$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3A86E6C61E0111E9A590C837C4F9AE02.roa File: 3A86E6C61E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: WaooHR6QazyUH8g7Rc2hClcRMIkoPwQqsrvrfZyJgvY= Subject key identifier: F1:D9:1A:CC:85:F6:D8:5D:E6:F1:EF:24:F7:7D:4E:4C:57:A1:77:C5 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 388C Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3A86E6C61E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:39 +0000 ROA not before: Tue 16 Jul 2024 14:30:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136581 IP address blocks: 61.90.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14476 (0x388c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696840f-59b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:40:40:7c:56:de:71:de:7b:95:f3:0e:f0: 9f:cf:f9:b1:0a:e7:f0:68:e7:3a:a4:91:aa:29:e3: 0a:6b:de:77:da:75:8e:d3:6d:1a:bc:8d:2c:cf:a9: 5e:bb:65:c6:d6:41:27:c3:b4:d0:b5:c4:6e:50:7b: aa:45:8c:20:43:64:94:b3:05:f3:f1:14:88:6e:58: 1e:7e:45:66:bb:5e:ab:38:cc:86:7e:85:04:9e:09: d8:dc:2d:22:49:53:8a:5d:55:71:e8:41:af:ad:4e: 3a:c6:d3:6e:e1:c7:75:20:d9:5f:27:7a:ff:84:35: 2d:c0:16:6e:a1:46:91:84:06:9c:0f:93:4c:2a:78: b2:b8:be:ad:4f:90:fe:c9:0e:93:48:73:79:0c:2b: 5c:4e:12:d9:34:81:ae:db:bc:9a:86:5f:2b:ff:5a: 1c:5e:74:62:9e:7f:be:8e:ac:45:2c:84:11:cf:dd: 20:7e:7f:23:58:3f:52:e8:bb:60:66:5a:68:06:00: d4:73:bf:f2:1a:59:b5:44:d0:d3:2a:f2:6b:74:5a: 86:92:30:da:82:ba:33:06:c5:27:61:fb:4b:d1:2d: 50:7a:4a:a7:d8:fd:60:30:7f:cb:70:a3:f7:3e:21: aa:8d:80:8f:ac:4c:35:30:52:0a:64:cd:29:e0:aa: 16:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D9:1A:CC:85:F6:D8:5D:E6:F1:EF:24:F7:7D:4E:4C:57:A1:77:C5 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3A86E6C61E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.183.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:27:2f:1c:a7:9a:38:dc:72:ca:cc:9c:f9:ea:21:8b:be:69: af:99:1f:b0:83:0a:ae:85:02:47:00:1d:55:c5:6a:6b:ae:5b: 3d:ea:4a:1b:00:92:94:4f:ee:76:6c:4d:4e:85:4b:48:3a:30: d3:fe:eb:8d:b9:68:18:d6:29:d9:0b:5d:48:bb:33:c8:83:9d: 5b:11:42:1c:b6:dd:2b:b4:97:95:5f:12:3d:e7:b0:51:67:f4: a8:5f:87:68:c8:c5:42:04:54:84:b7:3b:16:4d:41:b6:93:5f: 1a:0b:4b:ee:2f:c8:10:45:71:e1:14:84:bd:cc:8b:ef:56:9a: db:59:1a:e3:51:72:84:c1:fd:ce:1b:9a:82:c1:ee:fe:ca:12: f4:bb:18:11:57:b4:bc:1c:2e:eb:ee:ef:c9:1b:b0:8b:e5:26: e2:b4:08:02:cd:de:d7:ac:d0:fa:66:9a:d7:d3:4e:73:e1:ac: 5f:51:0d:bc:3a:e8:20:83:47:d2:aa:d5:c9:6c:6f:a4:5e:32: b9:2a:6a:9c:7b:c8:8c:ca:28:3f:e4:82:b6:52:5e:bf:e2:3c: 02:bc:64:f5:22:7d:40:b5:9a:4b:44:2b:a1:8c:eb:04:ff:4a: 01:6c:91:9e:3a:2c:24:d7:4c:dc:01:08:c2:00:83:0f:0d:38: 8d:7c:33:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQwZi01OWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5FAQHxW3nHee5XzDvCfz/mxCufwaOc6pJGqKeMKa9532nWO020avI0sz6le u2XG1kEnw7TQtcRuUHuqRYwgQ2SUswXz8RSIblgefkVmu16rOMyGfoUEngnY3C0i SVOKXVVx6EGvrU46xtNu4cd1INlfJ3r/hDUtwBZuoUaRhAacD5NMKniyuL6tT5D+ yQ6TSHN5DCtcThLZNIGu27yahl8r/1ocXnRinn++jqxFLIQRz90gfn8jWD9S6Ltg ZlpoBgDUc7/yGlm1RNDTKvJrdFqGkjDagrozBsUnYftL0S1Qekqn2P1gMH/LcKP3 PiGqjYCPrEw1MFIKZM0p4KoW9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPHZGsyF 9thd5vHvJPd9TkxXoXfFMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvM0E4NkU2QzYx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WrcwDQYJKoZIhvcNAQELBQADggEBAGsnLxynmjjccsrM nPnqIYu+aa+ZH7CDCq6FAkcAHVXFamuuWz3qShsAkpRP7nZsTU6FS0g6MNP+6425 aBjWKdkLXUi7M8iDnVsRQhy23Su0l5VfEj3nsFFn9Khfh2jIxUIEVIS3OxZNQbaT XxoLS+4vyBBFceEUhL3Mi+9WmttZGuNRcoTB/c4bmoLB7v7KEvS7GBFXtLwcLuvu 78kbsIvlJuK0CALN3tes0PpmmtfTTnPhrF9RDbw66CCDR9Kq1clsb6ReMrkqapx7 yIzKKD/kgrZSXr/iPAK8ZPUifUC1mktEK6GM6wT/SgFskZ46LCTXTNwBCMIAgw8N OI18M6Q= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org