$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/881BE2C652C911EA93D1814FC4F9AE02.roa File: 881BE2C652C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: Mgx7s/XZCcZseTXnJBNVYACWPZLnaRoEidKfvxRqGJU= Subject key identifier: BE:4E:31:ED:81:61:D7:8C:AE:E7:2B:84:EF:88:BD:95:52:C3:E4:8F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38AF Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/881BE2C652C911EA93D1814FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:10 +0000 ROA not before: Tue 16 Jul 2024 14:31:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38081 IP address blocks: 122.144.29.0/24 maxlen: 24 122.144.30.0/24 maxlen: 24 122.144.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14511 (0x38af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696842d-a63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:c0:81:8c:73:ed:f2:c7:88:53:38:f8:fc: 19:d3:6e:02:3b:12:44:ab:db:26:bf:73:63:4e:f8: f5:3d:24:6a:ad:e1:d6:20:dd:90:e4:df:f8:55:a5: 1b:13:6c:10:bd:f9:45:1d:7e:51:20:f4:b4:f6:2c: 37:21:ed:28:6c:8f:45:5c:2a:40:98:70:2d:20:fb: a8:24:be:81:ee:75:95:82:c2:2a:17:40:25:26:df: 75:e4:1f:8a:ae:f2:51:bd:88:30:44:1a:a1:41:b8: 81:51:80:df:97:bc:d7:01:db:65:0e:f6:6d:aa:d5: fc:e7:91:57:d8:af:d8:11:c6:8c:80:f1:f0:c9:d2: 26:f8:5d:a1:02:cd:79:d0:8e:5e:45:f6:75:ef:1a: 11:d9:29:f5:23:76:96:16:ee:5e:b9:c5:b3:78:8a: a9:f9:44:d5:02:4a:a9:e4:a7:b5:b6:6a:db:45:88: 05:2c:f5:8c:98:da:4a:07:e3:3d:53:10:fd:a7:42: f8:28:e1:0f:cc:68:33:ce:4b:0f:e3:1e:5d:44:c2: de:a8:9d:2f:a3:41:4c:0f:3e:11:8c:c8:5e:ba:8f: 7f:43:ad:9c:d6:da:61:78:9a:b0:ce:00:d5:22:b6: 6c:dd:e6:69:8e:2a:fe:68:d4:35:cd:f4:02:2b:db: ba:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4E:31:ED:81:61:D7:8C:AE:E7:2B:84:EF:88:BD:95:52:C3:E4:8F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/881BE2C652C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.144.29.0-122.144.31.255 Signature Algorithm: sha256WithRSAEncryption a8:32:eb:bb:0c:e9:b5:62:43:e0:64:08:b3:f4:d3:4f:b8:a9: db:46:0e:df:37:a0:07:92:7f:d7:d7:7b:88:90:af:2a:94:e6: e2:c9:bb:24:95:fc:65:50:da:fb:6f:68:47:4f:9a:f8:5b:e3: 41:90:aa:42:1e:2b:9b:e1:34:6e:73:00:70:71:34:bc:c1:5c: 80:19:c4:eb:56:1c:f7:12:c1:46:cf:48:c1:52:ad:79:5a:26: 5f:cd:72:77:c4:18:53:9b:59:b7:31:2f:8b:00:e3:67:66:2a: 91:65:29:f6:fc:c6:f7:a7:46:6f:34:75:ec:aa:de:0a:c4:fa: 85:cc:ba:21:3c:6d:62:d4:af:22:7d:d6:02:b8:db:64:b1:f5: c0:17:05:91:28:38:a4:b1:f8:75:8c:3c:9a:67:79:7b:8e:94: 6c:0c:4d:7f:f7:74:ed:1c:c1:6e:93:13:49:6c:cf:f7:f7:e7: af:ec:f2:ce:20:18:24:34:c0:88:f6:1a:e9:c6:c4:52:f7:94: 5b:77:62:81:23:b4:29:0d:5e:d4:0b:85:96:b8:64:ae:a4:d6: eb:80:b0:9c:43:52:b7:c2:e6:26:21:55:02:f6:b4:1b:d0:ef: ad:70:43:29:da:01:54:73:7c:4c:84:6e:39:47:73:e7:40:dc: f6:31:e4:1e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICOK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyZC1hNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuenAgYxz7fLHiFM4+PwZ024COxJEq9smv3NjTvj1PSRqreHWIN2Q5N/4VaUb E2wQvflFHX5RIPS09iw3Ie0obI9FXCpAmHAtIPuoJL6B7nWVgsIqF0AlJt915B+K rvJRvYgwRBqhQbiBUYDfl7zXAdtlDvZtqtX855FX2K/YEcaMgPHwydIm+F2hAs15 0I5eRfZ17xoR2Sn1I3aWFu5eucWzeIqp+UTVAkqp5Ke1tmrbRYgFLPWMmNpKB+M9 UxD9p0L4KOEPzGgzzksP4x5dRMLeqJ0vo0FMDz4RjMheuo9/Q62c1tpheJqwzgDV IrZs3eZpjir+aNQ1zfQCK9u6EwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFL5OMe2B YdeMrucrhO+IvZVSw+SPMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODgxQkUyQzY1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAHqQHQMEBXqQADANBgkqhkiG9w0BAQsFAAOCAQEAqDLr uwzptWJD4GQIs/TTT7ip20YO3zegB5J/19d7iJCvKpTm4sm7JJX8ZVDa+29oR0+a +FvjQZCqQh4rm+E0bnMAcHE0vMFcgBnE61Yc9xLBRs9IwVKteVomX81yd8QYU5tZ tzEviwDjZ2YqkWUp9vzG96dGbzR17KreCsT6hcy6ITxtYtSvIn3WArjbZLH1wBcF kSg4pLH4dYw8mmd5e46UbAxNf/d07RzBbpMTSWzP9/fnr+zyziAYJDTAiPYa6cbE UveUW3digSO0KQ1e1AuFlrhkrqTW64CwnENSt8LmJiFVAva0G9DvrXBDKdoBVHN8 TIRuOUdz50Dc9jHkHg== -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org