$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa File: 40660E781E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: f8WDKqtQk0nrUXgKQ7Jf0ZGZI8+TD7Cv8Fl4nB8m/KE= Subject key identifier: CC:AD:A4:C2:BC:10:7E:24:7E:35:03:97:1B:F2:C3:13:0D:C4:C7:6F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36A3 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:49 +0000 ROA not before: Sat 08 Jul 2023 14:30:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 23683 IP address blocks: 61.91.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13987 (0x36a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97319-fff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b2:a5:2b:65:cd:9d:31:c9:12:ce:b7:38:b2: a9:04:c0:7b:77:98:d3:c7:7d:20:22:7a:d3:dd:49: c0:bb:3f:62:14:b4:10:68:3e:45:2a:75:57:ec:69: ed:c6:96:5d:81:b7:da:0a:3e:c7:4a:06:e8:dc:6f: 2d:e6:d2:b9:8a:70:bc:fb:aa:1b:ad:f0:1f:1e:cd: 26:dc:61:c1:dd:3b:82:1f:e3:29:2e:9b:f0:77:29: d3:12:6a:3e:58:36:d6:46:57:24:c8:3b:9b:6d:63: af:48:a8:e9:7a:c6:bd:b6:9f:38:68:52:5f:50:32: ea:03:d5:08:f4:11:f2:6e:48:9e:00:37:b0:e8:f9: cf:d7:2e:8f:f7:44:c9:5c:f5:e2:23:2f:a2:e2:50: fc:a4:fc:52:1a:93:09:4a:d3:5b:ed:62:90:78:d6: de:ef:84:3d:a2:d9:72:38:a8:d9:2a:37:e3:21:55: e2:66:c6:42:a9:41:be:ca:d5:a1:37:9a:e6:83:d0: 94:99:de:4a:d8:62:0e:34:de:30:9f:c4:6a:5b:9c: ff:6d:ba:c0:46:00:64:7d:a4:91:da:e8:f3:f1:68: 25:d1:b0:11:01:41:9e:79:1e:a6:6b:2e:a8:af:5c: 16:0d:a6:54:26:c2:0c:eb:38:2d:81:aa:5e:63:64: 0f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AD:A4:C2:BC:10:7E:24:7E:35:03:97:1B:F2:C3:13:0D:C4:C7:6F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.91.199.0/24 Signature Algorithm: sha256WithRSAEncryption 56:8e:6b:b7:98:93:04:b9:10:16:73:ca:92:db:6d:55:d0:1f: f9:ed:15:8e:ec:b5:e7:ba:4b:4a:1b:ce:8a:03:f7:61:89:53: 73:79:14:54:c2:c2:a2:01:3d:67:db:55:62:39:b2:2e:a5:d6: 6f:05:55:d7:ea:c5:32:33:0e:1b:d6:ed:f6:8d:3d:9b:0b:fc: 85:f9:84:21:eb:89:18:58:38:14:0f:1d:d5:ac:ab:c8:7c:ad: 51:8d:dd:41:92:9a:01:54:21:aa:f5:2a:b8:c2:22:b3:65:96: 94:92:5c:20:59:7a:60:e3:94:af:71:89:89:27:27:76:43:e0: 25:a2:b3:fb:0e:51:b0:17:f1:da:af:e3:d7:5e:15:67:57:74: ee:5e:37:75:0e:35:f0:b4:da:b1:6f:0e:ea:1a:7b:40:7d:27: be:27:9d:f9:6f:91:52:59:e7:ca:95:c3:03:98:32:66:39:81: 00:21:a9:6c:ab:ce:23:17:4a:8f:0f:68:bf:f1:0e:c5:c4:19: 0e:ef:21:9a:05:c1:ed:61:67:ec:5a:2b:e9:c3:9c:6b:ff:3f: 4c:ad:47:fe:7d:9a:e9:58:22:fb:24:7f:bb:ac:3c:0f:d1:c5: 80:68:b2:32:4e:4e:80:ee:ae:c1:b4:99:fb:90:66:d9:7c:09: 17:cb:aa:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMxOS1mZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkbKlK2XNnTHJEs63OLKpBMB7d5jTx30gInrT3UnAuz9iFLQQaD5FKnVX7Gnt xpZdgbfaCj7HSgbo3G8t5tK5inC8+6obrfAfHs0m3GHB3TuCH+MpLpvwdynTEmo+ WDbWRlckyDubbWOvSKjpesa9tp84aFJfUDLqA9UI9BHybkieADew6PnP1y6P90TJ XPXiIy+i4lD8pPxSGpMJStNb7WKQeNbe74Q9otlyOKjZKjfjIVXiZsZCqUG+ytWh N5rmg9CUmd5K2GIONN4wn8RqW5z/bbrARgBkfaSR2ujz8Wgl0bARAUGeeR6may6o r1wWDaZUJsIM6zgtgapeY2QPwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMytpMK8 EH4kfjUDlxvywxMNxMdvMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDA2NjBFNzgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9W8cwDQYJKoZIhvcNAQELBQADggEBAFaOa7eYkwS5EBZz ypLbbVXQH/ntFY7stee6S0obzooD92GJU3N5FFTCwqIBPWfbVWI5si6l1m8FVdfq xTIzDhvW7faNPZsL/IX5hCHriRhYOBQPHdWsq8h8rVGN3UGSmgFUIar1KrjCIrNl lpSSXCBZemDjlK9xiYknJ3ZD4CWis/sOUbAX8dqv49deFWdXdO5eN3UONfC02rFv Duoae0B9J74nnflvkVJZ58qVwwOYMmY5gQAhqWyrziMXSo8PaL/xDsXEGQ7vIZoF we1hZ+xaK+nDnGv/P0ytR/59mulYIvskf7usPA/RxYBosjJOToDursG0mfuQZtl8 CRfLqvU= -----END CERTIFICATE-----Generated at Fri May 24 15:43:20 2024 by rpki-client on console-fra.rpki-client.org