$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa File: 35D6766E1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: L5olfKp7SmHl3d7nY9kBcQfKRlyjgp0TFZ31CDDn3Ok= Subject key identifier: 1A:DE:38:C3:2F:4C:16:5D:E0:43:9F:76:F1:FD:D6:A6:9F:70:5F:7E Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3688 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:27 +0000 ROA not before: Sat 08 Jul 2023 14:30:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133791 IP address blocks: 110.170.142.0/24 maxlen: 24 203.144.154.0/24 maxlen: 24 2001:fb0:10b6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13960 (0x3688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97302-8e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:3d:25:67:7d:ef:99:b2:21:fc:37:60:ab: 4b:a7:94:96:6e:c3:45:fd:ae:4b:15:a5:af:a3:14: 89:b9:8b:c7:21:17:4c:76:e5:4f:b9:9c:b0:1b:0e: b9:e4:28:ca:a0:a6:df:a8:e4:7f:5f:cf:92:b0:3e: 30:cf:1d:15:32:8c:60:b6:60:06:66:2a:dc:98:23: 26:96:8b:3d:01:5d:cf:98:99:ef:28:81:c4:8e:02: 1f:59:7c:76:89:e2:db:b2:bf:86:c3:06:40:44:2b: 67:40:0f:73:13:33:61:c6:ab:62:69:7c:58:e4:d2: 6f:6a:9b:20:e5:d2:7e:c6:37:76:d6:5e:41:c4:66: ed:f6:66:0a:9c:39:6f:47:ad:3b:81:30:23:36:7e: cb:5b:4d:07:13:b3:07:38:a5:51:11:19:58:34:91: b8:19:84:e5:3a:d3:ca:bd:5f:02:68:a8:5e:c8:c8: 98:73:b6:e8:6e:37:c5:15:39:c3:1d:d2:dd:ef:62: eb:69:27:f2:bd:c6:cf:cf:a5:a8:91:ed:b3:cb:a8: 50:3c:ab:48:03:38:e3:c5:fb:d3:ad:51:08:14:75: 8a:9d:93:32:93:33:8b:c4:cb:b5:e0:54:c0:9d:eb: 29:4b:07:b0:d0:dd:8a:ca:c4:92:cc:d8:f0:e6:0c: 9b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DE:38:C3:2F:4C:16:5D:E0:43:9F:76:F1:FD:D6:A6:9F:70:5F:7E X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.142.0/24 203.144.154.0/24 IPv6: 2001:fb0:10b6::/48 Signature Algorithm: sha256WithRSAEncryption 8c:4c:66:c6:10:72:1b:f4:5c:13:2d:3e:af:84:60:a9:7e:e1: 3b:fd:91:66:ea:23:92:49:4b:62:7d:1d:22:a1:be:3a:1a:cb: 29:fc:00:87:4f:d9:6e:95:9f:36:8e:a6:4a:7d:64:a6:89:d1: 96:c1:5b:b1:f3:36:84:70:dd:70:e8:dd:27:2e:fa:76:6e:33: e8:59:d8:4a:ee:20:10:ea:49:b3:48:c8:ff:51:7f:2f:33:01: 49:18:5b:65:f8:f2:1c:07:aa:af:61:3d:2f:62:31:68:67:f5: c5:4d:26:b3:54:64:b0:97:20:85:0b:8d:24:92:8d:79:b4:62: 35:a3:a4:b1:cf:11:e3:75:93:a3:1d:64:2c:15:32:e7:3a:04: 09:db:90:e8:8a:0a:6f:73:e0:e2:99:0c:ca:2f:45:22:e2:1f: 0c:ba:c2:d5:eb:40:c9:71:f5:2c:19:5e:39:ae:ab:58:c0:f6: 44:f3:e4:e7:84:54:3b:a4:67:0d:7d:6d:c5:49:86:60:42:c5: fd:16:df:92:39:79:d7:9b:9a:d9:73:d2:1c:c2:28:0f:82:04: 3e:46:bb:cc:06:ac:73:72:a8:ab:ae:20:70:6d:72:d2:ec:c9: 53:4e:93:b2:e7:35:1d:d8:71:93:50:34:f5:d8:9d:8f:a0:56: 5d:9f:db:9f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMwMi04ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygE9JWd975myIfw3YKtLp5SWbsNF/a5LFaWvoxSJuYvHIRdMduVPuZywGw65 5CjKoKbfqOR/X8+SsD4wzx0VMoxgtmAGZircmCMmlos9AV3PmJnvKIHEjgIfWXx2 ieLbsr+GwwZARCtnQA9zEzNhxqtiaXxY5NJvapsg5dJ+xjd21l5BxGbt9mYKnDlv R607gTAjNn7LW00HE7MHOKVRERlYNJG4GYTlOtPKvV8CaKheyMiYc7bobjfFFTnD HdLd72LraSfyvcbPz6Woke2zy6hQPKtIAzjjxfvTrVEIFHWKnZMykzOLxMu14FTA nespSwew0N2KysSSzNjw5gybcwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBreOMMv TBZd4EOfdvH91qafcF9+MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzVENjc2NkUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABuqo4DBADLkJowDwQCAAIwCQMHACABD7AQtjANBgkqhkiG 9w0BAQsFAAOCAQEAjExmxhByG/RcEy0+r4RgqX7hO/2RZuojkklLYn0dIqG+OhrL KfwAh0/ZbpWfNo6mSn1kponRlsFbsfM2hHDdcOjdJy76dm4z6FnYSu4gEOpJs0jI /1F/LzMBSRhbZfjyHAeqr2E9L2IxaGf1xU0ms1RksJcghQuNJJKNebRiNaOksc8R 43WTox1kLBUy5zoECduQ6IoKb3Pg4pkMyi9FIuIfDLrC1etAyXH1LBleOa6rWMD2 RPPk54RUO6RnDX1txUmGYELF/Rbfkjl515ua2XPSHMIoD4IEPka7zAasc3Koq64g cG1y0uzJU06Tsuc1Hdhxk1A09didj6BWXZ/bnw== -----END CERTIFICATE-----Generated at Fri May 24 18:22:52 2024 by rpki-client on console-ams.rpki-client.org