$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54CF668E1E0111E9A590C837C4F9AE02.roa File: 54CF668E1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: b5OgowlP9WPpoRddTXED4IyUGqZy7CG0xJJOZHzMMNQ= Subject key identifier: 60:3C:F5:51:34:16:E8:23:19:95:A8:30:47:04:FE:5A:4B:B1:05:7D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38CC Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54CF668E1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:35 +0000 ROA not before: Tue 16 Jul 2024 14:31:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55868 IP address blocks: 119.46.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14540 (0x38cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC Validity Not Before: Jul 16 14:31:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968446-5e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cb:40:4d:47:6f:35:0e:bc:5f:61:01:d1:31: 84:31:57:a9:10:19:e7:79:b4:69:76:31:e5:04:4a: 35:dc:9d:46:30:f8:7a:c1:87:89:b8:a7:22:56:48: f1:d2:4c:61:7b:62:6a:d4:e5:ed:2f:af:b1:d0:25: 43:46:04:27:b3:3b:0e:b6:b1:77:50:9d:4b:5e:f0: 20:1a:6a:dc:c9:34:bb:bf:8d:46:83:23:2d:ef:1d: 3f:df:ec:49:8b:94:48:8e:68:13:dd:46:86:50:63: 36:f2:d7:c0:05:c3:f4:2b:9f:0c:13:0a:ee:af:aa: 1b:42:e2:2d:ed:ac:24:aa:74:25:ea:f8:4b:a1:0e: 28:5a:ca:7e:a7:3f:b6:8a:2d:4a:88:b1:e3:01:80: dc:84:f9:ce:da:34:1c:2d:e1:a3:c8:2d:b2:16:a5: cc:e9:4b:71:26:3e:f7:7b:da:7e:af:06:8f:d0:a9: 98:77:41:1d:0b:83:b8:37:f7:b6:b3:e9:e9:57:39: b3:7e:ba:f5:0e:e7:29:fc:fc:8a:23:5d:1f:2a:d1: 1e:6f:61:40:ff:77:01:0b:12:15:dd:01:8d:e8:0a: 9f:b5:1e:bd:4d:80:3c:ca:2f:f0:b5:39:06:27:b6: b3:48:78:57:af:c3:9e:cb:59:52:ea:8a:5f:ee:0d: 2c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3C:F5:51:34:16:E8:23:19:95:A8:30:47:04:FE:5A:4B:B1:05:7D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54CF668E1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.245.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:1b:05:19:9f:d6:37:e7:86:c2:01:13:8a:83:7a:02:41:58: b8:5e:3c:0a:a8:4b:19:21:14:ae:30:63:09:3b:eb:07:fc:38: 42:8a:4a:8c:2b:c5:43:ff:0f:09:c4:d1:73:50:f1:d6:e5:32: e3:3d:ed:cb:da:c7:54:89:93:b6:c5:6e:0d:93:0f:27:24:4d: 43:4a:58:4d:ae:b0:37:e2:64:91:20:16:45:e1:af:81:f2:d5: 41:90:4e:53:00:e7:d2:7b:63:30:22:4a:46:db:d0:ec:72:6d: ce:64:1f:bd:15:8d:fe:ac:a7:2d:c1:ea:e8:b8:48:19:6a:1a: e5:73:29:36:c2:5f:15:69:1c:90:28:1b:bd:95:b1:4f:1f:55: 9c:e6:af:6d:af:06:10:15:02:23:59:40:67:c7:56:1d:16:47: bd:ee:79:67:4b:85:5a:af:f4:bf:a0:b2:a5:8b:92:06:8d:76: c2:bd:f5:78:d2:8b:be:fe:eb:82:f2:3f:8e:b4:e9:80:f6:f6: c8:51:70:bd:b1:62:bc:30:59:a1:ac:cb:10:18:17:40:80:53: c7:ce:4d:e5:4d:85:e5:81:8a:fc:c6:c8:a3:c3:f2:9b:fc:34: fb:83:a2:bf:48:cb:b3:19:38:6d:86:7a:a4:c9:09:e1:2d:99: cc:15:17:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0Ni01ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08tATUdvNQ68X2EB0TGEMVepEBnnebRpdjHlBEo13J1GMPh6wYeJuKciVkjx 0kxhe2Jq1OXtL6+x0CVDRgQnszsOtrF3UJ1LXvAgGmrcyTS7v41GgyMt7x0/3+xJ i5RIjmgT3UaGUGM28tfABcP0K58MEwrur6obQuIt7awkqnQl6vhLoQ4oWsp+pz+2 ii1KiLHjAYDchPnO2jQcLeGjyC2yFqXM6UtxJj73e9p+rwaP0KmYd0EdC4O4N/e2 s+npVzmzfrr1Ducp/PyKI10fKtEeb2FA/3cBCxIV3QGN6AqftR69TYA8yi/wtTkG J7azSHhXr8Oey1lS6opf7g0scwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGA89VE0 FugjGZWoMEcE/lpLsQV9MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTRDRjY2OEUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3LvUwDQYJKoZIhvcNAQELBQADggEBAAsbBRmf1jfnhsIB E4qDegJBWLhePAqoSxkhFK4wYwk76wf8OEKKSowrxUP/DwnE0XNQ8dblMuM97cva x1SJk7bFbg2TDyckTUNKWE2usDfiZJEgFkXhr4Hy1UGQTlMA59J7YzAiSkbb0Oxy bc5kH70Vjf6spy3B6ui4SBlqGuVzKTbCXxVpHJAoG72VsU8fVZzmr22vBhAVAiNZ QGfHVh0WR73ueWdLhVqv9L+gsqWLkgaNdsK99XjSi77+64LyP4606YD29shRcL2x YrwwWaGsyxAYF0CAU8fOTeVNheWBivzGyKPD8pv8NPuDor9Iy7MZOG2GeqTJCeEt mcwVF0k= -----END CERTIFICATE-----Generated at Sun Feb 16 20:49:56 2025 by rpki-client