$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5218D5921E0111E9A590C837C4F9AE02.roa File: 5218D5921E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: l7A+9cJGdBGyOPK6B5lTHnKrBD7Nsr3nLh0xtGmogcE= Subject key identifier: 66:42:43:73:51:B6:1D:5A:5F:72:73:F9:06:AC:0D:D4:53:3C:57:64 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38C1 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5218D5921E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:26 +0000 ROA not before: Tue 16 Jul 2024 14:31:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55476 IP address blocks: 110.170.246.0/24 maxlen: 24 203.144.129.0/24 maxlen: 24 2001:fb0:101c::/48 maxlen: 48 2001:fb0:109e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14529 (0x38c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:26 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696843e-11c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:af:a1:9f:ac:2b:6a:3b:7c:a9:cd:2f:53:b9: 9f:28:c1:b3:b5:f0:ba:79:4d:c4:26:2e:91:ce:af: a1:e6:0c:f0:a2:d6:b1:28:c5:79:7e:a6:60:40:90: 1d:0b:08:50:3a:d2:61:c4:46:f4:6c:32:b9:fd:cc: a5:10:ca:8d:e9:cc:54:1d:ba:60:f1:49:66:38:2c: b9:b7:9e:66:75:0f:9d:33:89:0d:ba:cd:5c:10:74: 8a:d1:82:8b:d5:46:62:4c:fc:cb:fd:bf:2f:cb:fc: ea:a7:b3:21:36:c8:59:bc:e3:dd:ac:d9:14:86:56: 8b:9d:39:b1:1c:12:c9:97:69:b9:72:0e:c5:6c:8d: ef:ec:42:3d:7c:c2:2b:8e:ba:36:b6:4e:b6:1d:c9: f0:78:ca:89:ae:d9:68:11:ba:fc:8e:be:2a:fc:91: 31:f2:1f:71:11:fc:31:ad:12:36:cd:1a:5d:ba:da: 93:d3:dc:68:e5:12:ae:e5:d6:86:e9:b1:dc:a6:9d: f0:8f:bc:89:37:60:a6:db:21:4b:b0:09:76:50:b9: 8f:9a:d3:dd:3d:42:8d:31:cd:2e:bb:ed:d7:3e:30: 64:4c:2f:4c:e6:92:83:e8:24:7e:54:a8:91:e5:f7: 7f:11:42:c1:03:6b:fa:59:f7:e8:2f:dd:fc:81:66: d7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:42:43:73:51:B6:1D:5A:5F:72:73:F9:06:AC:0D:D4:53:3C:57:64 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5218D5921E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.246.0/24 203.144.129.0/24 IPv6: 2001:fb0:101c::/48 2001:fb0:109e::/48 Signature Algorithm: sha256WithRSAEncryption 8d:73:5f:42:48:31:86:f2:1a:92:7f:05:c1:c6:68:ac:8b:2a: c0:0b:d4:4e:a6:13:f2:70:f3:fd:4c:b7:5d:78:42:c3:8b:7e: 43:52:31:97:8b:d6:38:b1:3b:2f:56:2b:b3:23:27:e6:1d:ed: 73:b0:5b:e4:6a:99:6d:df:e5:85:e3:a5:2b:62:7b:4b:6b:08: fa:f1:66:46:a2:92:8c:b0:a7:16:c3:75:49:30:d5:6a:f3:03: 64:70:e1:87:36:27:75:e6:f4:f0:d9:02:82:e1:a2:c8:b5:30: 8b:b9:83:3a:c7:f6:b6:9b:2a:28:7d:ff:68:d8:44:97:ef:35: 07:8b:d3:6f:a1:df:83:32:3c:ee:2b:1e:78:f0:a4:bb:9e:84: 99:b7:4c:90:05:8a:ae:b8:fe:3b:8b:93:17:85:64:57:06:ec: ed:6e:af:b6:f2:95:89:0d:fa:14:16:fb:ce:8b:22:5b:a9:d4: 53:36:f0:14:fc:af:9f:f7:64:66:49:c4:5e:c1:c5:98:a7:e0: df:a9:89:3c:f8:f8:50:df:e4:33:3a:4f:8d:06:c4:de:4e:d9: 9a:5a:98:b9:39:f5:a2:1a:d3:9b:73:b8:2d:76:68:cf:a3:32: 7d:71:7c:24:b5:04:1b:54:93:80:bf:ab:75:40:83:c6:e4:33: 33:63:7b:f7 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICOMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTI2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQzZS0xMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyK+hn6wrajt8qc0vU7mfKMGztfC6eU3EJi6Rzq+h5gzwotaxKMV5fqZgQJAd CwhQOtJhxEb0bDK5/cylEMqN6cxUHbpg8UlmOCy5t55mdQ+dM4kNus1cEHSK0YKL 1UZiTPzL/b8vy/zqp7MhNshZvOPdrNkUhlaLnTmxHBLJl2m5cg7FbI3v7EI9fMIr jro2tk62HcnweMqJrtloEbr8jr4q/JEx8h9xEfwxrRI2zRpdutqT09xo5RKu5daG 6bHcpp3wj7yJN2Cm2yFLsAl2ULmPmtPdPUKNMc0uu+3XPjBkTC9M5pKD6CR+VKiR 5fd/EULBA2v6WffoL938gWbXiwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFGZCQ3NR th1aX3Jz+QasDdRTPFdkMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTIxOEQ1OTIx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBABuqvYDBADLkIEwGAQCAAIwEgMHACABD7AQHAMHACABD7AQ njANBgkqhkiG9w0BAQsFAAOCAQEAjXNfQkgxhvIakn8FwcZorIsqwAvUTqYT8nDz /Uy3XXhCw4t+Q1Ixl4vWOLE7L1YrsyMn5h3tc7Bb5GqZbd/lheOlK2J7S2sI+vFm RqKSjLCnFsN1STDVavMDZHDhhzYndeb08NkCguGiyLUwi7mDOsf2tpsqKH3/aNhE l+81B4vTb6HfgzI87iseePCku56EmbdMkAWKrrj+O4uTF4VkVwbs7W6vtvKViQ36 FBb7zosiW6nUUzbwFPyvn/dkZknEXsHFmKfg36mJPPj4UN/kMzpPjQbE3k7ZmlqY uTn1ohrTm3O4LXZoz6MyfXF8JLUEG1STgL+rdUCDxuQzM2N79w== -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org