$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa File: 4B5400D81E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: i+P2I26u6mJ2CeR+c1qx0ipPw+zXVqJR0LMnbMcQDb4= Subject key identifier: 01:A3:88:CD:84:E0:1A:86:25:4E:A9:6D:19:42:BF:6A:8B:FE:C5:B8 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38B5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:15 +0000 ROA not before: Tue 16 Jul 2024 14:31:15 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38599 IP address blocks: 58.97.39.0/24 maxlen: 24 61.91.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14517 (0x38b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:15 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968433-d7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:02:e3:43:b6:e4:38:46:7d:64:dc:1b:15:61: 3b:c1:e9:07:d3:83:3c:54:33:4b:cc:51:c8:39:c3: 56:ab:eb:bb:1a:d8:31:ff:7c:5b:1b:35:d0:e2:fa: c4:a1:87:75:3b:61:15:39:72:ea:2a:ce:af:db:33: 11:55:cf:8d:e1:4b:b7:46:9b:e2:cb:eb:82:44:e5: 33:2a:0f:73:07:bf:36:11:49:61:ad:14:42:15:5c: 8a:92:04:27:7f:cf:cf:d7:70:72:36:98:d5:45:1c: 1e:a1:99:db:a2:bb:74:54:5c:8f:8b:9a:6b:aa:3a: 25:ac:18:5f:78:80:08:7c:a0:74:96:24:18:34:c6: 75:eb:cb:36:13:d0:94:9c:df:7e:d2:8b:0c:eb:31: e7:46:a8:aa:76:eb:fb:17:37:ad:6a:30:7a:4b:aa: 17:3d:57:aa:77:18:33:88:94:cd:ce:d5:d7:ee:99: 93:ab:3c:62:37:3f:41:15:3a:46:d3:fb:66:77:cc: a6:3d:61:b3:17:d1:d8:29:b3:a6:ca:a1:b9:44:98: 8e:a4:07:52:52:3b:86:ea:81:fe:27:cd:a9:ae:aa: 6a:2d:5c:8c:7d:e5:29:60:49:29:cb:ac:70:5f:90: 14:2e:c6:11:ec:ef:e0:ca:4d:e5:12:41:19:b5:15: ca:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A3:88:CD:84:E0:1A:86:25:4E:A9:6D:19:42:BF:6A:8B:FE:C5:B8 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.39.0/24 61.91.104.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:ad:15:6b:9d:e8:a1:af:70:3c:fb:a5:dd:f1:ad:8e:ca:2f: 02:20:98:c0:fa:fd:15:8f:ec:95:92:5c:5c:f1:d1:24:ed:f5: 91:7e:b1:c7:d3:4e:56:2c:a7:04:27:01:30:3b:00:ac:49:62: f2:db:1c:c4:09:e3:f1:12:78:d7:56:3e:ba:60:8c:48:15:2d: 59:8f:e7:99:53:e3:a5:0e:03:5d:73:14:2c:ea:d7:27:5a:b0: 36:98:f0:0a:db:cb:f6:b6:64:cf:4b:2e:18:75:37:58:ba:8e: a1:3f:aa:fd:8f:58:81:be:23:12:2c:8a:25:22:5d:8d:0e:90: 55:56:0f:93:85:07:09:3a:a0:c3:24:c1:b6:8a:35:69:d5:76: 53:eb:08:2a:e3:ad:fa:11:a3:5d:f1:91:77:5b:49:b3:a8:ef: 51:44:e9:84:e2:86:0c:b1:37:d0:b0:38:8e:5e:3d:8d:e1:c8: 35:4a:73:75:66:07:30:c2:7b:18:3a:00:0e:d7:e8:61:f3:3d: ce:01:53:e6:a3:8a:e1:2d:5b:db:83:65:a1:fb:74:c5:d3:ef: b6:1d:a4:42:66:92:59:27:b2:0b:94:c8:18:a3:3f:17:e4:dc: 7c:30:0e:4f:e0:4f:d6:47:11:03:c1:a2:36:59:36:6b:a4:d2: 0c:32:06:6e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTE1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzMy1kN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gLjQ7bkOEZ9ZNwbFWE7wekH04M8VDNLzFHIOcNWq+u7Gtgx/3xbGzXQ4vrE oYd1O2EVOXLqKs6v2zMRVc+N4Uu3Rpviy+uCROUzKg9zB782EUlhrRRCFVyKkgQn f8/P13ByNpjVRRweoZnbort0VFyPi5prqjolrBhfeIAIfKB0liQYNMZ168s2E9CU nN9+0osM6zHnRqiqduv7FzetajB6S6oXPVeqdxgziJTNztXX7pmTqzxiNz9BFTpG 0/tmd8ymPWGzF9HYKbOmyqG5RJiOpAdSUjuG6oH+J82prqpqLVyMfeUpYEkpy6xw X5AULsYR7O/gyk3lEkEZtRXK3QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAGjiM2E 4BqGJU6pbRlCv2qL/sW4MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNEI1NDAwRDgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA6YScDBAA9W2gwDQYJKoZIhvcNAQELBQADggEBAA+tFWud 6KGvcDz7pd3xrY7KLwIgmMD6/RWP7JWSXFzx0STt9ZF+scfTTlYspwQnATA7AKxJ YvLbHMQJ4/ESeNdWPrpgjEgVLVmP55lT46UOA11zFCzq1ydasDaY8Arby/a2ZM9L Lhh1N1i6jqE/qv2PWIG+IxIsiiUiXY0OkFVWD5OFBwk6oMMkwbaKNWnVdlPrCCrj rfoRo13xkXdbSbOo71FE6YTihgyxN9CwOI5ePY3hyDVKc3VmBzDCexg6AA7X6GHz Pc4BU+ajiuEtW9uDZaH7dMXT77YdpEJmklknsguUyBijPxfk3HwwDk/gT9ZHEQPB ojZZNmuk0gwyBm4= -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:59 2024 by rpki-client on console-fra.rpki-client.org