$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa File: 488867FE1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: njIADHHPFb4zWPCAwFa3gxeg6uAzGsxBl7KnYlvSM4c= Subject key identifier: 67:47:36:14:FA:56:8F:E1:2D:DA:5E:D1:48:06:7E:1A:20:62:F3:BB Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38B1 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:12 +0000 ROA not before: Tue 16 Jul 2024 14:31:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38326 IP address blocks: 210.86.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14513 (0x38b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968430-1d26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:68:34:2a:e2:93:0a:35:ff:4f:f0:e1:13:37: e1:61:14:4d:54:e8:47:54:5d:40:82:2b:3c:c2:ed: 0b:fa:cc:1c:79:3c:a7:7c:61:e9:70:f7:43:b4:07: 75:aa:4a:f6:88:35:07:3e:f1:17:4e:48:a7:5e:e0: 20:34:a0:44:37:11:e5:48:07:00:ed:3a:6d:15:c2: 8a:06:d8:8e:fe:e2:16:a0:fa:5a:ff:10:35:45:06: 47:30:54:70:63:89:d9:87:17:c6:25:41:b8:da:0c: 9a:df:2c:79:0b:22:7f:b6:26:2e:82:e3:4f:fb:36: 4c:e4:32:ba:48:c9:12:71:aa:bf:7d:8f:61:e5:23: 84:be:0f:a8:ae:77:a9:57:60:87:e2:06:f1:e5:24: 6f:ee:8c:1f:25:d4:ba:08:ad:aa:36:21:68:9a:c1: 99:38:f6:65:b6:97:33:c8:0c:96:1c:6b:b1:6a:ad: e9:ba:92:52:a1:ba:02:96:e1:22:2e:a2:6d:9a:3c: 09:a5:0a:88:c1:82:3d:41:89:bc:45:c6:aa:e5:29: 5f:05:26:32:4e:c5:7f:2c:90:b3:50:81:3f:e1:3f: 22:44:98:e6:83:6d:af:28:5e:57:77:1a:a6:4c:29: 9d:6b:19:74:a2:4b:d4:08:ec:c2:d7:e9:7b:f0:8e: d7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:47:36:14:FA:56:8F:E1:2D:DA:5E:D1:48:06:7E:1A:20:62:F3:BB X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.221.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:db:c3:79:55:b8:e6:6d:26:86:10:7f:0f:5d:21:ce:d1:25: 5e:4d:63:11:25:92:dd:11:35:f0:e7:17:a3:3e:07:82:75:47: c0:26:9c:61:6a:05:25:88:e1:99:44:95:a8:7e:34:3c:88:1e: 7c:22:22:cc:eb:6b:00:5a:74:04:ae:f7:a1:92:8b:e8:f2:ae: 78:bd:c5:a6:24:22:58:df:f5:dc:73:90:52:b9:a0:fd:42:f9: 9f:59:44:90:83:60:23:e7:39:6a:e0:62:f6:61:a2:36:70:dc: a2:f0:28:40:49:de:23:3d:49:33:d6:2c:15:62:ad:8f:29:a1: c5:31:17:cf:9b:64:24:75:b6:17:d3:97:87:15:97:dc:3c:7b: 8b:ce:c2:99:47:54:87:d7:3f:79:49:18:e4:18:ab:3b:9e:81: cb:3a:ac:21:8e:6a:4c:51:33:fc:ae:89:24:1a:cf:c3:72:b1: 6a:04:89:83:67:98:02:15:a9:eb:c7:02:d2:01:6e:1e:3a:58: f9:1e:ba:5d:71:7c:e4:c2:02:1a:52:33:54:ce:4c:3a:75:4c: 31:9a:18:cb:88:9e:c6:5c:6f:0e:2d:ea:27:8b:52:61:c3:72: 6b:7b:64:4d:53:cb:a4:f8:98:e7:13:63:50:a7:d6:c6:ff:0f: 79:80:98:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzMC0xZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGg0KuKTCjX/T/DhEzfhYRRNVOhHVF1Agis8wu0L+swceTynfGHpcPdDtAd1 qkr2iDUHPvEXTkinXuAgNKBENxHlSAcA7TptFcKKBtiO/uIWoPpa/xA1RQZHMFRw Y4nZhxfGJUG42gya3yx5CyJ/tiYuguNP+zZM5DK6SMkScaq/fY9h5SOEvg+ornep V2CH4gbx5SRv7owfJdS6CK2qNiFomsGZOPZltpczyAyWHGuxaq3pupJSoboCluEi LqJtmjwJpQqIwYI9QYm8Rcaq5SlfBSYyTsV/LJCzUIE/4T8iRJjmg22vKF5Xdxqm TCmdaxl0okvUCOzC1+l78I7X+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGdHNhT6 Vo/hLdpe0UgGfhogYvO7MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDg4ODY3RkUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSVt0wDQYJKoZIhvcNAQELBQADggEBAEvbw3lVuOZtJoYQ fw9dIc7RJV5NYxElkt0RNfDnF6M+B4J1R8AmnGFqBSWI4ZlElah+NDyIHnwiIszr awBadASu96GSi+jyrni9xaYkIljf9dxzkFK5oP1C+Z9ZRJCDYCPnOWrgYvZhojZw 3KLwKEBJ3iM9STPWLBVirY8pocUxF8+bZCR1thfTl4cVl9w8e4vOwplHVIfXP3lJ GOQYqzuegcs6rCGOakxRM/yuiSQaz8NysWoEiYNnmAIVqevHAtIBbh46WPkeul1x fOTCAhpSM1TOTDp1TDGaGMuInsZcbw4t6ieLUmHDcmt7ZE1Ty6T4mOcTY1Cn1sb/ D3mAmEg= -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:59 2024 by rpki-client on console-fra.rpki-client.org