$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa File: 4B5400D81E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: AmPBhRAnHusglUI/XuZd2RYp2Y3Y0WHRDHJsnspnLOA= Subject key identifier: 5D:32:B8:F3:F1:1C:72:FF:85:8D:55:98:49:5F:AE:EC:96:6D:AD:B4 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36B9 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:08 +0000 ROA not before: Sat 08 Jul 2023 14:31:08 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38599 IP address blocks: 58.97.39.0/24 maxlen: 24 61.91.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14009 (0x36b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:08 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9732b-a842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ee:19:e5:f6:fc:8c:62:62:8a:5c:89:05:77: c9:65:de:a3:1a:a8:ff:17:0c:1a:ef:0d:d9:49:a1: b3:c8:7c:0b:9a:0a:01:45:1e:e9:42:63:56:7a:89: 1c:ad:34:d2:03:48:85:d4:71:62:86:87:a7:2e:4a: 9a:f1:ee:21:d0:f8:97:7f:88:d4:3f:1e:20:99:04: 9b:bc:d7:64:46:23:5e:f3:13:64:34:69:c2:d7:5b: af:24:5b:cc:9f:c1:19:81:cc:e5:4e:6b:d1:dd:22: b2:5d:a5:96:8a:c3:e5:64:50:03:26:e1:b3:6e:5d: b4:77:30:51:c9:57:a7:5f:fc:fb:37:36:35:f7:62: 3b:b9:1e:b9:ff:d8:4e:a5:4b:a3:97:5a:83:b1:d7: 3a:cb:43:90:36:29:b2:cc:a4:1a:b4:3b:92:60:65: 61:41:ff:71:88:b6:44:88:4e:2e:97:c0:51:39:1b: b4:d5:fd:6f:1a:1c:6c:a4:60:b3:9c:20:ca:83:ca: ee:19:0b:ca:a8:3d:77:e7:b5:c5:c7:76:d6:bd:be: d9:01:20:2d:95:15:db:46:a4:bb:fe:22:fc:9d:33: 68:18:54:7e:3f:e0:5a:19:f3:8a:4e:74:bc:d5:e7: 5c:aa:83:67:c7:8a:94:d2:66:a6:25:76:76:e8:be: c5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:32:B8:F3:F1:1C:72:FF:85:8D:55:98:49:5F:AE:EC:96:6D:AD:B4 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4B5400D81E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.39.0/24 61.91.104.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f8:7d:c1:1a:d7:35:dc:8c:b3:a7:a7:b5:de:e1:73:e3:1d: 90:78:6e:27:eb:17:bd:73:ed:59:9e:73:9e:23:a1:90:c0:28: c4:b4:5a:f6:88:22:83:37:ac:fe:f6:b3:75:57:d9:2c:cf:93: 6c:02:38:fe:c5:a6:3c:7e:58:1b:81:cf:53:b7:87:84:9c:34: 1a:31:6f:bf:3c:83:68:53:77:73:3e:f6:e7:f8:56:dc:40:00: e6:97:b2:ee:a6:64:58:e5:a4:8a:67:63:73:68:dd:8f:38:84: 4c:b3:ef:48:8d:88:e0:ed:1d:e8:70:71:ac:ef:b7:86:29:73: 4b:df:34:11:58:13:dd:43:05:2e:76:2f:8b:be:9f:e1:ab:61: 2d:22:a1:21:f4:10:7c:d2:43:34:1e:46:e4:8b:cb:c2:75:05: 12:2a:36:6e:fd:12:60:2e:e7:0c:41:c5:ee:7b:15:9b:33:3e: ce:c4:79:92:37:8d:6e:cc:4f:8c:30:f9:97:c3:bb:ab:bf:e8: f7:27:bc:c2:79:a6:1a:ee:52:11:2e:a2:25:4c:02:c1:20:ac: 12:cf:56:e4:0f:f3:b0:03:38:58:2b:b6:f1:2e:b4:52:ae:f0: 39:ae:24:a0:f5:ac:f5:79:65:0b:37:f6:b2:50:21:c1:62:e9: ef:03:33:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTA4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMyYi1hODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+4Z5fb8jGJiilyJBXfJZd6jGqj/Fwwa7w3ZSaGzyHwLmgoBRR7pQmNWeokc rTTSA0iF1HFihoenLkqa8e4h0PiXf4jUPx4gmQSbvNdkRiNe8xNkNGnC11uvJFvM n8EZgczlTmvR3SKyXaWWisPlZFADJuGzbl20dzBRyVenX/z7NzY192I7uR65/9hO pUujl1qDsdc6y0OQNimyzKQatDuSYGVhQf9xiLZEiE4ul8BRORu01f1vGhxspGCz nCDKg8ruGQvKqD1357XFx3bWvb7ZASAtlRXbRqS7/iL8nTNoGFR+P+BaGfOKTnS8 1edcqoNnx4qU0mamJXZ26L7FVQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF0yuPPx HHL/hY1VmElfruyWba20MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNEI1NDAwRDgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA6YScDBAA9W2gwDQYJKoZIhvcNAQELBQADggEBAFP4fcEa 1zXcjLOnp7Xe4XPjHZB4bifrF71z7Vmec54joZDAKMS0WvaIIoM3rP72s3VX2SzP k2wCOP7Fpjx+WBuBz1O3h4ScNBoxb788g2hTd3M+9uf4VtxAAOaXsu6mZFjlpIpn Y3No3Y84hEyz70iNiODtHehwcazvt4Ypc0vfNBFYE91DBS52L4u+n+GrYS0ioSH0 EHzSQzQeRuSLy8J1BRIqNm79EmAu5wxBxe57FZszPs7EeZI3jW7MT4ww+ZfDu6u/ 6PcnvMJ5phruUhEuoiVMAsEgrBLPVuQP87ADOFgrtvEutFKu8DmuJKD1rPV5ZQs3 9rJQIcFi6e8DM2o= -----END CERTIFICATE-----Generated at Fri May 24 15:43:20 2024 by rpki-client on console-fra.rpki-client.org