$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CDDE8864EB511ED835E9C71C4F9AE02.roa File: 4CDDE8864EB511ED835E9C71C4F9AE02.roa (raw, json) Hash identifier: /i5SXwl31Xo7HsBqkN7zHpfquDqSU8uRdWSMT8tpnJw= Subject key identifier: 07:38:F9:43:89:41:FA:C8:1F:4B:A8:82:4B:5E:88:38:C1:F0:B9:03 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38D8 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CDDE8864EB511ED835E9C71C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:44 +0000 ROA not before: Tue 16 Jul 2024 14:31:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9464 IP address blocks: 171.102.164.0/23 maxlen: 24 2001:fb0:10b8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14552 (0x38d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968450-09f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:71:bd:2c:de:5d:7b:0d:be:db:09:d8:a6: 51:eb:1e:ee:cb:06:ee:89:d1:dd:80:16:80:3d:13: 21:0e:ed:cb:43:c7:99:9d:3f:54:15:36:49:04:f8: 1c:f5:87:a9:9e:86:0b:33:a9:00:ff:86:c4:16:28: fc:32:5c:85:c2:d3:81:63:b9:96:cd:7b:a9:af:ce: 6b:da:e8:4d:bf:4f:dc:2e:73:44:01:e8:58:82:15: a2:8d:d9:6a:f0:e4:05:1a:20:29:c3:fb:0b:30:8c: 0d:c4:52:2a:7b:a0:42:35:bb:86:ed:76:0e:00:79: 33:40:31:86:1f:66:1d:cc:f5:a9:51:18:34:0f:7d: b7:52:d0:6e:4f:a8:ff:80:b4:f5:90:c0:99:c4:f7: 48:3c:30:2b:dd:e7:cc:fa:1f:cc:b3:d7:39:78:7c: 33:ab:a5:63:0c:73:bf:d5:f4:69:61:60:11:d0:ea: 39:af:8f:ad:5c:c7:d0:40:77:df:89:dd:af:89:9f: 45:06:cf:82:07:19:88:6d:80:8a:39:63:bc:5b:e0: 87:e9:fc:4d:5e:97:dd:27:04:6c:b4:40:60:b1:77: a9:e3:54:48:a8:a5:db:c2:80:d8:88:0b:a8:3b:2e: f2:d5:6a:1d:5a:95:53:6f:57:2b:09:ef:7f:3e:97: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:38:F9:43:89:41:FA:C8:1F:4B:A8:82:4B:5E:88:38:C1:F0:B9:03 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4CDDE8864EB511ED835E9C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.164.0/23 IPv6: 2001:fb0:10b8::/48 Signature Algorithm: sha256WithRSAEncryption 5d:a9:15:e4:9e:56:26:b5:81:c9:53:0a:b8:5e:8a:cc:b7:24: 9d:49:52:fb:39:76:70:90:7c:a3:ed:74:49:c3:ae:06:91:e3: ce:fd:b8:44:d8:58:ee:15:00:d9:3a:8f:6a:8c:50:0a:d4:01: 0c:b9:43:07:3c:e7:7f:37:4c:a9:cc:62:d1:b8:f1:80:30:01: d8:18:f6:28:d4:7c:32:fb:21:87:98:9c:ea:36:18:4d:62:e3: 98:d9:84:b5:af:75:5c:43:48:84:55:e3:73:f4:41:f3:42:dd: 3f:b9:a7:7c:44:47:55:e2:af:48:45:69:a7:8c:0e:ca:cd:29: 52:c3:8f:16:f7:d0:80:64:e4:88:3e:cf:7f:52:60:62:67:1f: e4:80:42:e4:f6:95:32:db:62:69:0d:62:e4:ce:6d:60:1e:12: 23:9e:c7:83:6c:74:be:b9:89:24:35:68:60:ef:75:c9:23:62: ef:bf:a0:61:2d:67:34:37:e9:56:9b:89:2c:07:74:82:af:54: d1:01:fc:2a:0d:8d:17:04:ae:ec:f2:cf:01:46:23:a5:73:ae: f5:fe:4d:81:de:82:79:22:42:f4:41:3e:7a:10:74:fc:19:f6: 1b:d7:8c:81:b1:73:53:c4:08:e9:dd:c7:48:8a:eb:0e:f0:79: 9f:22:33:87 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICONgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ1MC0wOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3JxvSzeXXsNvtsJ2KZR6x7uywbuidHdgBaAPRMhDu3LQ8eZnT9UFTZJBPgc 9YepnoYLM6kA/4bEFij8MlyFwtOBY7mWzXupr85r2uhNv0/cLnNEAehYghWijdlq 8OQFGiApw/sLMIwNxFIqe6BCNbuG7XYOAHkzQDGGH2YdzPWpURg0D323UtBuT6j/ gLT1kMCZxPdIPDAr3efM+h/Ms9c5eHwzq6VjDHO/1fRpYWAR0Oo5r4+tXMfQQHff id2viZ9FBs+CBxmIbYCKOWO8W+CH6fxNXpfdJwRstEBgsXep41RIqKXbwoDYiAuo Oy7y1WodWpVTb1crCe9/PpfCJQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAc4+UOJ QfrIH0uogkteiDjB8LkDMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNENEREU4ODY0 RUI1MTFFRDgzNUU5QzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAGrZqQwDwQCAAIwCQMHACABD7AQuDANBgkqhkiG9w0BAQsF AAOCAQEAXakV5J5WJrWByVMKuF6KzLcknUlS+zl2cJB8o+10ScOuBpHjzv24RNhY 7hUA2TqPaoxQCtQBDLlDBzznfzdMqcxi0bjxgDAB2Bj2KNR8Mvshh5ic6jYYTWLj mNmEta91XENIhFXjc/RB80LdP7mnfERHVeKvSEVpp4wOys0pUsOPFvfQgGTkiD7P f1JgYmcf5IBC5PaVMttiaQ1i5M5tYB4SI57Hg2x0vrmJJDVoYO91ySNi77+gYS1n NDfpVpuJLAd0gq9U0QH8Kg2NFwSu7PLPAUYjpXOu9f5Ngd6CeSJC9EE+ehB0/Bn2 G9eMgbFzU8QI6d3HSIrrDvB5nyIzhw== -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org