$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa File: 3898AE761E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: PF6gn9f8jM3DVMtWWnXVokOEyyI3PJsbMwxHmgb92m0= Subject key identifier: 35:93:50:71:85:03:63:DC:C6:32:D3:60:22:B1:CA:1C:8E:6C:37:F4 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3889 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:36 +0000 ROA not before: Tue 16 Jul 2024 14:30:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136182 IP address blocks: 210.86.205.0/24 maxlen: 24 210.86.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14473 (0x3889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:36 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696840c-e121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:6d:fd:63:ac:f3:40:dd:66:8d:87:05:d9: 0a:0c:2b:ac:4a:4e:22:e1:71:2f:d7:12:9e:32:07: 8c:be:2e:d1:f6:b5:29:d3:4a:67:a0:b3:11:2f:86: 89:d2:4b:f2:12:c7:58:51:e1:36:29:ac:a7:ce:34: 26:a1:45:1f:f2:8e:bb:17:ab:0a:b3:2e:5a:80:08: 0e:63:13:40:89:e0:d6:c2:fb:48:6d:01:43:df:6c: 8d:88:aa:02:32:45:7c:78:06:2e:7a:f8:2d:a4:11: 06:d2:02:4b:2a:56:53:be:77:b6:48:ce:d9:8c:77: 27:91:3f:a9:f4:8a:9e:af:ff:18:85:87:ea:1c:cc: 6d:02:c4:cb:77:3b:91:29:1b:9f:ee:42:23:db:e6: c4:28:9a:b4:18:1b:a6:e9:83:01:8f:20:25:e5:3f: c8:a4:30:dd:4d:eb:d0:06:56:7e:ec:a5:a6:32:21: d1:23:d4:77:15:29:79:82:ce:22:df:ee:39:52:0e: 6e:e5:2a:db:6c:c2:38:5e:29:99:8f:e3:34:8e:3f: e1:fe:65:9e:17:5f:6d:aa:8c:e4:54:8d:45:20:6a: 59:28:23:e9:d4:ee:bd:91:72:a1:35:f7:54:50:34: 18:a6:92:4d:80:d4:3c:d7:ef:91:ac:da:81:2b:33: d8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:93:50:71:85:03:63:DC:C6:32:D3:60:22:B1:CA:1C:8E:6C:37:F4 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3898AE761E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.205.0/24 210.86.222.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:7e:ac:d6:d5:e6:66:54:0d:c9:a2:07:6e:7f:59:e5:32:fd: be:9f:ea:2e:a8:63:75:19:5d:9c:71:b8:0f:8e:a4:af:29:41: 5d:4e:a0:c5:f1:6b:5f:12:46:58:45:a4:e9:ac:72:bc:88:e5: 94:4b:0f:f9:f1:09:2f:da:fc:b8:53:a8:cf:d7:3a:2b:ef:84: 34:9e:3d:26:e3:c0:c5:3a:f6:07:30:0f:93:79:b2:67:95:85: fb:92:31:cb:77:d3:0d:f9:28:e7:41:44:c2:94:9f:3e:99:49: c2:7b:47:50:ed:ba:ca:38:94:84:68:8a:42:35:cd:56:1f:f4: ab:29:aa:a2:d0:0a:de:c4:d9:31:76:15:f9:06:ed:4e:5e:0f: 6c:a1:b0:68:5e:bd:63:80:6a:2f:1a:a0:3d:c0:44:f5:4a:f7: df:1d:80:b4:35:bd:61:5f:23:20:d8:e9:4a:7e:38:31:82:5b: 36:5f:69:1a:63:45:c5:8d:9b:ca:05:5d:28:4a:56:c2:69:e0: 38:08:e0:dd:63:1e:2c:9a:2e:98:00:24:6c:0f:8e:5c:73:0f: b1:93:7b:27:24:be:fe:88:0b:6d:ba:29:c8:fe:6e:c6:d2:26: 58:1b:7c:b0:8c:c0:49:80:49:c7:c1:d8:95:46:93:5d:fb:01: b8:5f:29:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDM2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQwYy1lMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiZt/WOs80DdZo2HBdkKDCusSk4i4XEv1xKeMgeMvi7R9rUp00pnoLMRL4aJ 0kvyEsdYUeE2KaynzjQmoUUf8o67F6sKsy5agAgOYxNAieDWwvtIbQFD32yNiKoC MkV8eAYuevgtpBEG0gJLKlZTvne2SM7ZjHcnkT+p9Iqer/8YhYfqHMxtAsTLdzuR KRuf7kIj2+bEKJq0GBum6YMBjyAl5T/IpDDdTevQBlZ+7KWmMiHRI9R3FSl5gs4i 3+45Ug5u5SrbbMI4XimZj+M0jj/h/mWeF19tqozkVI1FIGpZKCPp1O69kXKhNfdU UDQYppJNgNQ81++RrNqBKzPYSwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDWTUHGF A2PcxjLTYCKxyhyObDf0MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzg5OEFFNzYx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSVs0DBADSVt4wDQYJKoZIhvcNAQELBQADggEBAA5+rNbV 5mZUDcmiB25/WeUy/b6f6i6oY3UZXZxxuA+OpK8pQV1OoMXxa18SRlhFpOmscryI 5ZRLD/nxCS/a/LhTqM/XOivvhDSePSbjwMU69gcwD5N5smeVhfuSMct30w35KOdB RMKUnz6ZScJ7R1Dtuso4lIRoikI1zVYf9KspqqLQCt7E2TF2FfkG7U5eD2yhsGhe vWOAai8aoD3ARPVK998dgLQ1vWFfIyDY6Up+ODGCWzZfaRpjRcWNm8oFXShKVsJp 4DgI4N1jHiyaLpgAJGwPjlxzD7GTeyckvv6IC226Kcj+bsbSJlgbfLCMwEmAScfB 2JVGk137AbhfKWc= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:14 2024 by rpki-client on console-ams.rpki-client.org