$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa File: 35D6766E1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: GH8ZORhEEYBU8/uww7LrM4MW531P6G7DRT1vptGT2To= Subject key identifier: A5:18:33:EB:9C:DE:8F:B5:C3:35:7D:E3:6A:55:87:06:7D:C2:9D:BC Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3881 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:28 +0000 ROA not before: Tue 16 Jul 2024 14:30:28 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133791 IP address blocks: 110.170.142.0/24 maxlen: 24 203.144.154.0/24 maxlen: 24 2001:fb0:10b6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14465 (0x3881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:28 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968404-f259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d4:40:6c:c2:0e:83:ec:a1:f4:17:ab:74:78: 99:00:6e:21:dc:e9:fe:5d:3a:a5:fc:c5:93:fa:ac: cb:d0:0b:03:9a:2f:b6:a1:c5:46:04:38:d6:4b:a2: a1:73:8c:7c:d9:47:03:ff:d5:5a:c0:ae:a9:a7:d6: 49:d0:7d:49:02:53:2c:f1:f6:c4:9e:49:fe:4c:fa: 1d:62:68:6a:1a:57:de:59:88:76:f5:49:a3:00:db: e9:cf:b2:9d:7a:28:93:f1:95:3c:b6:10:f8:5a:4e: ab:d7:99:dc:99:06:f4:b0:7c:32:3b:80:d5:1b:bb: 85:d4:fb:4e:64:d5:61:93:58:84:38:57:8f:dd:c3: ef:dd:d6:46:6d:03:a0:75:d3:d6:17:cb:00:50:fd: dd:4e:0d:c7:7e:d9:e7:7f:76:0e:e5:bb:74:f1:b0: 06:a7:6a:d6:72:87:38:e5:df:88:c3:fd:11:72:8b: 33:76:b8:6c:36:f1:7f:88:05:7d:fa:43:1d:63:76: 46:54:b6:89:c3:9c:ed:3f:0e:6c:83:55:ba:40:dc: 25:c6:4c:63:9c:6f:23:bd:56:10:b8:3c:4f:58:5f: 18:27:4e:af:e0:d5:79:51:94:e7:86:ad:37:d7:93: 57:ca:88:63:14:b6:80:cb:b9:4e:32:a6:0d:13:e6: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:18:33:EB:9C:DE:8F:B5:C3:35:7D:E3:6A:55:87:06:7D:C2:9D:BC X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35D6766E1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.142.0/24 203.144.154.0/24 IPv6: 2001:fb0:10b6::/48 Signature Algorithm: sha256WithRSAEncryption 90:03:7f:f2:21:05:08:f3:ad:9a:79:1e:26:38:26:78:7d:d7: 27:73:64:b0:e8:a0:23:ad:dd:4f:79:d1:bb:2d:05:b4:0a:31: a5:b2:b6:24:2a:50:59:33:fa:09:69:12:0b:e5:ce:2a:63:cf: fa:37:61:79:52:b9:5c:bd:90:87:68:96:db:fe:63:53:c1:3a: f5:48:e5:d4:d4:73:f2:35:0a:f0:b0:a0:5d:5a:a0:d2:56:a9: bf:c1:8d:0e:2d:67:d6:c2:fd:65:a3:d8:ae:c3:83:ef:1f:1f: eb:a5:4d:5e:eb:5b:17:e2:89:11:2b:6a:c1:5a:46:82:4d:3e: 97:ce:b7:88:54:4d:44:59:c4:55:d7:c8:7a:f1:51:f0:a6:49: 88:a6:b7:76:6e:50:c9:7a:01:75:06:d4:62:35:22:7d:5c:d0: f0:56:85:a4:8e:10:c6:40:93:d7:a5:a6:20:23:88:08:28:0a: 7a:df:64:04:15:c0:14:fc:6a:8e:45:3a:b0:92:7d:37:92:19: af:21:e4:26:6f:b0:e0:f2:89:5e:91:8c:a4:b0:2b:91:6c:96: 9e:25:5f:d3:69:1a:5f:b4:01:cc:f6:78:db:50:71:27:f0:30: 6b:c1:97:15:02:65:91:62:e4:dc:61:17:3a:a2:c7:ba:55:c9: a2:f1:43:92 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICOIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDI4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQwNC1mMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltRAbMIOg+yh9BerdHiZAG4h3On+XTql/MWT+qzL0AsDmi+2ocVGBDjWS6Kh c4x82UcD/9VawK6pp9ZJ0H1JAlMs8fbEnkn+TPodYmhqGlfeWYh29UmjANvpz7Kd eiiT8ZU8thD4Wk6r15ncmQb0sHwyO4DVG7uF1PtOZNVhk1iEOFeP3cPv3dZGbQOg ddPWF8sAUP3dTg3Hftnnf3YO5bt08bAGp2rWcoc45d+Iw/0RcoszdrhsNvF/iAV9 +kMdY3ZGVLaJw5ztPw5sg1W6QNwlxkxjnG8jvVYQuDxPWF8YJ06v4NV5UZTnhq03 15NXyohjFLaAy7lOMqYNE+Z4oQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKUYM+uc 3o+1wzV942pVhwZ9wp28MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzVENjc2NkUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABuqo4DBADLkJowDwQCAAIwCQMHACABD7AQtjANBgkqhkiG 9w0BAQsFAAOCAQEAkAN/8iEFCPOtmnkeJjgmeH3XJ3NksOigI63dT3nRuy0FtAox pbK2JCpQWTP6CWkSC+XOKmPP+jdheVK5XL2Qh2iW2/5jU8E69Ujl1NRz8jUK8LCg XVqg0lapv8GNDi1n1sL9ZaPYrsOD7x8f66VNXutbF+KJEStqwVpGgk0+l863iFRN RFnEVdfIevFR8KZJiKa3dm5QyXoBdQbUYjUifVzQ8FaFpI4QxkCT16WmICOICCgK et9kBBXAFPxqjkU6sJJ9N5IZryHkJm+w4PKJXpGMpLArkWyWniVf02kaX7QBzPZ4 21BxJ/Awa8GXFQJlkWLk3GEXOqLHulXJovFDkg== -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org