$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa File: 517080EA1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: bWKuLlmMD2QW5oXYbC69PovseHw/vaxjeb20c5s0twI= Subject key identifier: 8E:0F:C2:28:9E:27:70:06:FF:6C:B3:36:90:7A:E8:CC:16:AB:09:8E Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36C5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:19 +0000 ROA not before: Sat 08 Jul 2023 14:31:19 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55451 IP address blocks: 119.46.81.0/24 maxlen: 24 119.46.82.0/24 maxlen: 24 2001:fb0:10a2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14021 (0x36c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:19 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97337-fae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:e6:bc:b1:66:81:44:e0:96:74:ae:00:9d: cf:41:58:88:d9:7d:31:e0:ed:08:4a:ab:fd:6f:34: a7:9e:20:5e:98:00:47:57:94:de:d0:9d:6f:82:d0: 24:dc:01:e5:a6:46:b2:d9:e4:1f:b3:e4:4b:b0:92: 3f:b3:4a:fe:10:6f:a4:04:29:03:09:ae:aa:bf:6a: 24:de:46:6e:a0:5c:72:68:5d:a4:f8:9b:d5:bd:e0: 89:21:70:a9:f5:23:00:16:83:c7:43:a1:59:74:66: 52:8e:d5:b3:f1:7d:b8:40:97:1a:80:11:a9:53:29: 66:23:2c:8c:d2:cc:a2:60:03:4e:bd:2d:f3:09:68: 69:13:24:d2:56:3c:aa:77:9b:61:71:44:f1:27:ee: 3d:18:d8:7d:81:12:0e:3c:9b:d1:0d:db:e3:da:b4: dd:8c:34:9d:f5:21:23:f4:e4:44:a3:31:cb:d7:46: 50:cd:6c:c9:cb:6f:12:b6:84:ff:fd:d2:bc:8f:04: 5c:d4:91:cf:a2:78:67:db:d8:ed:c6:05:65:1a:3d: 60:d3:4c:22:32:8f:6d:78:b4:83:ba:ef:34:2c:b8: 49:92:a3:28:5f:17:71:cd:02:8f:18:87:d9:b9:14: f3:ab:30:5c:92:0b:40:f3:01:e9:cd:71:e9:9a:80: 3a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0F:C2:28:9E:27:70:06:FF:6C:B3:36:90:7A:E8:CC:16:AB:09:8E X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.81.0-119.46.82.255 IPv6: 2001:fb0:10a2::/48 Signature Algorithm: sha256WithRSAEncryption 61:25:f3:31:c8:c8:d6:88:b1:2a:b5:42:62:a1:f5:6e:6d:d1: 0a:d1:2c:1a:b1:76:5b:56:68:3e:1e:00:4c:4b:1c:a3:ed:d2: 7b:9c:2c:a5:5e:48:6a:86:44:c4:71:91:56:48:8e:38:c1:3d: 46:a7:84:de:95:93:80:bc:5d:59:2d:ce:85:a8:49:1f:bc:00: e9:e3:d0:c3:18:74:9a:4b:c5:ec:f5:da:b4:da:4c:b8:13:c7: 64:46:a1:26:30:ba:8d:03:25:dc:21:a6:74:26:67:e9:f0:71: 40:f3:4c:de:ee:a7:c8:d9:16:c9:9e:cf:c0:22:2f:71:a7:5d: e3:ca:37:80:57:9a:60:54:1f:94:55:8f:55:cc:27:98:63:f1: f3:f5:3c:0c:cf:f9:f7:c2:8a:2b:98:c5:a4:4c:b5:f7:b1:a5: 24:15:4c:19:a5:02:f9:93:95:02:6f:24:e8:8c:a0:e2:de:bc: fe:48:73:5f:f1:4e:1d:56:71:04:cc:3c:82:53:19:dc:8e:11: a0:25:e9:79:da:87:03:d7:fc:e5:81:12:47:fa:b4:c7:46:75: 28:f0:ec:cb:9c:5b:90:e4:f0:09:8e:15:91:e9:02:9b:fa:7e: e7:6c:7c:c9:c5:e3:dc:26:ea:dd:b5:db:ae:49:cc:5d:05:9f: 56:02:47:03 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICNsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTE5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMzNy1mYWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSHmvLFmgUTglnSuAJ3PQViI2X0x4O0ISqv9bzSnniBemABHV5Te0J1vgtAk 3AHlpkay2eQfs+RLsJI/s0r+EG+kBCkDCa6qv2ok3kZuoFxyaF2k+JvVveCJIXCp 9SMAFoPHQ6FZdGZSjtWz8X24QJcagBGpUylmIyyM0syiYANOvS3zCWhpEyTSVjyq d5thcUTxJ+49GNh9gRIOPJvRDdvj2rTdjDSd9SEj9OREozHL10ZQzWzJy28StoT/ /dK8jwRc1JHPonhn29jtxgVlGj1g00wiMo9teLSDuu80LLhJkqMoXxdxzQKPGIfZ uRTzqzBckgtA8wHpzXHpmoA65QIDAQABo4ICrjCCAqowHQYDVR0OBBYEFI4Pwiie J3AG/2yzNpB66MwWqwmOMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTE3MDgwRUEx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAHcuUQMEAHcuUjAPBAIAAjAJAwcAIAEPsBCiMA0GCSqG SIb3DQEBCwUAA4IBAQBhJfMxyMjWiLEqtUJiofVubdEK0SwasXZbVmg+HgBMSxyj 7dJ7nCylXkhqhkTEcZFWSI44wT1Gp4TelZOAvF1ZLc6FqEkfvADp49DDGHSaS8Xs 9dq02ky4E8dkRqEmMLqNAyXcIaZ0Jmfp8HFA80ze7qfI2RbJns/AIi9xp13jyjeA V5pgVB+UVY9VzCeYY/Hz9TwMz/n3woormMWkTLX3saUkFUwZpQL5k5UCbyTojKDi 3rz+SHNf8U4dVnEEzDyCUxncjhGgJel52ocD1/zlgRJH+rTHRnUo8OzLnFuQ5PAJ jhWR6QKb+n7nbHzJxePcJurdtduuScxdBZ9WAkcD -----END CERTIFICATE-----Generated at Sat May 18 15:58:21 2024 by rpki-client on console-ams.rpki-client.org