$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa File: 3898AE761E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: CCiB4fs568tkjwYt6r7h4FlwQhja8uBwnT+jXGev5lc= Subject key identifier: BA:AE:06:92:89:C8:BD:51:12:27:7E:A9:92:D1:3F:DF:09:AF:10:0B Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3690 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:33 +0000 ROA not before: Sat 08 Jul 2023 14:30:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136182 IP address blocks: 210.86.205.0/24 maxlen: 24 210.86.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13968 (0x3690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97309-25d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9c:df:4e:e2:3e:c1:3d:6f:a2:a4:a5:f2:8d: a9:6e:f4:c7:b2:9d:16:aa:6d:d9:8c:34:2b:57:50: ca:ab:d7:c3:8b:bd:ee:dd:d7:97:df:88:8c:98:43: b3:22:83:58:bc:c5:2a:d5:1b:fd:8b:aa:ff:3b:26: ed:24:93:7a:8b:47:1a:0b:03:9f:e1:f5:bc:46:93: a8:4f:63:12:4f:82:90:38:30:9d:2f:c4:fa:ef:df: 9c:aa:5b:b6:c5:eb:9a:70:af:57:bf:ff:40:6d:06: 73:1f:b4:42:14:66:37:d0:84:cd:0e:6a:b3:f5:1f: 66:0a:34:4a:9c:e1:93:01:c9:c4:66:d5:e9:0b:b8: 47:8d:be:a4:69:25:44:71:58:28:82:eb:d9:fd:b8: 43:3e:58:1c:1b:ce:d1:09:0d:eb:6e:39:bb:e2:4f: 32:1b:ee:31:6e:e9:47:c3:65:72:c0:53:14:8d:fa: e6:63:ad:9f:1e:87:00:d7:7a:2a:03:e5:86:c6:4b: 0a:fe:0b:15:29:ac:12:d9:c0:f9:b5:b0:f4:3d:96: 6e:f0:2c:5b:c8:6f:a8:21:ed:c6:d1:c4:16:3c:98: 29:4c:91:97:24:cf:cb:e9:29:1e:dc:63:1b:91:51: af:92:f1:ff:63:64:37:84:94:2b:4a:19:18:ba:e4: 9f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AE:06:92:89:C8:BD:51:12:27:7E:A9:92:D1:3F:DF:09:AF:10:0B X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.205.0/24 210.86.222.0/24 Signature Algorithm: sha256WithRSAEncryption 59:ce:87:36:d7:79:c2:ec:5c:8e:18:55:91:0c:4e:d7:29:87: 2c:56:5c:15:be:c3:24:96:ac:ff:7b:bd:1a:19:2f:4e:84:5b: e7:97:72:a7:9c:99:13:5e:a9:dc:97:fc:ca:75:ed:9f:a9:1d: 56:c6:56:8c:77:ed:ec:cc:1d:7d:aa:bf:f1:1f:94:b1:fa:68: 92:58:b6:5c:a5:c4:4e:90:86:5f:53:4a:e3:35:00:cd:a6:96: cb:d3:e6:32:16:15:92:48:95:a8:1f:d5:29:bc:b5:00:33:5c: 50:00:46:4a:a3:18:3c:f0:d2:5e:b1:d9:14:91:ae:8a:b3:0a: b8:68:72:6c:9e:e9:6b:bf:1d:12:e0:cf:21:8a:de:0c:bc:10: ff:1a:b2:36:2e:f1:89:87:37:ed:4c:b0:1b:e9:a0:be:59:54: 20:dd:38:09:4a:24:95:74:94:f9:37:87:00:4d:03:4d:1e:19: 61:4e:a0:5c:a6:b2:5f:12:ed:ee:64:c9:76:a5:fc:47:25:43: dc:c0:d6:8e:f4:3d:86:fd:42:18:3f:2e:0a:b4:93:e4:8f:7c: 70:5d:69:04:68:fe:ca:8d:0e:ad:40:67:0b:ff:2a:f6:47:5c: d9:86:e3:87:61:18:5b:ae:40:fe:87:91:0f:79:65:8c:f1:e7: 65:fe:a0:d1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDMzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMwOS0yNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJzfTuI+wT1voqSl8o2pbvTHsp0Wqm3ZjDQrV1DKq9fDi73u3deX34iMmEOz IoNYvMUq1Rv9i6r/OybtJJN6i0caCwOf4fW8RpOoT2MST4KQODCdL8T679+cqlu2 xeuacK9Xv/9AbQZzH7RCFGY30ITNDmqz9R9mCjRKnOGTAcnEZtXpC7hHjb6kaSVE cVgoguvZ/bhDPlgcG87RCQ3rbjm74k8yG+4xbulHw2VywFMUjfrmY62fHocA13oq A+WGxksK/gsVKawS2cD5tbD0PZZu8CxbyG+oIe3G0cQWPJgpTJGXJM/L6Ske3GMb kVGvkvH/Y2Q3hJQrShkYuuSfGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLquBpKJ yL1REid+qZLRP98JrxALMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzg5OEFFNzYx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSVs0DBADSVt4wDQYJKoZIhvcNAQELBQADggEBAFnOhzbX ecLsXI4YVZEMTtcphyxWXBW+wySWrP97vRoZL06EW+eXcqecmRNeqdyX/Mp17Z+p HVbGVox37ezMHX2qv/EflLH6aJJYtlylxE6Qhl9TSuM1AM2mlsvT5jIWFZJIlagf 1Sm8tQAzXFAARkqjGDzw0l6x2RSRroqzCrhocmye6Wu/HRLgzyGK3gy8EP8asjYu 8YmHN+1MsBvpoL5ZVCDdOAlKJJV0lPk3hwBNA00eGWFOoFymsl8S7e5kyXal/Ecl Q9zA1o70PYb9Qhg/Lgq0k+SPfHBdaQRo/sqNDq1AZwv/KvZHXNmG44dhGFuuQP6H kQ95ZYzx52X+oNE= -----END CERTIFICATE-----Generated at Fri May 24 18:22:52 2024 by rpki-client on console-ams.rpki-client.org