$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa File: 2921D24E067C11ED882FC127C4F9AE02.roa (raw, json) Hash identifier: yTR181mMOhFtz0/zNI7qM2KlctQHTJXyuSeldVEFcuU= Subject key identifier: 9E:8F:AE:47:70:EB:96:E6:E0:1B:3A:21:4B:EF:65:F5:ED:05:BC:B3 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 0854 Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa Signing time: Wed 24 Jul 2024 20:58:48 +0000 ROA not before: Wed 24 Jul 2024 20:58:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134806 IP address blocks: 114.129.12.0/22 maxlen: 22 114.129.12.0/24 maxlen: 24 114.129.13.0/24 maxlen: 24 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2132 (0x854) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: Jul 24 20:58:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66a16b08-23bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:62:90:49:06:59:45:32:31:4d:f0:10:b0: 0c:a4:73:da:59:7f:8e:dd:11:26:03:e7:0e:ea:ca: 63:99:5a:f6:f5:ca:2c:d5:eb:05:8e:26:3b:39:24: 83:60:be:89:7d:8d:e7:6d:8f:61:f1:a9:21:b7:6d: e5:4f:3d:ac:01:30:1d:e3:e6:6e:9c:f4:6c:1a:45: 16:3f:12:0a:db:ca:a2:49:1c:21:34:ab:55:6a:fd: 92:99:f4:03:31:db:bc:97:3e:96:9b:3e:08:8b:25: a9:5f:db:03:89:cf:66:3a:ce:65:1e:88:fe:c7:17: 63:2b:14:07:66:1b:e7:7b:a4:e3:55:a0:cd:d6:e6: ed:e0:0c:64:8e:b3:54:f1:d8:c3:f3:06:ef:11:9f: 77:08:c4:c2:b7:89:16:ca:96:83:d4:46:27:9d:49: f7:a0:cc:f5:75:79:37:d4:dc:fa:87:5e:10:c8:05: de:c0:7e:1d:81:d0:97:80:0c:1a:78:10:d5:5d:1f: ef:a2:ab:5f:2f:0c:c1:09:1b:82:4a:f1:dd:f2:1d: b6:a1:65:41:a6:19:3c:fb:8a:b1:cd:54:a1:45:d4: 7c:f5:b0:b4:9d:8a:a7:dd:3a:0d:36:b2:51:f2:80: bd:e0:6b:a8:6e:cd:83:e3:b8:e3:82:65:9f:cd:6f: 78:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8F:AE:47:70:EB:96:E6:E0:1B:3A:21:4B:EF:65:F5:ED:05:BC:B3 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/2921D24E067C11ED882FC127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.12.0/22 Signature Algorithm: sha256WithRSAEncryption da:b4:78:95:b3:06:72:1d:92:0a:7e:76:ac:c1:fc:a0:fd:0f: 46:79:f7:36:d0:d7:b0:5f:b0:c6:a2:1d:56:b5:a1:1c:67:02: 33:6f:28:51:cc:b4:c2:63:9e:88:7d:a2:f1:61:0c:c6:f6:c2: 33:14:2a:36:94:0c:17:b1:6c:8b:f0:80:53:66:0b:e7:7d:d9: 00:80:f1:82:e4:0d:49:dd:7f:01:ab:21:1a:fb:79:6e:d4:3a: b4:bb:bd:2f:85:bb:e9:f0:bf:1b:1e:a1:0b:8e:20:ae:70:4f: 80:63:2d:0e:8d:5e:c4:b5:5e:ff:71:0e:13:e2:6f:fe:a4:12: 84:af:dd:c4:91:4d:8d:50:10:9f:51:ed:03:3e:85:aa:12:70: 6f:b1:a4:1e:0e:4f:de:c4:d3:bd:e2:87:d4:93:e6:4f:d8:55: 94:40:07:26:ca:12:ac:75:81:9d:21:27:1f:27:c4:5f:00:04: f4:0f:44:b1:22:b8:bd:68:cf:e6:17:11:12:a6:60:dd:80:bb: 20:bb:b1:b2:a1:8f:a2:d5:44:32:e8:63:4f:33:4c:3e:05:37: 41:91:ed:b8:72:c0:fb:0d:6f:ed:a9:85:65:1f:8a:5d:97:f7: 9e:71:9a:7d:54:c5:ba:f9:e2:6d:1d:05:6a:de:6e:a9:53:86: 55:d9:4f:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjQwNzI0MjA1ODQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExNmIwOC0yM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9likEkGWUUyMU3wELAMpHPaWX+O3REmA+cO6spjmVr29cos1esFjiY7OSSD YL6JfY3nbY9h8akht23lTz2sATAd4+ZunPRsGkUWPxIK28qiSRwhNKtVav2SmfQD Mdu8lz6Wmz4IiyWpX9sDic9mOs5lHoj+xxdjKxQHZhvne6TjVaDN1ubt4AxkjrNU 8djD8wbvEZ93CMTCt4kWypaD1EYnnUn3oMz1dXk31Nz6h14QyAXewH4dgdCXgAwa eBDVXR/voqtfLwzBCRuCSvHd8h22oWVBphk8+4qxzVShRdR89bC0nYqn3ToNNrJR 8oC94Guobs2D47jjgmWfzW94ZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ6Prkdw 65bm4Bs6IUvvZfXtBbyzMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjkyMUQyNEUw NjdDMTFFRDg4MkZDMTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJygQwwDQYJKoZIhvcNAQELBQADggEBANq0eJWzBnIdkgp+ dqzB/KD9D0Z59zbQ17BfsMaiHVa1oRxnAjNvKFHMtMJjnoh9ovFhDMb2wjMUKjaU DBexbIvwgFNmC+d92QCA8YLkDUndfwGrIRr7eW7UOrS7vS+Fu+nwvxseoQuOIK5w T4BjLQ6NXsS1Xv9xDhPib/6kEoSv3cSRTY1QEJ9R7QM+haoScG+xpB4OT97E073i h9ST5k/YVZRABybKEqx1gZ0hJx8nxF8ABPQPRLEiuL1oz+YXERKmYN2AuyC7sbKh j6LVRDLoY08zTD4FN0GR7bhywPsNb+2phWUfil2X955xmn1Uxbr54m0dBWrebqlT hlXZT5I= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:45 2024 by rpki-client on console-fra.rpki-client.org