$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/413127DE1E0111E9A590C837C4F9AE02.roa File: 413127DE1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: XkID6jE5M9oUq3etJd5Xj2pW5ZfrEzIx2Qma+Xm+0k4= Subject key identifier: CA:5B:9A:0A:7A:95:4F:F3:AF:7C:BD:35:B3:47:F8:8C:EE:D7:CF:A5 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38A3 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/413127DE1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:59 +0000 ROA not before: Tue 16 Jul 2024 14:30:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23717 IP address blocks: 203.144.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14499 (0x38a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968422-35cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:ca:ec:35:fe:a3:bc:24:bf:14:c3:cf:cf: 03:58:dc:c4:14:45:3b:14:2e:0a:06:57:a4:68:c7: 37:78:cf:90:e5:82:5c:c4:c6:d6:d5:60:ff:9a:d9: 73:77:28:14:d5:7a:5f:f6:00:46:35:59:2a:d2:d3: b8:f5:4e:16:01:f9:a5:69:ea:13:9b:4e:3a:6e:39: 45:1e:95:ce:4c:cb:11:40:3b:d8:e1:07:46:ff:15: b8:91:9c:ec:82:64:bf:68:bf:c7:4f:18:78:d7:4c: 9d:10:ec:02:1d:fc:0f:a7:41:c7:08:cd:fb:dc:1f: 0a:c2:28:4f:5e:bc:77:19:7f:ee:e5:dc:4a:43:85: c7:7e:81:16:81:f0:4e:b6:cc:9c:f5:21:c8:f6:ba: 0e:12:47:9a:94:89:8c:47:78:eb:20:f6:30:1e:54: 8b:ea:81:cf:6d:71:87:95:df:79:34:0c:96:fb:93: 4a:06:2a:dc:98:8f:89:fe:bd:29:d2:5b:cb:78:95: da:82:cf:97:be:e4:63:de:38:9c:d8:a1:27:4d:a5: e6:ea:94:2d:e7:af:55:9e:d3:8f:83:ca:bf:45:3a: 4a:18:a7:79:9d:b1:3f:51:3d:7c:bd:be:4e:73:c0: ea:d9:d7:3f:47:ac:5b:f7:af:5d:ca:bf:6e:6d:01: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5B:9A:0A:7A:95:4F:F3:AF:7C:BD:35:B3:47:F8:8C:EE:D7:CF:A5 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/413127DE1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.144.183.0/24 Signature Algorithm: sha256WithRSAEncryption 68:72:d8:91:d2:e2:38:e3:11:11:9b:d1:9d:6b:7c:ac:10:a2: fd:4e:6c:fd:8b:0c:ac:15:8f:06:51:4d:47:83:54:ef:2b:a5: 18:4a:3f:1b:35:75:3a:a9:d9:ed:eb:ec:3f:b6:11:53:6f:df: 98:a2:eb:db:3f:cc:e2:10:13:d2:70:58:69:9b:ee:43:d1:fd: 9c:ea:2e:37:f1:30:c6:af:cc:16:c2:ff:c5:23:df:12:34:fc: c0:db:b3:ca:f2:88:f9:84:e3:22:09:d1:8a:8b:3d:92:15:26: 77:4a:b0:08:ae:73:ff:ac:b1:7e:63:81:5b:a9:d7:7c:c4:81: a0:75:65:4e:0a:ae:20:26:54:ed:4c:50:47:04:71:2a:84:95: d3:ce:c7:18:c5:f7:f9:1c:42:bc:26:7b:ae:7c:24:7c:92:96: 28:c8:ce:68:5c:ac:4d:61:49:60:3e:ba:37:21:ec:14:83:df: 6e:31:86:d6:7e:5e:9e:cb:1f:f8:f5:87:5c:7c:b4:28:c1:5d: d7:cc:70:c1:82:cb:07:a0:76:4f:0e:fc:3e:3b:11:a4:ea:24: 30:89:0b:32:ae:73:ef:eb:b7:35:62:05:2a:23:c0:c8:78:b9: 95:d1:fc:d6:10:97:27:88:50:b0:f8:fc:a2:63:6b:f4:06:3a: 60:62:0e:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyMi0zNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fPK7DX+o7wkvxTDz88DWNzEFEU7FC4KBlekaMc3eM+Q5YJcxMbW1WD/mtlz dygU1Xpf9gBGNVkq0tO49U4WAfmlaeoTm046bjlFHpXOTMsRQDvY4QdG/xW4kZzs gmS/aL/HTxh410ydEOwCHfwPp0HHCM373B8KwihPXrx3GX/u5dxKQ4XHfoEWgfBO tsyc9SHI9roOEkealImMR3jrIPYwHlSL6oHPbXGHld95NAyW+5NKBircmI+J/r0p 0lvLeJXags+XvuRj3jic2KEnTaXm6pQt569VntOPg8q/RTpKGKd5nbE/UT18vb5O c8Dq2dc/R6xb969dyr9ubQFRHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMpbmgp6 lU/zr3y9NbNH+Izu18+lMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDEzMTI3REUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLkLcwDQYJKoZIhvcNAQELBQADggEBAGhy2JHS4jjjERGb 0Z1rfKwQov1ObP2LDKwVjwZRTUeDVO8rpRhKPxs1dTqp2e3r7D+2EVNv35ii69s/ zOIQE9JwWGmb7kPR/ZzqLjfxMMavzBbC/8Uj3xI0/MDbs8ryiPmE4yIJ0YqLPZIV JndKsAiuc/+ssX5jgVup13zEgaB1ZU4KriAmVO1MUEcEcSqEldPOxxjF9/kcQrwm e658JHySlijIzmhcrE1hSWA+ujch7BSD324xhtZ+Xp7LH/j1h1x8tCjBXdfMcMGC ywegdk8O/D47EaTqJDCJCzKuc+/rtzViBSojwMh4uZXR/NYQlyeIULD4/KJja/QG OmBiDhg= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org