$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa File: 4BFBBF6C1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: 5mz5JC73SvJEZO/q++OYBsC2TZZG83hi09QiwrlhziI= Subject key identifier: 57:E1:BF:AE:6D:79:09:37:CC:F4:AB:AD:FD:3A:8B:66:99:18:0E:2F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38B7 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:17 +0000 ROA not before: Tue 16 Jul 2024 14:31:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38815 IP address blocks: 61.90.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14519 (0x38b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968434-41fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:aa:93:8f:14:35:1c:d1:13:f7:f5:81:b9: c3:bd:e9:46:87:9c:7d:e0:1e:93:82:dd:45:80:48: 25:48:c6:d9:2f:fc:ec:05:24:84:a5:76:c8:1a:04: 51:ba:d9:f7:23:ce:6a:08:97:17:4c:42:5e:35:b7: df:0a:b3:fd:ee:bd:e5:90:3a:a7:4b:ae:83:55:b8: bb:55:7e:53:1e:42:7c:4e:1a:3b:1a:6f:8c:5e:5c: 09:f6:c8:57:eb:3d:50:9e:03:2d:f6:6d:43:cb:41: fc:22:a2:81:25:a6:c8:b5:92:e8:da:8b:9b:31:b9: 44:be:65:63:3f:4b:44:f2:29:50:1a:69:bf:14:63: c5:36:37:61:8d:4f:b8:99:6f:97:dc:e9:83:49:89: c5:96:37:bc:b1:13:5a:15:6b:7b:c9:c3:11:01:c3: dd:19:8b:0b:a7:c6:14:c3:e8:98:62:9d:7f:5d:e5: ed:0a:8d:13:9c:54:8f:b1:4b:fa:7b:2f:1f:2e:91: e9:b5:00:a0:79:c2:9f:ad:9f:47:fd:60:77:9b:1d: f8:3b:21:68:5e:a0:72:f9:6d:d1:cb:63:d2:b8:c0: 16:cd:59:8a:96:27:73:9f:36:28:59:7a:cd:03:5f: b6:d0:b4:1d:50:ec:0a:91:94:f4:79:33:27:37:cf: 07:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E1:BF:AE:6D:79:09:37:CC:F4:AB:AD:FD:3A:8B:66:99:18:0E:2F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.157.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:89:e0:28:b8:e3:94:dc:6f:05:ce:16:67:12:8c:42:8d:78: e2:34:c6:38:a3:52:f7:c4:3d:b7:8e:b6:06:af:b9:7d:5d:07: 42:3b:10:4f:16:ea:1e:53:00:0f:ad:4c:54:ec:4f:4f:98:69: 59:dc:df:c7:09:80:9e:72:0e:89:12:3f:f5:97:cc:42:ff:31: a5:f7:b3:e5:42:33:ab:e9:97:06:ad:4a:5b:d6:35:85:09:c6: 61:a2:c2:11:a1:76:47:11:49:59:54:b9:e9:22:b6:14:1f:84: b6:4d:0c:98:43:6b:77:5a:87:f6:b4:86:80:5e:66:fe:89:bf: f2:71:25:e9:91:d5:8a:e7:34:a9:5f:62:27:74:65:b1:2c:11: d0:4f:b0:e4:b1:16:4b:f9:21:cc:7e:90:8b:59:52:ad:5e:ea: a7:07:4d:94:b5:66:e4:fa:2e:77:2b:7d:4e:1c:be:73:83:58: 07:06:24:c6:76:ed:c7:8f:c1:0a:19:34:90:0e:a3:f6:13:1c: 46:60:ce:31:26:01:09:e5:65:9a:73:e9:fd:ec:88:cf:fc:c9: 01:5e:b0:a7:a8:eb:c3:63:48:24:04:70:9b:be:e0:52:ac:3c: 79:29:57:64:7e:2b:a1:fc:45:f5:61:76:07:1e:ce:c5:c3:7f: 22:8e:d8:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzNC00MWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2Cqk48UNRzRE/f1gbnDvelGh5x94B6Tgt1FgEglSMbZL/zsBSSEpXbIGgRR utn3I85qCJcXTEJeNbffCrP97r3lkDqnS66DVbi7VX5THkJ8Tho7Gm+MXlwJ9shX 6z1QngMt9m1Dy0H8IqKBJabItZLo2oubMblEvmVjP0tE8ilQGmm/FGPFNjdhjU+4 mW+X3OmDSYnFlje8sRNaFWt7ycMRAcPdGYsLp8YUw+iYYp1/XeXtCo0TnFSPsUv6 ey8fLpHptQCgecKfrZ9H/WB3mx34OyFoXqBy+W3Ry2PSuMAWzVmKlidznzYoWXrN A1+20LQdUOwKkZT0eTMnN88HuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFfhv65t eQk3zPSrrf06i2aZGA4vMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNEJGQkJGNkMx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9Wp0wDQYJKoZIhvcNAQELBQADggEBAGqJ4Ci445TcbwXO FmcSjEKNeOI0xjijUvfEPbeOtgavuX1dB0I7EE8W6h5TAA+tTFTsT0+YaVnc38cJ gJ5yDokSP/WXzEL/MaX3s+VCM6vplwatSlvWNYUJxmGiwhGhdkcRSVlUuekithQf hLZNDJhDa3dah/a0hoBeZv6Jv/JxJemR1YrnNKlfYid0ZbEsEdBPsOSxFkv5Icx+ kItZUq1e6qcHTZS1ZuT6LncrfU4cvnODWAcGJMZ27cePwQoZNJAOo/YTHEZgzjEm AQnlZZpz6f3siM/8yQFesKeo68NjSCQEcJu+4FKsPHkpV2R+K6H8RfVhdgcezsXD fyKO2P4= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org