$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa File: 214232EC4FD311EF90027A63C4F9AE02.roa (raw, json) Hash identifier: FTbrrJwavqP08/0mEs3AawfzqRid/QkcdkFOFXsnwUI= Subject key identifier: F8:B8:0D:66:86:D5:74:B8:25:85:AA:59:D7:2A:FD:48:77:24:51:DE Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 0915 Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa Signing time: Fri 30 May 2025 20:57:11 +0000 ROA not before: Fri 30 May 2025 20:57:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63526 IP address blocks: 114.129.14.0/23 maxlen: 23 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2325 (0x915) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE, serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: May 30 20:57:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a1ba6-be9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b8:5d:7a:67:09:02:1a:e3:b3:72:81:0a:91: 0b:fd:58:bc:47:70:f2:f6:d2:20:7f:16:a6:3c:2c: 0f:60:ec:b9:09:36:31:57:bb:92:1c:76:df:62:63: 72:13:8c:7b:35:d7:4f:f5:ab:25:fd:f2:07:c8:a8: 44:1c:08:ba:55:36:80:c3:9d:f1:2c:28:ad:8c:cd: ed:98:c0:45:7b:15:21:33:59:5a:73:c6:fd:90:17: ba:bf:a4:46:ba:a4:6c:5a:c6:7f:8d:b8:d5:3f:61: 5a:ec:03:a0:50:21:36:47:94:63:97:1a:2f:cb:35: 12:7f:69:66:63:76:a4:48:ca:e8:ca:3b:80:63:16: 9e:ed:5f:1e:01:d3:37:81:4a:ca:42:1b:6f:b6:04: 27:2a:8b:24:3e:fe:25:d2:17:fd:d5:da:5c:6d:69: 45:22:67:76:c6:5e:b7:e0:28:56:5a:1e:c9:99:a3: c4:02:c4:9d:34:5b:41:16:ca:c2:78:cc:8c:65:82: f9:00:15:ef:d0:05:11:f5:4f:0c:6c:5a:bb:5d:f9: 28:55:83:60:d0:4d:68:3f:82:c0:0b:7d:49:7e:ca: c0:b0:1b:06:9f:38:f9:e9:31:ea:a1:1f:b3:55:f3: d1:91:e3:63:3b:32:84:84:7c:39:e1:ce:1f:e8:df: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B8:0D:66:86:D5:74:B8:25:85:AA:59:D7:2A:FD:48:77:24:51:DE X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.14.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:d4:18:c9:97:ff:49:f6:55:c7:e2:b2:90:8a:e1:79:1b:a7: d6:7a:5c:f0:ac:ba:be:1b:f2:30:47:87:30:4e:3b:c0:b1:74: 33:a9:98:f6:fd:da:e9:26:44:43:69:ae:1a:38:1c:ed:e4:59: 36:ca:cd:2e:0a:e7:27:bd:8d:77:b1:1f:7a:8b:ee:4d:82:a1: de:f0:70:b9:5d:ae:71:c1:d7:0a:62:ae:66:55:83:81:c6:b7: 1d:d3:14:1f:b2:0c:35:9a:95:0a:63:86:35:35:ce:eb:fd:ca: b9:49:e4:29:7e:44:ac:10:21:0a:88:e1:e0:de:f6:bf:af:ef: 50:95:fe:27:4d:b6:0c:30:6c:0a:eb:ec:18:4d:8c:47:2c:7e: 0c:42:c5:69:1a:53:f5:e8:69:ed:68:6f:8d:d7:0f:3b:1e:ed: cb:03:5c:30:b8:33:24:f1:80:3a:e5:59:1c:84:7c:b2:67:f0: 3e:60:17:fb:fd:b2:c0:c5:f5:4a:e9:1d:78:7a:9e:95:bd:66: df:55:c0:46:22:91:e2:cb:30:0a:af:36:3f:0b:14:23:64:f7: 0f:37:aa:d0:16:88:90:45:0b:40:ff:d1:45:c4:df:ef:4c:1b: 24:20:0a:53:a0:35:39:19:f1:30:7a:aa:0e:b0:e0:91:27:2a: 16:0a:67:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjUwNTMwMjA1NzExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMWJhNi1iZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobhdemcJAhrjs3KBCpEL/Vi8R3Dy9tIgfxamPCwPYOy5CTYxV7uSHHbfYmNy E4x7NddP9asl/fIHyKhEHAi6VTaAw53xLCitjM3tmMBFexUhM1lac8b9kBe6v6RG uqRsWsZ/jbjVP2Fa7AOgUCE2R5RjlxovyzUSf2lmY3akSMroyjuAYxae7V8eAdM3 gUrKQhtvtgQnKoskPv4l0hf91dpcbWlFImd2xl634ChWWh7JmaPEAsSdNFtBFsrC eMyMZYL5ABXv0AUR9U8MbFq7XfkoVYNg0E1oP4LAC31JfsrAsBsGnzj56THqoR+z VfPRkeNjOzKEhHw54c4f6N8YZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPi4DWaG 1XS4JYWqWdcq/Uh3JFHeMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjE0MjMyRUM0 RkQzMTFFRjkwMDI3QTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFygQ4wDQYJKoZIhvcNAQELBQADggEBAB/UGMmX/0n2Vcfi spCK4Xkbp9Z6XPCsur4b8jBHhzBOO8CxdDOpmPb92ukmRENprho4HO3kWTbKzS4K 5ye9jXexH3qL7k2Cod7wcLldrnHB1wpirmZVg4HGtx3TFB+yDDWalQpjhjU1zuv9 yrlJ5Cl+RKwQIQqI4eDe9r+v71CV/idNtgwwbArr7BhNjEcsfgxCxWkaU/Xoae1o b43XDzse7csDXDC4MyTxgDrlWRyEfLJn8D5gF/v9ssDF9UrpHXh6npW9Zt9VwEYi keLLMAqvNj8LFCNk9w83qtAWiJBFC0D/0UXE3+9MGyQgClOgNTkZ8TB6qg6w4JEn KhYKZx4= -----END CERTIFICATE-----Generated at Sun Jun 15 08:36:08 2025 by rpki-client