$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/4FD095F0045611EEAABA8378C4F9AE02.roa File: 4FD095F0045611EEAABA8378C4F9AE02.roa (raw, json) Hash identifier: /wsmnHSvdhR0eXj2ZYFfaPcqvnJyIV8OMXrW2ADzPig= Subject key identifier: 27:19:52:C6:DF:57:1E:C0:0F:93:9C:04:E7:38:20:42:77:4B:A0:F7 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 077B Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/4FD095F0045611EEAABA8378C4F9AE02.roa Signing time: Tue 13 Jun 2023 19:03:19 +0000 ROA not before: Tue 13 Jun 2023 19:03:19 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 38138 IP address blocks: 114.129.8.0/21 maxlen: 21 114.129.8.0/24 maxlen: 24 114.129.9.0/24 maxlen: 24 114.129.10.0/24 maxlen: 24 114.129.11.0/24 maxlen: 24 114.129.12.0/24 maxlen: 24 114.129.13.0/24 maxlen: 24 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 2405:eec0::/32 maxlen: 32 2405:eec0:1::/48 maxlen: 48 2405:eec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: Jun 13 19:03:19 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6488bd77-690d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:37:7a:ed:1b:23:74:13:04:7c:c7:c1:3c: bd:d8:44:69:07:0b:95:0d:26:13:fd:1e:dd:7e:6f: 33:7b:20:a2:20:e3:58:51:fa:3d:66:55:b4:27:bf: 7b:c9:48:f4:fe:61:51:67:ae:92:1e:1d:02:95:62: 60:60:dc:f6:f4:37:cb:b8:8b:74:55:3e:86:bc:5e: ff:5c:e6:a2:af:4d:18:89:bb:c9:83:c6:a7:6e:5f: bb:95:42:e3:8c:eb:14:78:61:7e:1c:a2:c6:80:89: fc:45:49:99:5a:84:45:2f:bd:43:26:21:d3:b8:69: 56:07:44:bf:4c:ad:cb:36:93:79:44:d3:3f:aa:75: e5:ff:2d:69:48:90:61:94:dc:c7:57:1a:b2:cc:51: e3:ba:ca:c7:aa:a8:cf:10:b9:e8:f7:fc:16:6a:0f: e9:27:0d:ed:6e:3a:d7:ea:7d:09:f4:1d:2d:0b:e4: 3b:65:9f:b0:f1:3c:73:f7:b2:8c:e6:63:49:bb:da: a2:cd:16:7a:ca:e4:0e:0e:55:14:9f:eb:23:ba:38: d2:eb:48:2e:04:27:1f:31:b9:12:fe:1a:35:a7:cb: fd:85:6d:13:69:18:c6:e5:f1:75:58:78:7c:52:3c: a1:b2:0f:f5:3d:5b:7d:3d:31:e6:0c:34:da:47:b4: aa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:19:52:C6:DF:57:1E:C0:0F:93:9C:04:E7:38:20:42:77:4B:A0:F7 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/4FD095F0045611EEAABA8378C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.8.0/21 IPv6: 2405:eec0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:58:64:27:07:fa:0f:e4:0f:54:ae:06:0e:37:65:e6:e7:04: 20:2b:2a:05:c9:ef:70:fd:6b:8c:62:c5:56:c3:12:34:da:d8: 3c:e6:58:3b:53:e4:98:23:ea:b4:74:27:45:33:f0:58:96:ab: f7:a8:52:a0:06:a3:9c:c7:b9:81:be:45:ba:64:61:de:b9:d0: e7:0f:0a:18:03:5b:31:8a:82:9f:f8:27:75:3b:43:e2:3e:b2: 18:a3:1a:64:4a:b9:ed:a4:c7:de:3c:e2:be:90:96:0c:c5:2c: 4b:17:c6:4b:e0:a4:c3:e4:f6:06:41:54:ad:38:0e:1f:1c:79: 81:0e:d6:75:dd:fd:44:e9:d0:f1:cf:3e:20:8c:23:d5:39:be: 03:c6:8d:4c:8a:bb:8e:b7:24:de:9d:7e:1d:c3:61:c4:fb:ce: 5a:cb:85:7a:58:0f:a9:d3:a5:84:c6:8c:b3:c2:bd:79:c8:b9: 63:a3:cc:55:51:9d:a7:4c:4f:b9:1f:a6:02:48:60:e5:f1:28: 1a:cf:c7:dc:7f:01:a0:f6:cf:f2:f8:40:63:1b:9b:5f:cc:ed: 7d:4e:cd:ae:57:b2:32:40:63:6b:4e:c0:e0:ce:85:b3:25:27: 2a:62:aa:eb:40:b7:2a:36:cf:02:bb:b7:f4:71:23:b9:48:90: 99:1f:cf:29 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjMwNjEzMTkwMzE5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg4YmQ3Ny02OTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArss3eu0bI3QTBHzHwTy92ERpBwuVDSYT/R7dfm8zeyCiIONYUfo9ZlW0J797 yUj0/mFRZ66SHh0ClWJgYNz29DfLuIt0VT6GvF7/XOair00YibvJg8anbl+7lULj jOsUeGF+HKLGgIn8RUmZWoRFL71DJiHTuGlWB0S/TK3LNpN5RNM/qnXl/y1pSJBh lNzHVxqyzFHjusrHqqjPELno9/wWag/pJw3tbjrX6n0J9B0tC+Q7ZZ+w8Txz97KM 5mNJu9qizRZ6yuQODlUUn+sjujjS60guBCcfMbkS/ho1p8v9hW0TaRjG5fF1WHh8 Ujyhsg/1PVt9PTHmDDTaR7SqVQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCcZUsbf Vx7AD5OcBOc4IEJ3S6D3MB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvNEZEMDk1RjAw NDU2MTFFRUFBQkE4Mzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBANygQgwDQQCAAIwBwMFACQF7sAwDQYJKoZIhvcNAQELBQAD ggEBAGpYZCcH+g/kD1SuBg43ZebnBCArKgXJ73D9a4xixVbDEjTa2DzmWDtT5Jgj 6rR0J0Uz8FiWq/eoUqAGo5zHuYG+RbpkYd650OcPChgDWzGKgp/4J3U7Q+I+shij GmRKue2kx9484r6QlgzFLEsXxkvgpMPk9gZBVK04Dh8ceYEO1nXd/UTp0PHPPiCM I9U5vgPGjUyKu463JN6dfh3DYcT7zlrLhXpYD6nTpYTGjLPCvXnIuWOjzFVRnadM T7kfpgJIYOXxKBrPx9x/AaD2z/L4QGMbm1/M7X1Oza5XsjJAY2tOwODOhbMlJypi qutAtyo2zwK7t/RxI7lIkJkfzyk= -----END CERTIFICATE-----Generated at Thu May 16 22:34:52 2024 by rpki-client on console-ams.rpki-client.org