$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5596B61C1E0111E9A590C837C4F9AE02.roa File: 5596B61C1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: D8UIJ+2HcRgByRpzKxgaMLSITtouBsIcO2TCMzP+aQ8= Subject key identifier: BD:CF:F9:96:02:F0:84:7D:4E:47:74:13:D2:4B:28:D3:18:05:A6:EF Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38CD Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5596B61C1E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:35 +0000 ROA not before: Tue 16 Jul 2024 14:31:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55916 IP address blocks: 58.97.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14541 (0x38cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC Validity Not Before: Jul 16 14:31:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968447-05f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:48:e5:be:b2:33:ab:8d:23:d5:ff:5f:a1:86: 2a:99:1f:a8:e5:9d:48:85:38:45:cf:e0:d4:9b:be: cc:18:ab:fb:ed:4b:a6:68:0f:45:06:bd:f1:ce:9a: 69:76:16:fd:04:db:2c:ae:bb:29:63:87:c8:a2:0b: 93:04:72:78:13:79:6e:99:9f:56:4d:a1:93:05:83: 26:48:34:a5:a6:e3:c8:1e:8b:76:7b:bd:d3:8e:e5: cf:0b:12:e4:ad:c5:d5:70:bd:01:eb:d8:fe:2b:30: 60:94:2d:04:07:47:3e:e1:41:b0:4e:25:71:ed:66: c8:da:21:da:33:d3:7a:38:bb:a1:cb:31:c8:ff:6d: 57:0a:12:dc:51:e0:5b:49:20:78:7a:8f:1c:ae:87: 03:6f:88:81:e1:f6:9c:fa:1d:43:40:8f:40:50:d1: bb:71:80:6a:a3:39:c0:4e:20:f3:e6:f8:1d:aa:64: 84:27:b0:48:df:b6:ce:0c:14:73:18:29:b3:79:82: af:0f:2c:fb:2d:71:94:e1:4b:3e:25:bb:58:be:df: 3c:88:e1:a4:91:d1:f5:75:7b:5c:0a:1c:b3:0f:2a: 9c:f9:c6:7a:ff:86:b6:a9:b5:97:ba:80:c2:c4:12: 1b:8a:ec:1f:b5:f3:f2:87:21:ef:1b:2a:25:10:d5: dd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CF:F9:96:02:F0:84:7D:4E:47:74:13:D2:4B:28:D3:18:05:A6:EF X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5596B61C1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.122.0/24 Signature Algorithm: sha256WithRSAEncryption 50:b6:f6:53:7d:c0:9a:80:0d:f9:e0:4b:cd:63:c4:76:7e:78: a3:44:d6:5d:23:00:03:86:5f:d5:68:39:1e:a4:09:df:12:fa: 4c:2b:fd:93:0f:14:a3:0e:ae:d3:6d:0e:a4:a5:ff:4c:e0:e1: 6a:4d:59:39:5f:20:a9:4a:a9:fe:f9:a0:4f:0c:d6:b2:ef:3b: a4:8a:1c:62:44:94:f6:aa:bf:90:b6:bf:62:74:01:89:fa:28: 50:f4:e5:b5:23:99:4d:93:5b:3f:69:86:a2:25:ee:60:e8:ef: 10:0e:8e:bc:56:a9:2c:60:d4:a0:49:59:c7:03:37:7e:12:ef: db:fb:78:c6:15:10:25:bc:c6:13:76:8a:91:68:e9:d8:24:6b: db:15:78:12:dc:2a:95:85:5c:50:86:1f:38:00:6b:eb:b6:ff: 6d:37:a4:a8:c0:0f:fc:d3:e5:d1:ca:aa:8a:89:8e:85:b7:9e: 77:80:fa:0e:ae:cc:44:b5:19:09:af:fe:dd:da:0f:45:59:68: b6:07:23:7e:08:88:5b:18:14:92:ce:25:86:06:e1:09:db:ea: ac:b5:4b:44:14:92:9d:cd:6a:ad:50:bb:4d:63:a2:58:88:7d: 0c:ef:1a:03:01:a4:95:b2:c9:2d:27:b3:a0:26:b4:07:ef:9e: 7f:97:c7:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0Ny0wNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykjlvrIzq40j1f9foYYqmR+o5Z1IhThFz+DUm77MGKv77UumaA9FBr3xzppp dhb9BNssrrspY4fIoguTBHJ4E3lumZ9WTaGTBYMmSDSlpuPIHot2e73TjuXPCxLk rcXVcL0B69j+KzBglC0EB0c+4UGwTiVx7WbI2iHaM9N6OLuhyzHI/21XChLcUeBb SSB4eo8crocDb4iB4fac+h1DQI9AUNG7cYBqoznATiDz5vgdqmSEJ7BI37bODBRz GCmzeYKvDyz7LXGU4Us+JbtYvt88iOGkkdH1dXtcChyzDyqc+cZ6/4a2qbWXuoDC xBIbiuwftfPyhyHvGyolENXdgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL3P+ZYC 8IR9Tkd0E9JLKNMYBabvMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTU5NkI2MUMx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6YXowDQYJKoZIhvcNAQELBQADggEBAFC29lN9wJqADfng S81jxHZ+eKNE1l0jAAOGX9VoOR6kCd8S+kwr/ZMPFKMOrtNtDqSl/0zg4WpNWTlf IKlKqf75oE8M1rLvO6SKHGJElPaqv5C2v2J0AYn6KFD05bUjmU2TWz9phqIl7mDo 7xAOjrxWqSxg1KBJWccDN34S79v7eMYVECW8xhN2ipFo6dgka9sVeBLcKpWFXFCG HzgAa+u2/203pKjAD/zT5dHKqoqJjoW3nneA+g6uzES1GQmv/t3aD0VZaLYHI34I iFsYFJLOJYYG4Qnb6qy1S0QUkp3Naq1Qu01joliIfQzvGgMBpJWyyS0ns6AmtAfv nn+Xx+o= -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:59 2025 by rpki-client