$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa File: 85DF1F2852C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: ll1meT+3/WL6CgwXy9zlyzn/HVEaMlw3T+Vn8ThJ1VQ= Subject key identifier: 91:3F:E6:43:C0:97:E5:89:91:4A:BB:CC:9F:CF:41:F8:FF:B6:9F:67 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38A0 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:56 +0000 ROA not before: Tue 16 Jul 2024 14:30:56 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 21734 IP address blocks: 61.90.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14496 (0x38a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:56 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968420-1570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:7c:3a:d7:80:89:d1:43:65:88:a8:d5:5c: 7a:0f:8e:9f:b8:21:83:24:ee:59:c7:0d:59:80:08: 7c:ab:d3:9d:85:c4:c3:a6:3d:55:b2:ba:52:af:6d: 25:cd:31:05:ac:6e:ce:9d:aa:58:f5:c3:f4:15:c3: 2f:56:89:5d:64:04:6d:06:2a:3d:41:0a:19:6e:4b: 6e:b8:c1:1f:e3:15:60:79:0c:99:a9:bf:1a:3c:2e: 65:98:8e:95:01:62:3b:6c:21:95:1d:8a:e2:60:a6: 89:e1:91:31:c6:6d:06:8a:ec:75:2b:5a:90:f1:aa: 3e:52:96:7d:2b:d7:d9:8a:d2:e7:b1:68:fc:d9:1c: c3:84:2c:57:3f:44:a0:fc:43:e7:ee:c4:7b:4d:98: 74:ea:95:8d:b3:50:86:57:9a:05:03:3e:9d:19:d2: e8:cf:d3:15:8b:04:d4:6f:21:85:e0:66:cb:d5:5f: 8c:21:62:13:76:a8:c6:ca:75:1e:5c:5c:e3:74:81: 4f:e9:63:a3:32:19:5e:16:40:a9:af:f4:8b:6a:da: 87:6a:07:bf:58:cc:8f:67:f9:cd:e8:0e:d3:21:f9: c5:f4:0f:e7:d2:66:84:69:6b:1d:f7:63:5d:da:a4: 72:66:00:c9:a0:e3:3b:52:cb:96:2c:95:12:8f:47: 2e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3F:E6:43:C0:97:E5:89:91:4A:BB:CC:9F:CF:41:F8:FF:B6:9F:67 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.251.0/24 Signature Algorithm: sha256WithRSAEncryption 06:7a:9b:fc:7a:59:a7:1a:d9:e4:82:c6:b2:04:9d:ae:c0:6f: c6:47:26:0e:36:24:d6:cb:3d:b1:d5:4e:11:2d:32:a7:c2:53: d9:45:3c:b8:92:9f:a4:f6:d3:c4:4d:1c:d0:30:40:af:ee:d1: 25:2d:a7:aa:f2:2a:93:3f:d9:a2:65:47:ab:ad:66:72:54:59: 02:8d:25:1d:a3:be:0d:37:1f:5f:50:f5:82:29:66:6f:b5:f0: 9d:39:5a:be:e7:5e:58:f5:dc:9e:74:db:be:5b:c2:f6:5b:8b: 14:f9:cf:b9:5c:26:22:ac:ad:40:c5:66:03:be:a0:8e:d9:6c: 71:c5:2e:68:b9:a4:50:1d:ac:02:51:43:f3:4f:70:8d:c6:7a: ec:18:8d:26:98:41:21:b5:1c:b3:5f:6a:2b:b5:ee:dc:ad:c4: 7b:7f:a7:75:f3:f3:3f:b1:5f:24:e2:c6:52:dc:7d:7e:fa:4a: b4:11:bc:8c:4e:72:3b:96:53:9d:75:a5:b5:24:31:e9:20:ce: e3:77:16:aa:8d:d7:50:bf:ea:47:ee:5d:7b:98:ec:76:48:e5: e9:67:21:cd:ba:50:2a:3e:a2:f3:00:6e:f2:3e:80:5d:29:3f: 85:4f:f8:1d:92:2f:01:a6:5e:d1:b1:6b:c0:48:d8:6e:ab:6f: 35:e8:aa:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDU2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyMC0xNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz98OteAidFDZYio1Vx6D46fuCGDJO5Zxw1ZgAh8q9OdhcTDpj1VsrpSr20l zTEFrG7OnapY9cP0FcMvVoldZARtBio9QQoZbktuuMEf4xVgeQyZqb8aPC5lmI6V AWI7bCGVHYriYKaJ4ZExxm0Giux1K1qQ8ao+UpZ9K9fZitLnsWj82RzDhCxXP0Sg /EPn7sR7TZh06pWNs1CGV5oFAz6dGdLoz9MViwTUbyGF4GbL1V+MIWITdqjGynUe XFzjdIFP6WOjMhleFkCpr/SLatqHage/WMyPZ/nN6A7TIfnF9A/n0maEaWsd92Nd 2qRyZgDJoOM7UsuWLJUSj0cu0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJE/5kPA l+WJkUq7zJ/PQfj/tp9nMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODVERjFGMjg1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WvswDQYJKoZIhvcNAQELBQADggEBAAZ6m/x6Waca2eSC xrIEna7Ab8ZHJg42JNbLPbHVThEtMqfCU9lFPLiSn6T208RNHNAwQK/u0SUtp6ry KpM/2aJlR6utZnJUWQKNJR2jvg03H19Q9YIpZm+18J05Wr7nXlj13J50275bwvZb ixT5z7lcJiKsrUDFZgO+oI7ZbHHFLmi5pFAdrAJRQ/NPcI3GeuwYjSaYQSG1HLNf aiu17tytxHt/p3Xz8z+xXyTixlLcfX76SrQRvIxOcjuWU511pbUkMekgzuN3FqqN 11C/6kfuXXuY7HZI5elnIc26UCo+ovMAbvI+gF0pP4VP+B2SLwGmXtGxa8BI2G6r bzXoqjo= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:00 2024 by rpki-client on console-fra.rpki-client.org