$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/437E7DA21E0111E9A590C837C4F9AE02.roa File: 437E7DA21E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: kF0LoOemAvM6SEzdMY95aWW+p978djNSPAumWRU7yBg= Subject key identifier: CF:2B:40:66:E9:EC:F9:9E:40:8A:AF:81:66:A7:F1:36:68:4B:5B:2B Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36A7 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/437E7DA21E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:53 +0000 ROA not before: Sat 08 Jul 2023 14:30:53 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24042 IP address blocks: 119.46.74.0/24 maxlen: 24 203.144.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13991 (0x36a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:53 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9731c-1773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5a:6a:2e:e5:4e:35:94:80:e9:d8:af:e9:c7: 64:b7:13:60:52:dd:fd:5e:39:9b:e5:2d:3f:2d:94: bb:1d:29:56:da:1e:2e:4d:87:e9:d5:17:75:46:ca: 0a:24:dd:85:f2:91:60:b2:7a:be:4f:2e:4a:50:cd: 9e:49:af:8c:02:cc:c2:c7:2b:e0:3f:32:1a:c2:5c: 54:3b:46:c7:2b:4c:db:52:3e:30:d3:f9:63:ce:68: 31:6d:b7:11:06:5c:33:07:fc:c4:f8:21:46:19:d8: 79:4e:bf:72:52:d1:5e:38:ee:be:6b:63:9d:90:32: fc:30:ea:58:66:08:0a:4c:88:e4:a7:80:a9:fa:8a: 0b:53:16:ce:3a:eb:b7:f1:a9:8d:33:9f:53:ce:03: 34:57:ab:e8:b6:32:e5:d3:46:53:32:b4:5a:91:78: ff:c0:9f:5e:63:12:53:fd:f8:b6:47:57:00:eb:19: 89:5b:fc:03:18:60:be:7e:94:15:15:65:b5:64:65: 18:5b:80:52:6a:46:c1:5b:c7:09:6a:08:0a:1c:80: 19:3b:23:9e:12:e3:d4:77:7f:88:41:bc:33:ba:7b: 43:8b:c5:5f:be:0e:18:eb:f2:81:ba:b7:bc:6f:ff: 18:7d:d6:45:63:87:14:48:f2:35:27:e1:e1:80:62: d6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2B:40:66:E9:EC:F9:9E:40:8A:AF:81:66:A7:F1:36:68:4B:5B:2B X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/437E7DA21E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.74.0/24 203.144.147.0/24 Signature Algorithm: sha256WithRSAEncryption 07:9b:9a:a1:47:c1:46:71:89:09:30:50:35:c6:e8:45:ff:6a: 98:45:99:08:10:57:1f:f1:e6:ac:46:e4:64:91:2d:eb:8f:22: 74:9d:ee:2b:50:1d:2a:eb:b9:8d:2d:60:22:5a:bd:bd:9b:93: 18:69:21:f6:f0:5f:e8:2b:cc:42:85:3a:35:65:d3:31:b2:92: 60:15:47:a3:7a:65:ce:97:13:32:97:d0:d3:c8:eb:cf:4f:af: f2:ca:24:c3:32:76:5f:64:3f:3a:84:57:32:e4:2d:17:72:fe: ca:9a:2f:17:d6:64:6e:b8:26:6b:c7:ac:1f:02:ed:71:88:cd: 8a:b8:0a:06:28:43:87:b9:06:50:80:01:08:8c:ba:d5:0f:b0: 6b:68:57:d2:b6:17:f3:3e:8a:ca:24:89:0a:eb:68:b0:dc:85: de:3a:f7:d9:9e:d8:1c:c2:f1:71:93:0f:ac:61:4c:6c:a4:bc: da:ca:81:97:94:2c:91:f7:03:da:cb:42:fa:fa:61:38:32:d0: c8:14:af:71:93:89:ca:d5:ce:4f:79:e4:58:d3:cf:be:73:f1: a4:2b:51:cd:7e:81:59:b4:76:d8:44:da:61:62:85:01:9b:e3: 07:0a:84:3f:0b:4f:0e:af:a6:61:fc:4d:ce:94:c9:0e:87:2c: 09:7c:35:5b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDUzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMxYy0xNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFpqLuVONZSA6div6cdktxNgUt39Xjmb5S0/LZS7HSlW2h4uTYfp1Rd1RsoK JN2F8pFgsnq+Ty5KUM2eSa+MAszCxyvgPzIawlxUO0bHK0zbUj4w0/ljzmgxbbcR BlwzB/zE+CFGGdh5Tr9yUtFeOO6+a2OdkDL8MOpYZggKTIjkp4Cp+ooLUxbOOuu3 8amNM59TzgM0V6votjLl00ZTMrRakXj/wJ9eYxJT/fi2R1cA6xmJW/wDGGC+fpQV FWW1ZGUYW4BSakbBW8cJaggKHIAZOyOeEuPUd3+IQbwzuntDi8Vfvg4Y6/KBure8 b/8YfdZFY4cUSPI1J+HhgGLW4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM8rQGbp 7PmeQIqvgWan8TZoS1srMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDM3RTdEQTIx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB3LkoDBADLkJMwDQYJKoZIhvcNAQELBQADggEBAAebmqFH wUZxiQkwUDXG6EX/aphFmQgQVx/x5qxG5GSRLeuPInSd7itQHSrruY0tYCJavb2b kxhpIfbwX+grzEKFOjVl0zGykmAVR6N6Zc6XEzKX0NPI689Pr/LKJMMydl9kPzqE VzLkLRdy/sqaLxfWZG64JmvHrB8C7XGIzYq4CgYoQ4e5BlCAAQiMutUPsGtoV9K2 F/M+isokiQrraLDchd4699me2BzC8XGTD6xhTGykvNrKgZeULJH3A9rLQvr6YTgy 0MgUr3GTicrVzk955FjTz75z8aQrUc1+gVm0dthE2mFihQGb4wcKhD8LTw6vpmH8 Tc6UyQ6HLAl8NVs= -----END CERTIFICATE-----Generated at Sat May 18 15:58:21 2024 by rpki-client on console-ams.rpki-client.org