$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8BA4EE8C839911EA8A5C6383C4F9AE02.roa File: 8BA4EE8C839911EA8A5C6383C4F9AE02.roa (raw, json) Hash identifier: W11kOsv4foJLV2tLb4WaWH+DKuG5gZ/LyHCyZdqMlVo= Subject key identifier: D5:F1:46:C2:3F:AF:A8:9D:DC:83:F3:1C:9A:36:0D:BA:18:1A:DC:DB Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3772 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8BA4EE8C839911EA8A5C6383C4F9AE02.roa Signing time: Fri 11 Aug 2023 06:54:15 +0000 ROA not before: Fri 11 Aug 2023 06:54:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132201 IP address blocks: 110.170.123.0/24 maxlen: 24 203.144.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14194 (0x3772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Aug 11 06:54:15 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d5db17-0988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:60:86:18:1a:1b:bd:3a:80:5e:e1:a4:1c: 3e:e9:4c:c9:22:24:09:83:83:0a:1c:3d:42:42:88: 96:25:42:79:aa:57:44:0b:a5:95:b9:91:99:9c:f0: d8:f0:44:7b:78:5b:b3:3d:0b:be:cd:90:52:38:cc: 2d:8d:40:71:c8:bf:b7:50:51:85:94:00:a8:81:5c: 42:15:d0:51:10:15:d1:c1:0b:d5:ba:77:9b:a0:cc: b2:7d:08:8e:6e:c2:4c:d0:48:7f:bf:0e:e0:25:cb: e7:d3:e5:24:a3:13:15:96:b9:eb:fc:31:65:15:93: 74:4e:08:54:49:2b:b8:a0:0e:ba:b4:01:e8:f9:21: ae:c4:af:84:67:62:a4:65:d9:76:b1:62:e2:51:44: e7:e9:a3:9d:81:35:0d:be:f3:91:6d:79:83:4d:6b: 4e:76:ae:3d:94:b8:50:df:5c:6a:bd:fd:01:ca:76: 1f:24:52:3f:e5:bf:4f:ec:6f:61:64:12:59:1b:0d: cf:44:8d:88:d4:8a:63:37:59:78:f1:4b:0f:1f:d9: 85:85:28:5d:ef:b7:fd:81:a9:7e:40:6b:32:fb:ef: ec:4a:2f:4c:8e:fe:19:f6:28:9b:23:75:06:17:bd: ca:33:9f:85:75:db:79:00:3d:d5:31:61:4b:4a:97: ba:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F1:46:C2:3F:AF:A8:9D:DC:83:F3:1C:9A:36:0D:BA:18:1A:DC:DB X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8BA4EE8C839911EA8A5C6383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.123.0/24 203.144.135.0/24 Signature Algorithm: sha256WithRSAEncryption 27:dd:3e:be:63:ca:ba:36:16:5a:4e:3c:57:b2:b4:4b:3e:a0: be:1d:49:64:70:70:ae:54:c3:5e:92:e1:f6:51:f9:c7:14:26: d3:42:26:a3:03:99:db:3f:78:a1:34:8a:c2:89:7c:53:89:5c: 3a:61:e1:ee:c8:b8:0a:0e:0d:6b:2c:02:10:e4:5f:5e:4b:e8: 40:a5:ee:d5:be:d5:90:9f:54:48:65:b0:8c:e6:c4:98:20:de: 23:80:ff:55:34:b2:6c:44:e9:3a:09:51:1f:68:7c:de:3c:b0: cc:37:b2:cd:b1:4c:a1:66:e4:de:59:0f:9b:bf:65:5f:21:4f: 87:e9:17:50:10:9d:71:f3:2f:c2:6b:bd:1e:df:5c:5b:fe:e6: 43:b0:b7:d3:5b:39:a3:29:49:85:2c:bc:46:7f:55:7c:7b:0c: c3:fd:4f:a2:c0:30:dd:3c:dc:ec:25:7b:07:ec:c1:52:9b:ec: 99:ca:c0:48:93:cb:06:09:03:87:7e:55:a6:40:04:f1:b2:3c: c6:85:3b:e2:af:30:e3:de:7e:07:04:89:0a:d0:31:a7:50:f9: 51:f7:f8:32:cb:b2:e9:92:e6:47:d6:d1:c3:62:8a:df:42:9c: f2:6c:b0:cd:6d:41:8b:ab:4c:9a:38:a1:f1:ab:88:5c:21:16: 82:6f:36:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICN3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwODExMDY1NDE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1ZGIxNy0wOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbdghhgaG706gF7hpBw+6UzJIiQJg4MKHD1CQoiWJUJ5qldEC6WVuZGZnPDY 8ER7eFuzPQu+zZBSOMwtjUBxyL+3UFGFlACogVxCFdBREBXRwQvVuneboMyyfQiO bsJM0Eh/vw7gJcvn0+UkoxMVlrnr/DFlFZN0TghUSSu4oA66tAHo+SGuxK+EZ2Kk Zdl2sWLiUUTn6aOdgTUNvvORbXmDTWtOdq49lLhQ31xqvf0BynYfJFI/5b9P7G9h ZBJZGw3PRI2I1IpjN1l48UsPH9mFhShd77f9gal+QGsy++/sSi9Mjv4Z9iibI3UG F73KM5+Fddt5AD3VMWFLSpe6HQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNXxRsI/ r6id3IPzHJo2DboYGtzbMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvOEJBNEVFOEM4 Mzk5MTFFQThBNUM2MzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABuqnsDBADLkIcwDQYJKoZIhvcNAQELBQADggEBACfdPr5j yro2FlpOPFeytEs+oL4dSWRwcK5Uw16S4fZR+ccUJtNCJqMDmds/eKE0isKJfFOJ XDph4e7IuAoODWssAhDkX15L6ECl7tW+1ZCfVEhlsIzmxJgg3iOA/1U0smxE6ToJ UR9ofN48sMw3ss2xTKFm5N5ZD5u/ZV8hT4fpF1AQnXHzL8JrvR7fXFv+5kOwt9Nb OaMpSYUsvEZ/VXx7DMP9T6LAMN083OwlewfswVKb7JnKwEiTywYJA4d+VaZABPGy PMaFO+KvMOPefgcEiQrQMadQ+VH3+DLLsumS5kfW0cNiit9CnPJssM1tQYurTJo4 ofGriFwhFoJvNtk= -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org