$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa File: 35154B601E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: p+BJpsbVWksHSFiLvTV42ippQrE7JjkzvsPskchkQO8= Subject key identifier: FE:BC:21:BF:D3:64:4A:43:91:8A:65:2B:B5:2D:3A:6A:DE:EF:10:DC Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3682 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:22 +0000 ROA not before: Sat 08 Jul 2023 14:30:22 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133167 IP address blocks: 61.90.249.0/24 maxlen: 24 110.170.151.0/24 maxlen: 24 2001:fb0:1035::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13954 (0x3682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:22 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a972fe-3a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:30:c9:ba:f4:f9:a6:8f:e8:3a:7c:8a:56: 5b:64:69:c0:bd:b8:b3:6a:89:51:37:45:9e:a3:67: 80:1c:28:f7:07:1c:af:90:bf:9c:a8:45:f5:8d:df: c6:e7:b6:8b:e5:1c:93:3f:d4:79:58:e7:f2:1c:af: e7:03:7a:84:2f:8a:7d:ef:af:4a:9a:bb:a6:0c:3d: 29:86:cf:42:3a:f3:53:8d:12:96:db:6e:21:bf:c8: 93:70:48:dd:8c:4e:ba:c7:c3:6b:ad:f3:7c:19:e9: 54:aa:a0:93:c9:fb:ba:5b:9d:08:d0:4e:d1:ce:62: d2:c5:af:7a:11:01:3d:65:ac:0a:45:9f:f9:93:cf: 93:c0:03:ba:e7:e7:12:b8:ad:88:90:d0:80:2d:f2: 5b:f7:5c:15:65:ac:0d:ce:e3:24:30:3a:74:41:df: 57:b9:1a:82:2a:56:18:54:af:ad:03:0f:dc:5a:c4: 90:86:a5:9f:fd:5f:6a:89:3c:47:1a:2f:6a:d6:dd: 84:e5:da:18:e8:a4:cc:38:54:39:10:2d:b5:d8:d2: 9e:bd:b5:36:92:13:52:66:aa:7f:a6:b2:14:2f:57: 66:0b:0e:6f:dc:ed:72:35:6f:9c:2b:f8:da:6f:9a: 07:fa:6f:61:fe:2e:95:81:72:ab:12:e6:12:e8:c9: 01:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BC:21:BF:D3:64:4A:43:91:8A:65:2B:B5:2D:3A:6A:DE:EF:10:DC X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.249.0/24 110.170.151.0/24 IPv6: 2001:fb0:1035::/48 Signature Algorithm: sha256WithRSAEncryption 17:b0:45:3c:c3:66:90:86:2f:a2:51:13:6a:83:28:11:2b:90: 68:e5:59:4e:36:b9:96:0a:c1:ee:bc:54:05:6b:a4:fd:88:d1: 71:7d:84:8d:3f:cb:6c:56:82:dd:2e:88:51:d0:65:64:98:aa: 6d:8e:17:23:2b:b6:2b:e8:42:9f:41:58:30:a9:b0:97:c2:14: c7:08:2a:b0:97:04:59:f9:76:cc:97:c9:7e:f3:d1:e1:eb:87: 9d:8c:c0:61:3d:9e:a3:ef:d2:4a:ad:b2:4f:a6:b7:ee:d5:de: da:9a:80:42:b8:4e:7e:4d:92:b8:0a:fc:e2:f6:38:e4:25:43: ce:c9:11:71:6e:e1:2d:25:d8:12:21:1d:53:02:fa:05:35:00: 67:4d:9d:e0:55:27:fa:c4:b6:f0:12:26:bc:31:4f:26:03:36: 4c:46:6c:70:07:2c:81:7f:f6:56:f0:f0:94:bc:45:82:cf:0b: 17:06:2a:8b:be:21:79:d6:a6:38:5a:a1:9f:b2:f1:fc:be:f5: af:87:f6:65:5c:40:83:08:1d:cf:87:ab:be:24:24:48:21:6a: 4e:37:c2:13:80:9f:7e:c3:46:0e:46:f0:89:33:2a:8b:92:05: 0a:72:65:be:21:87:bc:d6:b3:46:e6:4b:07:00:87:14:dd:a4: 40:db:6c:d9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDIyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzJmZS0zYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOIwybr0+aaP6Dp8ilZbZGnAvbizaolRN0Weo2eAHCj3BxyvkL+cqEX1jd/G 57aL5RyTP9R5WOfyHK/nA3qEL4p9769KmrumDD0phs9COvNTjRKW224hv8iTcEjd jE66x8NrrfN8GelUqqCTyfu6W50I0E7RzmLSxa96EQE9ZawKRZ/5k8+TwAO65+cS uK2IkNCALfJb91wVZawNzuMkMDp0Qd9XuRqCKlYYVK+tAw/cWsSQhqWf/V9qiTxH Gi9q1t2E5doY6KTMOFQ5EC212NKevbU2khNSZqp/prIUL1dmCw5v3O1yNW+cK/ja b5oH+m9h/i6VgXKrEuYS6MkBiQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFP68Ib/T ZEpDkYplK7UtOmre7xDcMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzUxNTRCNjAx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAA9WvkDBABuqpcwDwQCAAIwCQMHACABD7AQNTANBgkqhkiG 9w0BAQsFAAOCAQEAF7BFPMNmkIYvolETaoMoESuQaOVZTja5lgrB7rxUBWuk/YjR cX2EjT/LbFaC3S6IUdBlZJiqbY4XIyu2K+hCn0FYMKmwl8IUxwgqsJcEWfl2zJfJ fvPR4euHnYzAYT2eo+/SSq2yT6a37tXe2pqAQrhOfk2SuAr84vY45CVDzskRcW7h LSXYEiEdUwL6BTUAZ02d4FUn+sS28BImvDFPJgM2TEZscAcsgX/2VvDwlLxFgs8L FwYqi74hedamOFqhn7Lx/L71r4f2ZVxAgwgdz4erviQkSCFqTjfCE4CffsNGDkbw iTMqi5IFCnJlviGHvNazRuZLBwCHFN2kQNts2Q== -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org