$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa File: 85DF1F2852C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: uO/W61ngA1cpKs049LJ5zAgMUQZMGo18zEZklmvDoq8= Subject key identifier: 4A:34:AE:FD:98:43:F2:ED:60:F6:44:B6:92:10:B9:1C:18:00:04:55 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36A1 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:48 +0000 ROA not before: Sat 08 Jul 2023 14:30:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 21734 IP address blocks: 61.90.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13985 (0x36a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:48 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97318-a5a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a6:a0:ac:23:79:f4:4d:47:e6:80:41:14:c6: 8e:c6:35:d0:ef:e7:fa:4c:29:62:3f:ce:65:f1:6b: 46:6c:71:f9:0b:37:e7:03:86:fb:5f:27:2e:c1:46: 9f:60:0c:8a:c3:25:83:60:08:5b:90:76:ed:5f:98: 0e:54:a1:c9:c6:95:ca:a8:dd:30:a3:77:7b:63:71: 44:2c:7b:55:1a:e7:2e:90:30:91:df:d4:29:3b:05: c5:57:c6:b1:16:9c:c5:4e:cf:2e:d1:fd:da:87:d3: 16:9f:da:f4:66:ed:cf:83:34:eb:ab:61:68:19:53: 36:d2:85:8e:12:2b:72:53:67:ec:0a:03:d6:08:8d: ca:0a:3e:ae:d7:0b:78:cd:fd:d3:ce:d3:e1:d7:ae: 51:2e:ef:70:ea:5e:25:ae:39:83:d0:c7:ef:0d:fd: 22:a3:d3:98:83:42:cf:c5:74:69:ba:41:c1:01:e2: 95:89:3f:25:5a:ef:27:97:5c:66:2b:1b:2a:5e:50: c5:c4:2e:08:79:45:ad:f9:6b:ed:c9:9f:d5:c7:60: 1d:5d:33:9f:9c:d0:ae:6c:6d:24:2c:52:9d:a1:5f: 37:1d:b0:b4:ef:51:0c:26:27:5d:8a:30:f2:63:8c: dd:8b:01:1f:b4:4e:30:1c:d7:9b:1f:75:64:07:f9: bb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:34:AE:FD:98:43:F2:ED:60:F6:44:B6:92:10:B9:1C:18:00:04:55 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.251.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:95:03:59:e5:6a:ce:f5:a8:f9:ba:17:48:a5:24:18:e6:e0: d2:f9:ec:f6:c6:d9:8e:10:03:94:a2:0b:4e:81:96:a1:7b:c1: 34:03:15:8f:aa:00:56:f4:dc:89:7c:b1:35:80:e5:9a:a0:93: 54:dd:64:46:45:df:ad:2f:06:cf:a9:d6:b7:7e:8a:e0:72:fc: 8e:b1:2e:c9:92:7f:79:61:a1:12:9f:ab:9f:9a:34:55:db:df: e1:21:b0:63:57:82:79:52:4a:f5:0a:8f:32:35:c7:78:ab:1d: 35:44:50:58:a8:56:1e:1c:36:d1:f3:ce:f8:3a:00:6e:98:e4: f8:a5:62:66:6c:f4:4c:f5:57:1b:79:2f:df:5c:7e:88:7e:51: a8:e1:d9:69:39:27:5e:e9:25:07:e6:52:de:80:71:89:05:1f: 03:7b:9a:0e:10:16:55:23:3b:77:1a:6b:3e:a3:31:40:77:28: 46:33:10:96:e5:76:08:c5:56:72:90:08:44:83:23:fb:8e:f9: 9e:98:d7:c9:d7:02:2f:3e:fd:36:3c:62:6e:5e:cf:04:5b:fd: ad:0c:46:a4:d9:69:7b:6e:45:58:b4:97:a3:be:37:d5:eb:dd: b9:14:16:34:3c:41:ff:12:d8:af:c0:43:2c:40:8c:c5:25:12: bd:7a:14:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMxOC1hNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKagrCN59E1H5oBBFMaOxjXQ7+f6TCliP85l8WtGbHH5CzfnA4b7XycuwUaf YAyKwyWDYAhbkHbtX5gOVKHJxpXKqN0wo3d7Y3FELHtVGucukDCR39QpOwXFV8ax FpzFTs8u0f3ah9MWn9r0Zu3PgzTrq2FoGVM20oWOEityU2fsCgPWCI3KCj6u1wt4 zf3TztPh165RLu9w6l4lrjmD0MfvDf0io9OYg0LPxXRpukHBAeKViT8lWu8nl1xm KxsqXlDFxC4IeUWt+WvtyZ/Vx2AdXTOfnNCubG0kLFKdoV83HbC071EMJiddijDy Y4zdiwEftE4wHNebH3VkB/m70wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEo0rv2Y Q/LtYPZEtpIQuRwYAARVMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODVERjFGMjg1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WvswDQYJKoZIhvcNAQELBQADggEBAHqVA1nlas71qPm6 F0ilJBjm4NL57PbG2Y4QA5SiC06BlqF7wTQDFY+qAFb03Il8sTWA5Zqgk1TdZEZF 360vBs+p1rd+iuBy/I6xLsmSf3lhoRKfq5+aNFXb3+EhsGNXgnlSSvUKjzI1x3ir HTVEUFioVh4cNtHzzvg6AG6Y5PilYmZs9Ez1Vxt5L99cfoh+Uajh2Wk5J17pJQfm Ut6AcYkFHwN7mg4QFlUjO3caaz6jMUB3KEYzEJbldgjFVnKQCESDI/uO+Z6Y18nX Ai8+/TY8Ym5ezwRb/a0MRqTZaXtuRVi0l6O+N9Xr3bkUFjQ8Qf8S2K/AQyxAjMUl Er16FFY= -----END CERTIFICATE-----Generated at Thu May 16 16:14:30 2024 by rpki-client on console-fra.rpki-client.org