$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A1FFA2C41E0211E9862ECE3FC4F9AE02.roa File: A1FFA2C41E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: 5QlT4hs/ds3IZwxwJYBM9vTRNH2zHUK5gqjzxjWZLYU= Subject key identifier: 57:E0:B1:9B:32:99:0F:22:81:84:7A:FA:53:E3:28:4B:F7:C7:F7:81 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3686 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A1FFA2C41E0211E9862ECE3FC4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:25 +0000 ROA not before: Sat 08 Jul 2023 14:30:25 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133761 IP address blocks: 110.170.148.0/24 maxlen: 24 2001:fb0:1071::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 14:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13958 (0x3686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:25 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97301-a671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ad:d0:b9:f0:bc:33:80:04:2b:a7:44:81:c5: df:d9:bb:72:d4:04:02:95:ce:15:71:74:7f:1f:41: 78:20:46:c1:41:cc:5f:cf:b3:f6:20:b9:06:eb:2d: a7:a2:38:e4:f0:e8:5c:35:a4:13:e0:a3:3a:ba:85: b8:26:5b:7b:bd:13:14:3c:e6:bd:45:35:bf:3e:75: 09:4c:a3:ba:43:6b:38:3b:1e:64:cd:cc:b7:6b:04: 4c:c4:aa:25:af:44:22:5d:ed:57:eb:2c:6c:57:4e: 80:5e:99:bb:6e:da:ff:08:c5:9c:c1:84:f6:6c:52: d8:f8:f8:79:ed:dd:45:5d:f1:7d:27:85:ff:59:d6: 29:20:05:ff:af:30:cd:ef:1a:a3:05:14:3c:3e:10: d8:44:f7:dc:f7:bf:5f:81:78:0c:b0:80:af:8b:12: 92:28:09:b7:31:46:f2:1f:19:67:45:f9:53:2b:35: de:aa:83:33:1d:e5:9e:23:4d:0f:a5:b8:55:9d:2e: 2f:83:4d:39:eb:8f:d4:90:56:4a:80:30:a8:0b:08: fb:70:4f:d1:80:e6:5f:3a:9a:c4:0f:e0:53:b4:a3: 10:9d:a9:d8:95:6e:e9:e0:41:63:43:06:60:63:85: 2d:c3:3c:d9:15:a5:05:2d:fb:37:ca:78:4f:60:a5: d2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E0:B1:9B:32:99:0F:22:81:84:7A:FA:53:E3:28:4B:F7:C7:F7:81 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A1FFA2C41E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.148.0/24 IPv6: 2001:fb0:1071::/48 Signature Algorithm: sha256WithRSAEncryption 7a:71:32:1d:cb:da:17:71:aa:99:b2:73:c0:d3:6f:76:78:80: ae:87:d2:12:83:5d:74:1f:ac:35:c4:e2:d4:fd:17:9a:57:45: 27:f6:ea:c3:96:7d:73:f5:4e:52:26:53:79:d6:6f:33:4f:45: 7e:e3:87:10:71:89:ee:03:9a:0d:53:0b:86:c1:b1:e0:75:09: 1c:7d:3a:58:7c:ad:c5:91:bc:cb:75:51:07:aa:8a:69:eb:fa: b0:d6:3f:5d:bf:52:98:d1:a3:1b:aa:ac:6f:08:00:be:00:5a: 29:03:a1:3c:fc:ac:27:1f:e7:08:e2:75:c6:c4:56:4d:9b:98: c9:ff:10:31:07:09:b0:a1:1f:69:f9:a2:59:96:bb:c4:49:a6: 5b:c9:64:cd:cb:0d:28:44:a1:b0:a3:df:38:81:c7:70:13:21: d9:5b:db:37:eb:29:2b:fb:b8:10:be:7c:a5:a5:08:18:b4:fa: 1c:24:48:78:5c:09:25:a7:ba:26:e3:c7:ea:99:c1:98:9e:6f: 22:b9:a5:3b:62:ef:21:5e:17:67:a1:9a:5f:4a:bd:34:05:33: 6c:a1:26:25:8e:e6:5c:47:20:19:cb:a4:f9:ff:17:4f:b3:c4: 24:f9:6f:ee:e7:40:fa:fc:c5:0c:84:07:9c:b4:6b:68:91:2f: 0c:09:a5:3f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDI1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMwMS1hNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzq3QufC8M4AEK6dEgcXf2bty1AQClc4VcXR/H0F4IEbBQcxfz7P2ILkG6y2n ojjk8OhcNaQT4KM6uoW4Jlt7vRMUPOa9RTW/PnUJTKO6Q2s4Ox5kzcy3awRMxKol r0QiXe1X6yxsV06AXpm7btr/CMWcwYT2bFLY+Ph57d1FXfF9J4X/WdYpIAX/rzDN 7xqjBRQ8PhDYRPfc979fgXgMsICvixKSKAm3MUbyHxlnRflTKzXeqoMzHeWeI00P pbhVnS4vg00564/UkFZKgDCoCwj7cE/RgOZfOprED+BTtKMQnanYlW7p4EFjQwZg Y4UtwzzZFaUFLfs3ynhPYKXSmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFfgsZsy mQ8igYR6+lPjKEv3x/eBMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvQTFGRkEyQzQx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABuqpQwDwQCAAIwCQMHACABD7AQcTANBgkqhkiG9w0BAQsF AAOCAQEAenEyHcvaF3GqmbJzwNNvdniArofSEoNddB+sNcTi1P0XmldFJ/bqw5Z9 c/VOUiZTedZvM09FfuOHEHGJ7gOaDVMLhsGx4HUJHH06WHytxZG8y3VRB6qKaev6 sNY/Xb9SmNGjG6qsbwgAvgBaKQOhPPysJx/nCOJ1xsRWTZuYyf8QMQcJsKEfafmi WZa7xEmmW8lkzcsNKEShsKPfOIHHcBMh2VvbN+spK/u4EL58paUIGLT6HCRIeFwJ Jae6JuPH6pnBmJ5vIrmlO2LvIV4XZ6GaX0q9NAUzbKEmJY7mXEcgGcuk+f8XT7PE JPlv7udA+vzFDIQHnLRraJEvDAmlPw== -----END CERTIFICATE-----Generated at Wed Jun 12 15:44:53 2024 by rpki-client on console-ams.rpki-client.org