$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa File: 4BFBBF6C1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: l3wIdUgmRheB/inMT4UON0YDqAcRo/TJWpNy4Gl5dOQ= Subject key identifier: 20:E6:18:03:2F:84:76:11:1B:81:DA:41:A7:14:0B:9A:90:05:E6:02 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36BB Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:09 +0000 ROA not before: Sat 08 Jul 2023 14:31:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38815 IP address blocks: 61.90.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14011 (0x36bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9732d-2305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:07:86:2f:30:d9:e9:a2:b1:1d:1b:1e:d9:c6: 04:db:98:1f:31:45:5c:f4:63:72:b2:6f:01:ec:ff: 84:40:ce:6a:c2:a7:6b:32:f8:f4:f2:2a:12:6c:3c: 63:31:1e:a5:fc:d2:2d:d2:86:69:2f:da:2d:a8:93: 77:de:4d:c9:4d:1e:3c:ea:af:88:03:08:e0:6f:28: 0e:06:96:21:df:e3:42:98:7d:2f:7f:e0:69:0c:f8: 13:82:b7:9f:d4:f3:3e:8c:2c:a8:05:4a:68:53:4d: 68:39:b0:27:3e:b7:1f:d0:76:4d:2e:8d:84:17:c3: 35:f8:ba:11:a1:87:ed:c8:72:aa:54:26:8d:6d:bf: 56:3e:57:d6:6b:76:03:bb:2b:15:42:bf:e0:10:d7: 64:b2:80:56:19:3b:cf:c0:18:06:14:7e:85:3c:89: f5:8f:7e:96:e9:b3:75:94:7c:ca:c4:37:32:3d:f7: 77:1a:d1:62:65:55:f5:60:d1:2a:6c:04:0f:30:2a: 63:d9:e2:52:9c:03:17:b2:a0:21:60:3f:c6:f8:55: d6:32:47:61:69:ec:ad:98:72:cc:15:45:69:4c:3b: 30:07:69:84:df:f0:5b:bb:48:87:b2:de:ef:6a:cb: f0:e2:21:44:1e:e9:ef:ec:e7:20:8e:1a:7f:05:68: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E6:18:03:2F:84:76:11:1B:81:DA:41:A7:14:0B:9A:90:05:E6:02 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4BFBBF6C1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.157.0/24 Signature Algorithm: sha256WithRSAEncryption a4:c4:f4:1c:38:33:34:29:3c:de:90:f9:c0:46:c4:e6:84:3f: ae:3f:27:44:19:ea:63:5b:8f:26:20:bf:48:43:c9:38:6f:e2: 4a:dc:70:b1:1e:30:f9:bc:ab:c1:9d:d7:47:a3:7f:af:a2:97: cf:8a:0f:f8:76:0d:21:9a:c4:3a:1f:6f:ed:6a:85:0f:8d:91: f8:cb:b6:86:c1:34:71:95:51:4d:49:eb:ea:a5:27:4c:de:7b: ca:8f:d8:97:f3:f3:3e:98:bb:30:b7:5a:c8:ad:4a:ec:b2:41: 93:f0:de:28:93:a9:76:40:23:b5:6f:94:4d:63:00:b8:c4:f3: 2c:13:a9:dc:c8:1a:25:e8:c4:4f:c8:1a:78:d8:39:25:99:08: e3:23:e8:12:c1:eb:16:ce:72:69:69:1b:62:bb:c5:03:7e:1e: 86:98:cd:53:de:5d:3b:4f:a5:6d:28:7f:4a:93:83:9d:3c:f9: 9b:b6:69:e1:21:2a:06:34:f6:47:10:78:57:99:79:4f:12:54: a7:65:a9:ff:59:ab:98:27:fa:e2:f2:59:30:27:45:dd:ae:b9: 51:5c:f8:03:41:f7:25:42:da:30:de:1b:fa:47:7b:35:7b:a2: f2:9c:48:0d:2e:7f:ea:03:5c:81:20:0a:d8:78:40:28:ec:0a: d8:26:d4:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMyZC0yMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtweGLzDZ6aKxHRse2cYE25gfMUVc9GNysm8B7P+EQM5qwqdrMvj08ioSbDxj MR6l/NIt0oZpL9otqJN33k3JTR486q+IAwjgbygOBpYh3+NCmH0vf+BpDPgTgref 1PM+jCyoBUpoU01oObAnPrcf0HZNLo2EF8M1+LoRoYftyHKqVCaNbb9WPlfWa3YD uysVQr/gENdksoBWGTvPwBgGFH6FPIn1j36W6bN1lHzKxDcyPfd3GtFiZVX1YNEq bAQPMCpj2eJSnAMXsqAhYD/G+FXWMkdhaeytmHLMFUVpTDswB2mE3/Bbu0iHst7v asvw4iFEHunv7Ocgjhp/BWinwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCDmGAMv hHYRG4HaQacUC5qQBeYCMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNEJGQkJGNkMx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9Wp0wDQYJKoZIhvcNAQELBQADggEBAKTE9Bw4MzQpPN6Q +cBGxOaEP64/J0QZ6mNbjyYgv0hDyThv4krccLEeMPm8q8Gd10ejf6+il8+KD/h2 DSGaxDofb+1qhQ+NkfjLtobBNHGVUU1J6+qlJ0zee8qP2Jfz8z6YuzC3WsitSuyy QZPw3iiTqXZAI7VvlE1jALjE8ywTqdzIGiXoxE/IGnjYOSWZCOMj6BLB6xbOcmlp G2K7xQN+HoaYzVPeXTtPpW0of0qTg508+Zu2aeEhKgY09kcQeFeZeU8SVKdlqf9Z q5gn+uLyWTAnRd2uuVFc+ANB9yVC2jDeG/pHezV7ovKcSA0uf+oDXIEgCth4QCjs Ctgm1NE= -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org