$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa File: 5724BB281E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: ufTTyHsoEhSChfQSNWwc+tEBhalbXcqSnBrhjIzc/C4= Subject key identifier: 73:64:6C:CB:0E:C5:8A:49:7B:20:BA:B4:C4:BA:BD:51:40:4E:82:60 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36D4 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:32 +0000 ROA not before: Sat 08 Jul 2023 14:31:32 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55938 IP address blocks: 61.90.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14036 (0x36d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:32 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97344-8b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d0:e6:7c:de:db:76:aa:67:b7:fd:1f:a9:7d: 2c:de:06:e0:b8:a0:87:ff:48:49:60:00:52:00:5d: 8e:a2:e9:5b:2e:9c:8d:e2:f9:d7:32:35:97:3e:73: 2f:96:ae:31:68:f1:53:ea:56:ea:b5:11:dc:b1:2e: e8:78:d2:2f:1c:31:cd:3d:41:86:13:cb:78:4c:4e: 50:e0:b1:83:1e:c3:5c:39:00:56:bf:08:c0:fe:e9: 5b:09:09:71:28:94:fa:8e:3b:b8:80:d7:c4:71:ab: b8:6a:74:22:3c:7f:60:19:df:5d:69:6d:84:13:75: ef:71:d6:ae:15:6d:96:d1:63:c4:c5:6c:9d:4a:66: 77:63:da:5f:12:66:71:38:5a:42:69:98:a2:a7:8f: 0f:0e:05:14:ff:c4:d2:df:87:09:a9:7f:95:d1:5f: d0:34:32:b9:94:66:7b:07:90:ba:7d:e2:db:61:a2: 89:77:2d:3b:71:7d:1e:f1:12:b5:09:42:1a:06:3c: 3f:d7:6a:b0:d3:90:58:db:da:0a:4d:8f:d5:7a:77: 16:44:c2:8d:80:6f:92:a6:f3:5b:99:ea:de:84:6f: 35:e5:be:54:81:a0:77:87:fd:30:9a:63:3a:c3:dc: ea:fe:4c:7b:80:db:19:96:da:73:bf:50:2c:07:d7: 70:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:64:6C:CB:0E:C5:8A:49:7B:20:BA:B4:C4:BA:BD:51:40:4E:82:60 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.209.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:01:55:fd:bb:6f:e2:2a:cd:b1:64:6d:39:a5:42:0f:30:a1: fc:33:2c:61:12:3a:69:24:f2:b8:4f:90:aa:23:c1:73:7f:a5: dc:67:2e:66:3e:c3:01:04:5a:77:34:07:70:14:6f:70:74:2d: de:ae:c4:50:d0:37:ef:d6:33:fe:c6:98:a3:ae:4a:31:45:dd: 6c:37:68:10:28:39:84:dc:f5:fa:6c:5a:02:50:73:6e:97:db: ce:c5:0e:3e:31:de:ea:eb:02:02:7d:8a:d7:d7:c0:27:83:b3: f9:05:63:88:e5:b7:f1:3d:c8:0b:8f:a1:66:72:88:83:99:2a: 75:dd:20:03:8b:08:06:52:a1:a3:ab:ff:34:b5:39:bd:0b:03: 42:35:82:71:80:b3:c8:b8:9b:7c:88:54:7c:f9:e3:4b:22:80: bd:b4:9f:00:10:41:bc:41:d0:5d:62:04:f8:7f:ff:28:eb:f4: 05:93:62:2b:5e:6d:0a:8c:6a:19:ea:2c:db:f1:94:d7:6b:a1: 67:f8:ec:19:ef:d0:b5:1c:3e:83:55:65:39:08:2a:ea:01:14: cc:de:7f:7f:4a:c0:cc:98:59:a5:73:d9:54:07:59:92:96:a9: 56:71:df:91:e4:d2:83:f1:64:58:05:d7:1c:52:a1:ba:32:7a: 70:d7:7c:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTMyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzM0NC04YjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tDmfN7bdqpnt/0fqX0s3gbguKCH/0hJYABSAF2OoulbLpyN4vnXMjWXPnMv lq4xaPFT6lbqtRHcsS7oeNIvHDHNPUGGE8t4TE5Q4LGDHsNcOQBWvwjA/ulbCQlx KJT6jju4gNfEcau4anQiPH9gGd9daW2EE3XvcdauFW2W0WPExWydSmZ3Y9pfEmZx OFpCaZiip48PDgUU/8TS34cJqX+V0V/QNDK5lGZ7B5C6feLbYaKJdy07cX0e8RK1 CUIaBjw/12qw05BY29oKTY/VencWRMKNgG+SpvNbmerehG815b5UgaB3h/0wmmM6 w9zq/kx7gNsZltpzv1AsB9dw3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNkbMsO xYpJeyC6tMS6vVFAToJgMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTcyNEJCMjgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WtEwDQYJKoZIhvcNAQELBQADggEBAC8BVf27b+IqzbFk bTmlQg8wofwzLGESOmkk8rhPkKojwXN/pdxnLmY+wwEEWnc0B3AUb3B0Ld6uxFDQ N+/WM/7GmKOuSjFF3Ww3aBAoOYTc9fpsWgJQc26X287FDj4x3urrAgJ9itfXwCeD s/kFY4jlt/E9yAuPoWZyiIOZKnXdIAOLCAZSoaOr/zS1Ob0LA0I1gnGAs8i4m3yI VHz540sigL20nwAQQbxB0F1iBPh//yjr9AWTYitebQqMahnqLNvxlNdroWf47Bnv 0LUcPoNVZTkIKuoBFMzef39KwMyYWaVz2VQHWZKWqVZx35Hk0oPxZFgF1xxSoboy enDXfJc= -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org