$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/367596CC1E0111E9A590C837C4F9AE02.roa File: 367596CC1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: XRiRlfzo73A830x4AfNmcpx4o55+y0apilhNE8x3Opo= Subject key identifier: 1C:D8:DF:E9:0D:68:5A:14:3B:5D:08:D5:78:C0:F8:B2:0A:7E:F8:9A Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3689 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/367596CC1E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:28 +0000 ROA not before: Sat 08 Jul 2023 14:30:28 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133907 IP address blocks: 110.170.133.0/24 maxlen: 24 210.86.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13961 (0x3689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:28 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97303-5ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:33:aa:7b:c4:dd:e0:a6:91:c2:d6:7d:7e: df:cc:53:93:35:9e:49:7e:fd:08:4d:0c:51:24:b2: e8:66:40:6d:31:3a:16:62:62:6c:69:bc:ec:a2:1f: 0f:f2:b7:8f:1b:79:78:f7:c7:82:6c:03:1a:62:62: c0:7b:36:18:86:b7:38:ec:6d:da:db:0e:5e:65:e9: e4:e7:63:f3:16:e1:99:8e:4c:b6:40:92:73:cc:2b: 6b:0b:e8:ee:06:37:e2:d4:fd:bd:da:21:4b:bd:9f: 7a:ec:59:8f:13:8d:c3:ee:d6:0e:e5:09:d4:fa:ca: d9:63:f6:9c:08:bc:8a:de:35:a7:0a:79:45:c0:d2: 8a:2c:63:3e:c3:ef:f1:b5:a6:bf:b1:b9:8c:09:61: 7b:8b:d2:8f:bb:2a:c3:bf:c1:a0:1f:60:e4:1a:21: cd:d3:1c:7b:9c:aa:58:6c:71:6c:9a:a4:05:81:8e: b2:e6:45:4e:59:8e:87:d1:35:8e:72:f9:18:e6:df: d6:eb:8a:f5:95:80:eb:e2:ca:3c:ea:f9:06:76:f1: 87:0d:9c:6e:b9:ec:28:f1:81:03:7d:cc:25:a5:60: 8b:33:8d:43:d7:c7:01:7e:2d:ff:2d:d1:c5:64:4b: 73:11:a0:cf:8c:be:01:8a:8c:64:2c:0a:ef:ec:87: bb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D8:DF:E9:0D:68:5A:14:3B:5D:08:D5:78:C0:F8:B2:0A:7E:F8:9A X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/367596CC1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.133.0/24 210.86.220.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:c1:fc:b6:b1:48:f6:8f:6e:48:49:58:b1:b7:6a:d2:6d:6b: e0:6d:26:c0:1e:30:34:32:55:ff:36:7e:75:12:4d:fa:58:b0: f9:90:f0:c8:87:de:c6:db:01:9c:69:a4:c2:f3:8e:74:ef:83: 45:a9:58:e1:92:42:76:a2:d2:53:3b:67:dc:3d:9f:23:d3:6c: 28:10:68:be:3b:7d:47:4f:2e:80:c0:8b:4b:10:a7:ba:17:7b: ed:ec:34:9c:80:1e:87:8b:32:d3:2e:96:0a:0a:35:2d:8e:c3: 4a:22:79:d4:84:d2:d8:06:40:02:71:12:3e:07:a8:e6:a5:de: 1c:52:9c:2f:5a:7f:b9:93:44:f5:62:5a:14:86:12:c2:5b:a7: 24:9f:b9:ee:60:cb:12:99:e4:ec:73:16:4f:e4:37:89:e2:a0: 48:a9:86:00:d9:ec:ce:bc:a9:b5:c9:72:65:80:00:81:f7:7d: 6d:ea:95:68:36:f9:5a:ec:1a:24:5a:92:3e:a3:06:77:76:aa: 4f:50:26:de:01:85:58:29:81:e8:8a:68:4b:42:6d:8f:06:5e: 09:16:cb:e2:47:e4:40:7a:7e:80:d6:90:e3:a6:0a:5d:84:cb: 7f:2d:fe:d3:de:98:f5:c0:aa:60:c4:7d:20:8a:ce:8d:a5:af: c4:5a:69:bb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDI4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMwMy01YWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWczqnvE3eCmkcLWfX7fzFOTNZ5Jfv0ITQxRJLLoZkBtMToWYmJsabzsoh8P 8rePG3l498eCbAMaYmLAezYYhrc47G3a2w5eZenk52PzFuGZjky2QJJzzCtrC+ju Bjfi1P292iFLvZ967FmPE43D7tYO5QnU+srZY/acCLyK3jWnCnlFwNKKLGM+w+/x taa/sbmMCWF7i9KPuyrDv8GgH2DkGiHN0xx7nKpYbHFsmqQFgY6y5kVOWY6H0TWO cvkY5t/W64r1lYDr4so86vkGdvGHDZxuuewo8YEDfcwlpWCLM41D18cBfi3/LdHF ZEtzEaDPjL4BioxkLArv7Ie7zQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBzY3+kN aFoUO10I1XjA+LIKfviaMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzY3NTk2Q0Mx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABuqoUDBADSVtwwDQYJKoZIhvcNAQELBQADggEBAC/B/Lax SPaPbkhJWLG3atJta+BtJsAeMDQyVf82fnUSTfpYsPmQ8MiH3sbbAZxppMLzjnTv g0WpWOGSQnai0lM7Z9w9nyPTbCgQaL47fUdPLoDAi0sQp7oXe+3sNJyAHoeLMtMu lgoKNS2Ow0oiedSE0tgGQAJxEj4HqOal3hxSnC9af7mTRPViWhSGEsJbpySfue5g yxKZ5OxzFk/kN4nioEiphgDZ7M68qbXJcmWAAIH3fW3qlWg2+VrsGiRakj6jBnd2 qk9QJt4BhVgpgeiKaEtCbY8GXgkWy+JH5EB6foDWkOOmCl2Ey38t/tPemPXAqmDE fSCKzo2lr8Raabs= -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org