$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/296C70368D0A11EE89E31163C4F9AE02.roa File: 296C70368D0A11EE89E31163C4F9AE02.roa (raw, json) Hash identifier: JDMa+Q7gaylhvQkX48jr2T11ph/BKx9YDcNEpl5fy8E= Subject key identifier: 55:DF:5F:D0:C0:9F:B5:EF:56:EE:D7:98:56:23:72:18:99:8D:41:33 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 37C9 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/296C70368D0A11EE89E31163C4F9AE02.roa Signing time: Mon 27 Nov 2023 09:48:48 +0000 ROA not before: Mon 27 Nov 2023 09:48:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 152130 IP address blocks: 110.170.136.0/24 maxlen: 24 2001:fb0:1081::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14281 (0x37c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Nov 27 09:48:48 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65646600-ff96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:39:1a:ad:42:96:2a:47:1a:af:c5:f4:23: 51:fd:10:08:60:52:3c:a6:ba:dd:be:d4:90:69:7a: 25:82:c4:d0:20:55:ee:c7:69:9b:61:27:62:df:2a: d1:3d:f3:11:77:f5:1b:86:4f:47:48:e7:68:11:9b: fb:1f:31:a8:f5:2c:c1:a7:de:b9:fe:60:3e:69:d5: 2c:1a:7b:43:fe:af:1d:48:6c:fa:c7:b1:22:86:9f: 25:a8:9d:f9:d1:70:de:4f:13:76:0a:78:32:46:f9: 71:83:5e:0d:45:71:4b:a8:a9:c6:f0:76:cb:dd:57: 2a:38:23:4a:aa:30:7d:5d:bb:c8:24:04:01:19:e5: 9c:ca:55:82:25:d9:d2:40:4d:be:f1:90:eb:5e:2a: 2b:2f:d2:5d:15:b6:8c:2b:7f:bb:3b:8c:d4:48:de: b1:8b:94:c1:f1:d4:73:92:08:e5:5c:fb:51:2a:1c: 6d:81:05:2a:e8:0f:31:eb:1c:28:d0:5a:d6:c9:25: 77:9e:20:a8:13:26:e3:dd:ad:df:e5:8a:a4:17:06: 7c:66:d3:ff:ae:59:59:35:af:7d:58:a9:00:70:0e: 23:f4:1f:28:d7:21:e4:7f:18:80:8c:39:6c:ac:d7: 06:3b:ff:76:36:31:ff:5c:ff:c7:33:e8:5d:1f:70: 61:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DF:5F:D0:C0:9F:B5:EF:56:EE:D7:98:56:23:72:18:99:8D:41:33 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/296C70368D0A11EE89E31163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.136.0/24 IPv6: 2001:fb0:1081::/48 Signature Algorithm: sha256WithRSAEncryption 8d:c3:05:ab:e3:d7:a8:f2:2e:bc:cf:ec:ac:e9:b8:cc:f8:83: a3:a3:b0:cf:16:ee:26:07:7a:21:45:ed:5e:7f:70:89:28:f2: 21:1b:85:82:a0:1e:65:38:3b:2e:45:ce:ed:ed:22:9b:9d:6f: 06:d1:02:ab:77:a3:06:d7:1e:59:9c:43:cd:7c:64:27:dd:61: 4f:18:ce:be:e5:74:6e:4b:4f:a2:6f:d9:6e:37:da:17:e1:62: 12:fa:35:db:ed:d1:24:d7:d0:db:9a:00:a6:ac:87:27:00:2d: a5:a4:70:20:86:0c:79:dd:42:6f:f3:6d:58:fb:22:c0:59:06: 2f:e4:65:9b:3a:7f:56:e9:08:b8:1d:09:a1:18:a2:29:be:c6: e8:97:45:ec:f0:93:ab:8c:74:3a:79:61:46:3c:de:32:87:a5: 4b:5d:ae:6e:7f:aa:f4:b7:aa:56:9e:66:67:43:a6:05:bb:90: 74:58:30:2d:45:31:d0:72:a5:e7:8e:ed:bb:ee:96:58:6a:bf: 72:a1:9e:56:bd:92:ed:28:62:98:39:0c:5a:71:8c:0b:96:6d: 37:0a:54:b8:0b:fb:e8:6f:5f:f6:02:24:26:5c:39:6a:c7:fb: 6d:e0:d7:11:c5:13:c3:94:e1:8b:9b:93:35:7b:e8:ac:ad:ce: 10:f4:cc:cc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICN8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMxMTI3MDk0ODQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY0NjYwMC1mZjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFE5Gq1ClipHGq/F9CNR/RAIYFI8prrdvtSQaXolgsTQIFXux2mbYSdi3yrR PfMRd/Ubhk9HSOdoEZv7HzGo9SzBp965/mA+adUsGntD/q8dSGz6x7Eihp8lqJ35 0XDeTxN2CngyRvlxg14NRXFLqKnG8HbL3VcqOCNKqjB9XbvIJAQBGeWcylWCJdnS QE2+8ZDrXiorL9JdFbaMK3+7O4zUSN6xi5TB8dRzkgjlXPtRKhxtgQUq6A8x6xwo 0FrWySV3niCoEybj3a3f5YqkFwZ8ZtP/rllZNa99WKkAcA4j9B8o1yHkfxiAjDls rNcGO/92NjH/XP/HM+hdH3BhkQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFXfX9DA n7XvVu7XmFYjchiZjUEzMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMjk2QzcwMzY4 RDBBMTFFRTg5RTMxMTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABuqogwDwQCAAIwCQMHACABD7AQgTANBgkqhkiG9w0BAQsF AAOCAQEAjcMFq+PXqPIuvM/srOm4zPiDo6OwzxbuJgd6IUXtXn9wiSjyIRuFgqAe ZTg7LkXO7e0im51vBtECq3ejBtceWZxDzXxkJ91hTxjOvuV0bktPom/ZbjfaF+Fi Evo12+3RJNfQ25oApqyHJwAtpaRwIIYMed1Cb/NtWPsiwFkGL+Rlmzp/VukIuB0J oRiiKb7G6JdF7PCTq4x0OnlhRjzeMoelS12ubn+q9LeqVp5mZ0OmBbuQdFgwLUUx 0HKl547tu+6WWGq/cqGeVr2S7ShimDkMWnGMC5ZtNwpUuAv76G9f9gIkJlw5asf7 beDXEcUTw5Thi5uTNXvorK3OEPTMzA== -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org