$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa File: 40660E781E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: zDNLkwVcp+NFaUlDWk6mlaABxf3Itp9TRkV0nEObU4M= Subject key identifier: AA:B5:32:C5:A0:4C:FF:F0:16:35:6F:A9:76:25:EB:AF:9B:06:89:5B Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38A2 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:58 +0000 ROA not before: Tue 16 Jul 2024 14:30:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23683 IP address blocks: 61.91.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14498 (0x38a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC Validity Not Before: Jul 16 14:30:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968421-fdf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:01:85:bc:63:3d:10:3b:ee:66:71:1d:ca:c9: e8:bd:fd:07:01:10:e7:5c:de:07:4a:e8:14:d7:f3: 82:44:53:6c:53:d9:02:6e:4f:bd:29:b1:7d:2c:49: 43:8d:42:9a:7a:80:27:0b:77:d6:8c:62:b7:b7:1e: 7a:62:2c:78:98:44:7c:ce:60:af:f0:8a:92:7d:a3: 96:16:33:00:11:4b:7e:5b:c8:52:97:10:cd:be:dc: fc:1e:3d:d2:3d:fb:ba:56:3b:5c:8d:9b:5b:7f:44: 84:c7:2a:42:48:65:1d:c8:bf:48:98:50:94:8a:8d: 5b:42:b5:34:2b:5e:b5:57:3b:ee:b2:62:7a:ab:d5: 7b:fb:d7:14:3a:fc:f0:f9:23:bd:02:b8:fa:b7:77: db:2a:11:50:2b:05:4e:38:5c:7c:06:0b:e9:02:2c: 5f:22:1b:84:28:25:04:f3:d1:38:0e:c5:a4:6f:0b: bb:64:e2:9e:43:5c:6e:f8:77:9e:79:e7:10:c3:91: 03:27:39:6b:a7:8a:8c:6d:79:58:f1:55:75:51:f6: 23:d9:d9:52:b9:ef:db:c2:6d:15:76:08:29:70:0d: 40:e7:71:8a:83:02:a7:1d:99:c6:1f:36:24:0f:6c: b0:30:5a:93:85:9b:e7:47:d7:99:14:55:bb:49:73: dd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B5:32:C5:A0:4C:FF:F0:16:35:6F:A9:76:25:EB:AF:9B:06:89:5B X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/40660E781E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.91.199.0/24 Signature Algorithm: sha256WithRSAEncryption 33:09:59:e3:05:e3:b5:0c:4a:85:e1:7e:de:b2:c8:b0:cf:6b: 80:64:c2:f7:a1:2d:5c:16:51:94:c1:9f:8a:68:38:6e:99:1d: db:65:6f:5e:9b:6f:0c:cd:8a:10:2b:d7:68:a1:9e:2e:86:49: 6e:0d:c8:ee:1a:40:7c:b1:0a:02:88:ae:b5:3d:b9:a2:c4:63: a8:cb:f3:c3:0c:46:a0:71:5c:83:fe:a2:c6:4f:88:27:27:1d: 49:f8:ea:58:c6:22:cf:63:e9:71:06:ea:0c:d2:42:86:39:82: c0:de:b5:ee:a7:a1:bd:10:4d:b3:21:b9:77:87:74:83:95:76: 91:9b:5a:c8:a9:06:6c:d2:1c:a6:3b:f9:44:2b:38:4c:a2:bd: 70:fc:90:d7:6a:5d:f6:09:de:00:a8:f5:9d:77:c3:e0:61:94: 71:09:32:43:62:0a:b1:e3:9c:f8:0e:3a:7f:d1:3c:86:1c:4a: 02:c0:9d:c3:cd:fa:8c:af:c7:ba:64:07:ce:ed:22:1a:6c:24: 49:58:7e:65:37:f8:95:58:dd:3c:2b:9f:94:88:ac:2d:30:c5: 7e:66:50:a3:02:0e:97:a6:e5:5b:54:b0:6c:16:e5:d8:2f:22: 69:26:d6:0d:11:6b:11:55:f7:9b:be:24:b3:61:8a:fb:f7:c0: bd:60:2b:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyMS1mZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngGFvGM9EDvuZnEdysnovf0HARDnXN4HSugU1/OCRFNsU9kCbk+9KbF9LElD jUKaeoAnC3fWjGK3tx56Yix4mER8zmCv8IqSfaOWFjMAEUt+W8hSlxDNvtz8Hj3S Pfu6VjtcjZtbf0SExypCSGUdyL9ImFCUio1bQrU0K161VzvusmJ6q9V7+9cUOvzw +SO9Arj6t3fbKhFQKwVOOFx8BgvpAixfIhuEKCUE89E4DsWkbwu7ZOKeQ1xu+Hee eecQw5EDJzlrp4qMbXlY8VV1UfYj2dlSue/bwm0VdggpcA1A53GKgwKnHZnGHzYk D2ywMFqThZvnR9eZFFW7SXPdNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKq1MsWg TP/wFjVvqXYl66+bBolbMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDA2NjBFNzgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9W8cwDQYJKoZIhvcNAQELBQADggEBADMJWeMF47UMSoXh ft6yyLDPa4BkwvehLVwWUZTBn4poOG6ZHdtlb16bbwzNihAr12ihni6GSW4NyO4a QHyxCgKIrrU9uaLEY6jL88MMRqBxXIP+osZPiCcnHUn46ljGIs9j6XEG6gzSQoY5 gsDete6nob0QTbMhuXeHdIOVdpGbWsipBmzSHKY7+UQrOEyivXD8kNdqXfYJ3gCo 9Z13w+BhlHEJMkNiCrHjnPgOOn/RPIYcSgLAncPN+oyvx7pkB87tIhpsJElYfmU3 +JVY3Twrn5SIrC0wxX5mUKMCDpem5VtUsGwW5dgvImkm1g0RaxFV95u+JLNhivv3 wL1gK9c= -----END CERTIFICATE-----Generated at Sun Feb 16 20:43:59 2025 by rpki-client