$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa File: 517080EA1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: 1kf1opFNi9bys5mFw3njUKF4UVw7tjqk1ee3z4YvXDQ= Subject key identifier: 99:0F:BE:D7:05:6B:FC:F6:E7:9A:D6:70:F7:A0:C0:53:E6:65:4B:0C Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38C0 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:25 +0000 ROA not before: Tue 16 Jul 2024 14:31:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55451 IP address blocks: 119.46.81.0/24 maxlen: 24 119.46.82.0/24 maxlen: 24 2001:fb0:10a2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14528 (0x38c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696843d-fc7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:46:f6:e4:34:36:fd:82:f7:31:e3:a3:ac:25: 97:0c:4f:20:59:ac:cd:dd:10:6d:c0:c7:d3:57:e0: 06:fe:a2:a6:9a:3e:09:eb:e9:b8:8a:d0:f2:48:14: af:49:49:83:88:3b:66:d1:e9:07:0e:d0:86:ae:63: 24:ca:db:08:e2:ca:0e:7c:17:ff:65:45:c5:70:cd: 19:a5:e6:8d:38:8e:ee:4d:49:43:e0:02:c8:56:8c: 55:e3:71:0a:e0:5e:0e:18:98:2f:9e:7e:1b:4a:c9: f7:41:23:01:30:93:57:33:3f:33:ab:85:50:5a:45: a7:8c:fb:19:f5:a7:1e:aa:f3:dc:49:90:bd:5f:ed: 86:ce:35:62:cd:f2:94:14:77:10:77:79:c1:6f:f4: 1a:11:50:fc:96:89:a1:45:07:13:eb:84:8a:98:4f: ff:10:8a:b2:35:2b:8d:a6:a2:1b:14:2c:81:5f:2c: 85:01:eb:58:78:4e:6e:26:73:37:af:d9:5a:25:2c: b9:46:d6:fc:e4:73:ef:31:27:40:07:c5:0d:72:c9: e1:63:75:25:ab:cf:7a:8a:72:21:22:22:e7:48:ba: 01:12:b4:02:75:2b:ac:0f:0d:5c:d9:b8:85:3d:a8: b6:9c:14:a9:af:43:d7:ea:bb:53:89:0a:ec:4f:ff: da:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0F:BE:D7:05:6B:FC:F6:E7:9A:D6:70:F7:A0:C0:53:E6:65:4B:0C X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/517080EA1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.81.0-119.46.82.255 IPv6: 2001:fb0:10a2::/48 Signature Algorithm: sha256WithRSAEncryption 31:5c:45:46:cf:fa:14:df:eb:6d:56:90:62:6f:10:3e:d2:7b: 2f:86:a7:0b:8b:ed:2d:f6:f7:06:42:29:5c:cb:1e:78:32:a0: 0d:a8:cd:c0:05:53:5f:e0:23:a4:a7:e8:bf:f8:83:e8:fd:2a: 31:d9:13:8e:64:85:4e:58:83:91:ba:f6:ce:0a:95:05:c8:19: bc:8d:9f:29:d3:29:ca:c0:16:f7:7a:ad:49:5d:12:66:cc:b9: 72:09:29:eb:60:7b:43:09:e3:9d:b6:4c:3e:b2:6a:12:de:0e: 88:ac:8c:1d:e1:f7:1a:5d:a9:9e:22:61:d4:a2:86:e9:82:b1: f0:d7:2e:33:a3:0d:e9:a6:93:78:42:14:b6:6e:c7:45:e8:c2: 4d:bc:4e:50:81:e4:35:d3:6f:3b:47:18:f7:21:f8:37:a4:32: 77:d1:c5:9a:8a:43:ec:59:61:af:71:98:0b:d0:6f:10:8b:0e: 90:30:09:99:31:68:35:af:bf:9a:d8:57:16:d0:92:62:97:0c: 2f:f0:ee:73:79:86:be:3c:a0:4e:79:86:df:75:c6:12:53:ea: f6:3e:c6:d6:89:48:f2:44:8e:0d:62:4c:5c:9a:09:0e:05:6d: d1:41:35:4b:60:dc:68:d2:9f:db:57:a5:1a:d4:24:73:83:6f: 2f:15:97:dc -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICOMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzZC1mYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0b25DQ2/YL3MeOjrCWXDE8gWazN3RBtwMfTV+AG/qKmmj4J6+m4itDySBSv SUmDiDtm0ekHDtCGrmMkytsI4soOfBf/ZUXFcM0ZpeaNOI7uTUlD4ALIVoxV43EK 4F4OGJgvnn4bSsn3QSMBMJNXMz8zq4VQWkWnjPsZ9aceqvPcSZC9X+2GzjVizfKU FHcQd3nBb/QaEVD8lomhRQcT64SKmE//EIqyNSuNpqIbFCyBXyyFAetYeE5uJnM3 r9laJSy5Rtb85HPvMSdAB8UNcsnhY3Ulq896inIhIiLnSLoBErQCdSusDw1c2biF Pai2nBSpr0PX6rtTiQrsT//aAQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFJkPvtcF a/z255rWcPegwFPmZUsMMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTE3MDgwRUEx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAHcuUQMEAHcuUjAPBAIAAjAJAwcAIAEPsBCiMA0GCSqG SIb3DQEBCwUAA4IBAQAxXEVGz/oU3+ttVpBibxA+0nsvhqcLi+0t9vcGQilcyx54 MqANqM3ABVNf4COkp+i/+IPo/Sox2ROOZIVOWIORuvbOCpUFyBm8jZ8p0ynKwBb3 eq1JXRJmzLlyCSnrYHtDCeOdtkw+smoS3g6IrIwd4fcaXameImHUoobpgrHw1y4z ow3pppN4QhS2bsdF6MJNvE5QgeQ10287Rxj3Ifg3pDJ30cWaikPsWWGvcZgL0G8Q iw6QMAmZMWg1r7+a2FcW0JJilwwv8O5zeYa+PKBOeYbfdcYSU+r2PsbWiUjyRI4N YkxcmgkOBW3RQTVLYNxo0p/bV6Ua1CRzg28vFZfc -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:59 2024 by rpki-client on console-fra.rpki-client.org