$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CAD34861E0111E9A590C837C4F9AE02.roa File: 4CAD34861E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: YGLD/iQICkRJXh4KHw0jExGN2GFCiWIouK0BcycC3bw= Subject key identifier: EB:06:29:50:24:2B:67:03:73:31:4C:F0:38:E3:BD:26:77:DB:9F:F6 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38B8 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CAD34861E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:18 +0000 ROA not before: Tue 16 Jul 2024 14:31:18 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45173 IP address blocks: 58.97.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14520 (0x38b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC Validity Not Before: Jul 16 14:31:18 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968436-3205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b5:f9:7e:2b:f8:06:18:ef:c0:a7:ce:ad:21: d6:b3:20:1e:c4:cc:9f:e9:57:f2:2a:a7:a0:d1:ea: 1b:f9:c3:df:5a:87:de:c2:7c:ac:92:c4:10:d6:a8: 4c:62:87:11:b7:08:c7:c4:a1:8a:3e:a1:8b:7d:9c: 26:57:06:21:49:76:97:5d:26:8f:b5:f7:0e:cc:07: 38:7a:c2:90:c9:c3:e9:53:94:d0:ec:02:97:4e:2f: 4b:94:43:40:b1:95:a1:df:7d:51:3d:d2:a5:f5:0f: cc:fb:cd:3e:09:fb:9d:ec:c0:98:e4:cc:25:e0:2c: 54:0d:47:d0:f4:0c:56:95:d6:ef:0f:53:b1:d3:2e: 9b:17:1d:3e:7a:ea:64:a0:42:40:f6:04:7f:f4:72: 72:2b:6d:f7:7c:e4:ad:bc:2c:30:21:55:3b:ff:30: 53:fa:5e:0e:f4:9a:15:ff:2f:44:7f:a4:bd:d0:50: 9c:1b:4a:fc:77:6e:2b:a3:29:70:2d:0b:8c:a6:3c: 0b:29:c0:5b:46:65:56:ac:34:39:48:3a:da:48:e4: ca:e3:a6:ba:ba:3b:29:73:38:79:3d:53:dd:e2:d0: 4d:16:71:53:d8:e3:b3:3c:f9:51:74:3f:83:8f:e6: 02:92:29:17:e9:57:b1:a7:9e:0a:49:a5:14:f7:8f: 15:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:06:29:50:24:2B:67:03:73:31:4C:F0:38:E3:BD:26:77:DB:9F:F6 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CAD34861E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.9.0/24 Signature Algorithm: sha256WithRSAEncryption 14:e4:36:42:00:6c:38:d4:40:47:07:ce:59:73:8d:03:a7:e0: e8:de:a3:a4:a7:fd:bb:cb:22:43:22:55:72:89:33:8a:88:0e: 75:e2:f9:d7:d7:56:4f:c3:1c:03:ad:70:f3:aa:27:b3:6f:07: 1b:ff:d3:63:64:23:73:76:36:43:e5:15:4e:a5:f5:0b:06:2c: 47:7f:0e:1f:bb:ee:85:c3:b3:59:b0:5c:01:c9:f3:7d:12:d2: ab:9e:ec:14:98:7a:20:aa:9c:ee:e0:4f:d6:2d:1c:20:63:85: 95:50:b5:cc:ec:34:4e:54:e1:0e:af:cd:3e:80:7a:9e:c3:88: cc:f1:78:33:00:bc:6a:94:ab:20:8e:72:d5:94:f7:cd:3b:4a: 8e:61:35:8a:41:a3:a2:06:f9:36:c8:63:a7:ee:69:90:04:77: 9b:4b:c6:f7:15:a4:e3:04:a3:b8:85:06:21:e8:76:01:09:65: cc:6b:5b:d9:e6:79:14:a5:00:27:9d:39:73:15:b4:d7:cd:fd: 7a:b7:16:b7:d7:52:24:37:ed:83:4f:0c:9d:c7:55:ab:00:3b: bc:ae:18:7d:18:11:5d:e7:4a:87:3d:2c:8d:87:64:d1:c9:da: cf:4c:b0:0f:03:5c:2a:3f:8a:23:8c:c7:17:66:91:21:6e:fa: df:02:2a:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTE4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzNi0zMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybX5fiv4BhjvwKfOrSHWsyAexMyf6VfyKqeg0eob+cPfWofewnysksQQ1qhM YocRtwjHxKGKPqGLfZwmVwYhSXaXXSaPtfcOzAc4esKQycPpU5TQ7AKXTi9LlENA sZWh331RPdKl9Q/M+80+Cfud7MCY5Mwl4CxUDUfQ9AxWldbvD1Ox0y6bFx0+eupk oEJA9gR/9HJyK233fOStvCwwIVU7/zBT+l4O9JoV/y9Ef6S90FCcG0r8d24roylw LQuMpjwLKcBbRmVWrDQ5SDraSOTK46a6ujspczh5PVPd4tBNFnFT2OOzPPlRdD+D j+YCkikX6Vexp54KSaUU948VmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOsGKVAk K2cDczFM8DjjvSZ325/2MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNENBRDM0ODYx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6YQkwDQYJKoZIhvcNAQELBQADggEBABTkNkIAbDjUQEcH zllzjQOn4Ojeo6Sn/bvLIkMiVXKJM4qIDnXi+dfXVk/DHAOtcPOqJ7NvBxv/02Nk I3N2NkPlFU6l9QsGLEd/Dh+77oXDs1mwXAHJ830S0que7BSYeiCqnO7gT9YtHCBj hZVQtczsNE5U4Q6vzT6Aep7DiMzxeDMAvGqUqyCOctWU9807So5hNYpBo6IG+TbI Y6fuaZAEd5tLxvcVpOMEo7iFBiHodgEJZcxrW9nmeRSlACedOXMVtNfN/Xq3FrfX UiQ37YNPDJ3HVasAO7yuGH0YEV3nSoc9LI2HZNHJ2s9MsA8DXCo/iiOMxxdmkSFu +t8CKvM= -----END CERTIFICATE-----Generated at Sun Feb 16 20:41:20 2025 by rpki-client