$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8956638252C911EA93D1814FC4F9AE02.roa File: 8956638252C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: YTtPuTZb4OyUibLkOVTdB7xr11BtO1b+YlM2m32u9bU= Subject key identifier: 91:E6:6A:34:A7:71:F2:B5:29:E0:83:3C:E4:95:E5:80:8F:FC:DF:8D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38D1 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8956638252C911EA93D1814FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:39 +0000 ROA not before: Tue 16 Jul 2024 14:31:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58544 IP address blocks: 61.91.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14545 (0x38d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696844a-dd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:68:0b:ed:4a:71:e8:2e:d3:d2:2b:c1:86: 4b:b2:46:5d:b6:0a:ba:ef:1e:2e:05:32:32:62:b1: e1:2c:ff:3c:3d:2b:3f:8e:92:dd:3c:98:5d:49:f4: 8a:8c:1a:70:79:a2:4e:bb:25:23:28:e2:e1:7c:7d: 2e:91:32:4b:ee:02:63:49:e2:18:c9:cc:e5:32:3d: 72:fe:24:a2:ce:78:df:f9:5e:da:93:95:69:eb:34: e3:44:1e:5c:b5:a5:1b:5d:0d:b8:89:24:bc:7a:55: 70:7b:29:81:a2:0c:c6:50:2e:10:a4:d1:d3:d3:b1: 60:af:53:0a:4c:0a:19:d8:51:ed:99:c7:73:21:e2: a8:f4:b3:3d:84:c5:86:fd:e1:5e:d4:2f:5b:8b:4f: 25:aa:66:b2:0b:ec:d1:97:bc:9a:4a:8d:cf:4e:0b: 13:85:83:73:1c:eb:b0:1b:0a:c3:4c:79:bd:6c:99: 23:d4:1a:32:57:44:14:3d:87:f1:70:9f:70:3c:3e: 2a:bd:7c:cc:94:ba:29:a5:41:11:e4:b6:11:9e:79: 2d:e0:c8:78:89:e4:49:56:eb:c3:d2:66:5c:3f:fb: a9:e0:42:9d:63:07:69:13:10:36:e6:c0:3a:92:92: e5:94:37:e3:30:c8:13:1f:ed:7c:ac:cb:60:35:9b: 3b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E6:6A:34:A7:71:F2:B5:29:E0:83:3C:E4:95:E5:80:8F:FC:DF:8D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8956638252C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.91.87.0/24 Signature Algorithm: sha256WithRSAEncryption a0:cc:82:1f:ec:d3:7b:d9:fb:8f:d4:38:44:47:6f:f7:ef:6d: 6d:8b:38:1f:e4:c2:6e:03:44:b3:e2:85:29:d8:e0:ac:86:56: 01:88:04:42:61:57:e6:9a:f4:4a:57:27:04:9e:89:ea:e8:4b: 2a:33:c1:65:d3:68:58:80:a3:14:58:db:60:4e:23:d8:da:f8: f9:6c:c3:19:d3:ae:a2:d2:96:d8:5b:3b:f7:aa:c6:8c:22:96: 1f:b2:0c:e7:10:eb:14:3f:c8:84:10:4d:f4:6d:13:09:23:38: 88:e6:82:65:1c:1e:3c:13:43:05:3f:5e:23:b5:42:92:05:eb: 94:19:0e:e2:54:8d:7a:47:6e:17:c6:41:93:54:43:77:7d:f9: 90:ab:51:88:1a:b9:cf:98:12:1d:e9:40:50:3f:8b:02:f1:d7: a0:d2:dd:e5:c9:7f:8b:0a:64:17:89:15:47:4a:a1:79:e9:c5: ac:e8:50:74:00:b1:96:9f:f1:fa:9b:51:5a:5b:0f:fc:97:f8: 9f:b9:01:a1:08:9f:be:6a:74:38:bc:55:7d:8a:98:73:33:94: 7d:b4:85:e6:6e:5d:9c:6d:d7:79:21:17:5b:50:58:51:3d:68: 9e:93:23:c5:e2:79:cc:bf:1f:4f:88:fc:e2:20:c2:c3:92:a4: 47:21:83:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICONEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0YS1kZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE5oC+1Kcegu09IrwYZLskZdtgq67x4uBTIyYrHhLP88PSs/jpLdPJhdSfSK jBpweaJOuyUjKOLhfH0ukTJL7gJjSeIYyczlMj1y/iSiznjf+V7ak5Vp6zTjRB5c taUbXQ24iSS8elVweymBogzGUC4QpNHT07Fgr1MKTAoZ2FHtmcdzIeKo9LM9hMWG /eFe1C9bi08lqmayC+zRl7yaSo3PTgsThYNzHOuwGwrDTHm9bJkj1BoyV0QUPYfx cJ9wPD4qvXzMlLoppUER5LYRnnkt4Mh4ieRJVuvD0mZcP/up4EKdYwdpExA25sA6 kpLllDfjMMgTH+18rMtgNZs7YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJHmajSn cfK1KeCDPOSV5YCP/N+NMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODk1NjYzODI1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9W1cwDQYJKoZIhvcNAQELBQADggEBAKDMgh/s03vZ+4/U OERHb/fvbW2LOB/kwm4DRLPihSnY4KyGVgGIBEJhV+aa9EpXJwSeieroSyozwWXT aFiAoxRY22BOI9ja+PlswxnTrqLSlthbO/eqxowilh+yDOcQ6xQ/yIQQTfRtEwkj OIjmgmUcHjwTQwU/XiO1QpIF65QZDuJUjXpHbhfGQZNUQ3d9+ZCrUYgauc+YEh3p QFA/iwLx16DS3eXJf4sKZBeJFUdKoXnpxazoUHQAsZaf8fqbUVpbD/yX+J+5AaEI n75qdDi8VX2KmHMzlH20heZuXZxt13khF1tQWFE9aJ6TI8Xiecy/H0+I/OIgwsOS pEchg5Q= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org