$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8D0B94E6729F11EC85AE6D45C4F9AE02.roa File: 8D0B94E6729F11EC85AE6D45C4F9AE02.roa (raw, json) Hash identifier: vOqN675nxVVDywybOa+U5L9uAcY7u0HcukBw13Eax1A= Subject key identifier: CA:04:56:98:C8:2F:D5:E5:81:D3:8E:62:75:01:80:81:06:35:33:86 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38D2 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8D0B94E6729F11EC85AE6D45C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:39 +0000 ROA not before: Tue 16 Jul 2024 14:31:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58692 IP address blocks: 119.46.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14546 (0x38d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696844b-5d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a0:cc:6a:aa:4d:e1:f0:a8:80:6d:5e:18:a3: e8:0c:7f:15:7c:8d:0e:79:97:13:33:28:4d:45:fd: e2:c6:8c:ee:1a:26:64:91:e5:48:5b:9f:cc:57:d3: f7:eb:86:3b:54:26:e0:8e:ae:48:3f:56:5a:fd:12: 2b:4f:33:a1:e3:2c:3d:16:b0:f9:c2:b0:46:f9:ed: 6c:10:30:8b:f2:3f:71:46:56:44:49:30:5b:c0:5e: dc:d7:1f:2e:40:70:12:0b:3c:43:23:bc:3c:63:ce: 7f:57:37:f2:71:42:81:36:e3:03:7a:c5:d6:08:48: 1a:e3:ec:c5:1d:a0:40:1a:ca:3b:d8:72:44:69:d6: be:2e:18:83:51:4b:31:93:7e:5f:9c:03:ac:e6:3e: e7:d3:f1:16:34:30:84:fd:f0:60:0c:64:53:a2:a9: 54:59:ba:28:9c:68:83:ac:1a:ef:10:4c:6c:4b:9a: ba:15:cd:60:15:c1:0e:2d:64:79:24:4e:fb:58:3b: 24:09:0c:72:e8:ea:b2:d0:6a:59:2d:8e:4f:34:d4: d1:76:d8:9f:7c:cb:f5:77:a4:7c:2f:0f:cc:19:71: 94:af:59:69:57:6b:91:3d:20:f4:ba:7f:8e:fc:c5: 5a:29:75:b5:f0:dd:d4:8d:18:59:5e:ce:ce:9d:b0: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:04:56:98:C8:2F:D5:E5:81:D3:8E:62:75:01:80:81:06:35:33:86 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8D0B94E6729F11EC85AE6D45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.126.0/24 Signature Algorithm: sha256WithRSAEncryption 34:15:ae:9e:3d:55:d6:d9:ed:16:b5:29:ac:7a:a8:55:c8:58: 58:4a:35:82:05:5b:79:97:59:69:cd:97:ff:ca:28:9d:0a:ef: f0:32:7f:8e:0f:61:e2:61:1b:55:87:ab:64:05:a3:c8:d8:f9: 14:b3:7f:00:e8:1a:19:1e:5a:90:9f:15:74:f5:81:95:e4:1b: e2:22:89:30:95:a1:cf:7d:d1:3b:85:ee:b4:26:18:3d:38:4d: 7e:83:00:95:1d:3d:26:69:19:bd:b9:8f:72:a6:45:fd:09:ee: 23:0f:d2:4f:f7:3d:1b:51:6c:43:89:bd:6c:1d:02:7e:d3:cd: 64:92:6a:29:4c:57:83:e7:03:54:25:de:18:24:63:87:15:65: 06:e3:c4:96:2a:e9:ef:93:97:cf:ee:49:3c:16:14:cc:84:cf: cd:54:82:95:b7:65:3d:31:5b:65:15:9c:45:b0:d2:26:64:8e: 22:74:4c:6d:73:0a:ad:54:29:c2:98:3d:66:84:82:47:a8:21: c1:4a:52:05:2d:7e:a4:0e:1e:62:4a:23:e5:8c:ad:ca:24:34: 1d:db:30:5e:4f:08:3c:24:33:28:d5:70:2f:65:1f:8f:44:13: aa:6a:ad:fc:56:f1:a5:c5:08:08:8e:21:a4:8e:03:1d:f0:e2: c4:3d:46:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICONIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0Yi01ZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaDMaqpN4fCogG1eGKPoDH8VfI0OeZcTMyhNRf3ixozuGiZkkeVIW5/MV9P3 64Y7VCbgjq5IP1Za/RIrTzOh4yw9FrD5wrBG+e1sEDCL8j9xRlZESTBbwF7c1x8u QHASCzxDI7w8Y85/VzfycUKBNuMDesXWCEga4+zFHaBAGso72HJEada+LhiDUUsx k35fnAOs5j7n0/EWNDCE/fBgDGRToqlUWboonGiDrBrvEExsS5q6Fc1gFcEOLWR5 JE77WDskCQxy6Oqy0GpZLY5PNNTRdtiffMv1d6R8Lw/MGXGUr1lpV2uRPSD0un+O /MVaKXW18N3UjRhZXs7OnbDVgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMoEVpjI L9XlgdOOYnUBgIEGNTOGMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvOEQwQjk0RTY3 MjlGMTFFQzg1QUU2RDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3Ln4wDQYJKoZIhvcNAQELBQADggEBADQVrp49VdbZ7Ra1 Kax6qFXIWFhKNYIFW3mXWWnNl//KKJ0K7/Ayf44PYeJhG1WHq2QFo8jY+RSzfwDo GhkeWpCfFXT1gZXkG+IiiTCVoc990TuF7rQmGD04TX6DAJUdPSZpGb25j3KmRf0J 7iMP0k/3PRtRbEOJvWwdAn7TzWSSailMV4PnA1Ql3hgkY4cVZQbjxJYq6e+Tl8/u STwWFMyEz81UgpW3ZT0xW2UVnEWw0iZkjiJ0TG1zCq1UKcKYPWaEgkeoIcFKUgUt fqQOHmJKI+WMrcokNB3bMF5PCDwkMyjVcC9lH49EE6pqrfxW8aXFCAiOIaSOAx3w 4sQ9Rls= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org