$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa File: 5724BB281E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: fy2+Pf8SGWN4VaFgyF+R2GIN/Muw3MG22TN441sBHTk= Subject key identifier: 6B:46:D1:A9:91:18:6C:A5:65:AC:A6:64:F1:BC:32:59:A2:D0:9F:4D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38CF Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:37 +0000 ROA not before: Tue 16 Jul 2024 14:31:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55938 IP address blocks: 61.90.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14543 (0x38cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968449-b96b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7d:fb:77:06:f7:f4:0b:f1:6f:e1:b8:21:e2: e1:86:dc:b9:b7:ef:75:d2:b2:00:78:48:13:f5:85: eb:a6:a6:ed:ba:b6:9d:40:36:1d:39:87:fa:cc:39: 02:85:00:15:d0:1f:90:be:18:22:89:d0:97:04:17: 9f:db:1a:ad:90:55:a0:7c:18:33:d0:43:0e:bc:26: f2:eb:db:01:8b:46:54:d8:af:9d:62:71:47:c4:c5: fd:d4:f3:32:46:53:31:17:58:43:cc:c8:bf:f8:65: 06:29:e5:48:50:65:5d:90:32:ae:60:8d:28:35:8d: 8c:c9:d6:e5:36:4c:bf:62:43:75:5a:23:b8:5c:1a: 0b:58:c7:e0:88:3b:48:ab:47:5c:71:21:9c:80:46: 99:3e:a1:8c:aa:ce:90:e0:f2:a8:7f:06:8f:1b:b8: c1:94:c1:b7:9c:1d:7c:9c:71:9b:18:0b:01:a5:b0: 64:19:41:5d:ac:12:e5:5b:85:ed:da:a8:89:30:a2: 62:c3:15:30:7f:bb:13:d4:b9:bd:4c:5d:b2:b7:a1: ee:92:44:8c:a3:58:c0:b1:7d:b0:03:a5:f9:58:fb: ad:f2:8a:c2:9b:09:51:93:33:93:61:bd:c2:8f:9f: e8:73:06:8e:8a:d3:85:9b:0a:e1:c5:24:7b:55:df: cf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:46:D1:A9:91:18:6C:A5:65:AC:A6:64:F1:BC:32:59:A2:D0:9F:4D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/5724BB281E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.209.0/24 Signature Algorithm: sha256WithRSAEncryption 38:8e:a1:4b:c8:80:61:51:84:bc:a9:19:be:e9:3a:7a:56:55: 0d:bc:f5:e4:ad:61:8a:d6:f7:c4:e8:51:a9:b3:6d:da:7e:98: c9:6f:8e:0f:ea:31:8f:26:b2:cd:41:ba:a7:de:63:6a:69:08: 58:21:db:49:ab:8b:6b:74:85:b1:bb:c5:10:0d:6c:89:c7:9e: 11:b5:1f:c6:51:ec:8b:c9:fc:0c:b0:2a:43:da:3b:d2:5b:05: 92:dc:c5:1e:f4:8c:25:31:1a:d5:e9:e1:62:a9:85:49:32:a8: 95:64:0c:8f:9d:ba:5a:8f:87:0b:dd:ab:6a:fd:ec:0a:4b:e8: fa:59:e7:7a:f0:91:4b:4c:f3:4b:5c:3e:5d:4d:e7:c2:a3:c5: 3f:10:74:68:35:50:be:34:e6:e9:1f:0e:ac:30:5f:d2:67:0d: 84:e2:ab:a9:f0:85:00:60:21:07:d1:ab:d5:0d:02:d9:93:38: 58:68:22:16:89:8f:f7:71:c7:2e:2a:93:a0:c7:46:cb:b6:42: 59:68:4e:be:88:73:06:b9:11:44:31:6a:01:e2:67:79:6f:5b: d4:ab:de:19:d8:db:89:47:d2:be:41:88:64:d1:9b:87:ff:0f: 2b:37:0e:b4:93:10:89:6b:4a:48:b2:d3:33:a1:3c:21:ba:c8: b2:c4:c9:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0OS1iOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH37dwb39Avxb+G4IeLhhty5t+910rIAeEgT9YXrpqbturadQDYdOYf6zDkC hQAV0B+QvhgiidCXBBef2xqtkFWgfBgz0EMOvCby69sBi0ZU2K+dYnFHxMX91PMy RlMxF1hDzMi/+GUGKeVIUGVdkDKuYI0oNY2MydblNky/YkN1WiO4XBoLWMfgiDtI q0dccSGcgEaZPqGMqs6Q4PKofwaPG7jBlMG3nB18nHGbGAsBpbBkGUFdrBLlW4Xt 2qiJMKJiwxUwf7sT1Lm9TF2yt6HukkSMo1jAsX2wA6X5WPut8orCmwlRkzOTYb3C j5/ocwaOitOFmwrhxSR7Vd/PDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGtG0amR GGylZaymZPG8Mlmi0J9NMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTcyNEJCMjgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WtEwDQYJKoZIhvcNAQELBQADggEBADiOoUvIgGFRhLyp Gb7pOnpWVQ289eStYYrW98ToUamzbdp+mMlvjg/qMY8mss1BuqfeY2ppCFgh20mr i2t0hbG7xRANbInHnhG1H8ZR7IvJ/AywKkPaO9JbBZLcxR70jCUxGtXp4WKphUky qJVkDI+dulqPhwvdq2r97ApL6PpZ53rwkUtM80tcPl1N58KjxT8QdGg1UL405ukf DqwwX9JnDYTiq6nwhQBgIQfRq9UNAtmTOFhoIhaJj/dxxy4qk6DHRsu2QlloTr6I cwa5EUQxagHiZ3lvW9Sr3hnY24lH0r5BiGTRm4f/Dys3DrSTEIlrSkiy0zOhPCG6 yLLEyQs= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org