:72:4d:48:05:18:d9:5e:d6:4b:2a:59:94:73:d2: ff:e6:9f:87:22:8a:a3:5d:7b:21:2d:32:42:49:3d:c1:8c:2f: 29:be:bf:57:42:04:55:bc:ae:7e:20:9f:e0:6b:15:23:51:9d: d4:8c:95:cc:76:b6:bc:2b:f4:61:8c:27:3a:78:3b:b1:aa:5e: 14:b3:3d:0a:1a:19:17:61:62:c3:03:96:64:49:ab:24:07:50: 54:af:c9:56:4c:58:86:2c:35:4f:c9:10:f4:24:ea:c3:b7:32: b6:f7:06:75:0b:f5:16:2e:50:e4:4f:7c:c7:76:a9:9e:41:ed: 4f:43:b2:0e:41:4d:72:d0:85:61:6d:66:e5:56:ec:2f:80:3f: dd:e3:50:5c:b9:dc:22:7c:ef:b8:52:a5:df:11:e0:e3:ef:0d: e7:af:c6:6f:84:c4:6e:ed:fc:bc:95:bb:1c:43:af:0b:54:ca: 1a:eb:0a:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjMwNDMwMjIxOTA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDRlZTk1Yy03MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7Wbivt5gnY1dSXaAiYOzA72310bnpl5CoJ8eFZhYq5ED1xC6D4S/1/0iw9y fB6Rtls5p/eUOczGYo/PtDF8MyQgsGuglx+jkS2f2zobJzZCx4l393Chb+7p+r1w vN0ff/6cwWGjQ3MSa9knuX5O1tQTvai8vpGGEettQ2z78nRD+3hs64zvKyf/vvnE IUY6hzH0rCP5U8MM5gBOMVRjzVhNVzLR5CiZDkJtIhNmpZbjKeeO/Myc3Cn4+vtM 63vyH4dLGezsCuTcJtfToLKuUE4wCBUQ/qC9ucpiGS96vFS9gfvHGA+7eEJLFK2J 5wbJ9i0u2xiOCtUtK/cHCweqlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDy6eeXL ipttsekBl4tAlSQ3pNzdMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjkyMUQyNEUw NjdDMTFFRDg4MkZDMTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJygQwwDQYJKoZIhvcNAQELBQADggEBACoOIANqgrj92hn3 i5SpiIdtlPDS+bFuF7ndLLgxlDBIZlD2kfjGZpmBzGslikxoWSmsK5vxgo11CTdG i5Pc9KJ+inI8n0yM4V5co3dyTUgFGNle1ksqWZRz0v/mn4ciiqNdeyEtMkJJPcGM Lym+v1dCBFW8rn4gn+BrFSNRndSMlcx2trwr9GGMJzp4O7GqXhSzPQoaGRdhYsMD lmRJqyQHUFSvyVZMWIYsNU/JEPQk6sO3Mrb3BnUL9RYuUORPfMd2qZ5B7U9Dsg5B TXLQhWFtZuVW7C+AP93jUFy53CJ877hSpd8R4OPvDeevxm+ExG7t/LyVuxxDrwtU yhrrChA= -----END CERTIFICATE-----Generated at Thu May 16 22:23:38 2024 by rpki-client on console-fra.rpki-client.org