$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9BC27CB01E0211E9862ECE3FC4F9AE02.roa File: 9BC27CB01E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: ww3cv35MThCk4HqkR/0hVs+WyWjLp3A8FsCkFMpDM0A= Subject key identifier: 23:35:08:7C:A4:9C:B0:62:89:5D:3A:2A:A8:9B:2B:31:01:35:49:3A Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3876 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9BC27CB01E0211E9862ECE3FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:18 +0000 ROA not before: Tue 16 Jul 2024 14:30:18 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132063 IP address blocks: 171.102.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14454 (0x3876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC Validity Not Before: Jul 16 14:30:18 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669683fa-b998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:29:da:72:10:eb:50:87:c5:1b:8e:cf:47:15: ed:37:ea:54:70:89:88:e5:a0:71:77:79:a9:5e:9b: b4:90:c6:5a:92:8a:54:ea:2a:b0:6e:31:06:af:5b: e2:36:32:32:92:55:80:6c:67:de:9d:08:ee:0d:35: a9:a9:8e:14:15:c5:f7:ab:4f:e8:b9:af:dc:81:41: 2a:5e:72:22:f2:7a:df:7b:11:45:6f:6b:3c:dd:36: f9:da:39:e1:1a:6b:a3:1d:65:11:6f:5e:f5:dc:c6: 9d:01:e5:c9:8a:2a:56:9d:c8:57:a6:44:df:96:22: be:29:96:37:79:ef:1f:19:b7:0e:c2:61:f5:2a:78: 9d:6c:fa:71:3b:f0:2e:ca:24:ff:f9:16:d2:41:9a: ce:3c:59:f9:b8:7e:a8:6b:b3:e5:2f:58:10:56:41: d4:7b:fe:e8:e6:02:44:ca:c5:7d:27:5f:9d:d8:00: 0b:06:ca:44:33:f8:1f:e5:39:73:bd:05:fe:cd:70: e1:82:2e:4e:7d:74:e6:11:6f:e9:8c:70:eb:de:7f: ed:d4:a3:47:10:1b:86:c1:26:71:ab:11:46:f7:d0: 0b:4d:e2:4a:87:7b:c0:13:50:ce:fa:54:83:c7:91: 18:3e:90:ec:4f:7a:b7:20:c3:3b:bc:e9:2c:46:ba: 7c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:35:08:7C:A4:9C:B0:62:89:5D:3A:2A:A8:9B:2B:31:01:35:49:3A X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9BC27CB01E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.42.0/24 Signature Algorithm: sha256WithRSAEncryption 90:68:24:9c:6f:90:1d:c3:3c:70:22:ec:6c:e9:ec:fc:d2:11: 8d:7a:7d:69:38:48:5f:d9:dc:df:b9:37:98:a9:5f:13:9e:8d: a0:9d:e5:eb:b7:44:a5:4c:ec:f6:5b:d1:12:b9:b4:75:72:2d: 13:47:e1:48:9c:6a:5f:1d:d5:bb:45:8b:fb:10:7f:b9:24:d8: ab:fb:4a:8a:40:fa:ce:f1:66:18:0e:ac:82:53:64:05:23:55: a8:fd:0a:67:ae:c7:55:f6:64:9c:bd:1c:82:1e:bf:6c:f6:3d: 73:50:c5:dd:c5:5b:35:f2:ac:31:74:ee:ea:21:74:90:1f:20: 21:ba:57:63:27:91:2c:d7:a6:8c:61:fa:8a:d6:55:77:a2:ac: 48:99:ee:2f:b5:0e:5c:33:34:12:58:0c:1d:a9:e5:24:67:d7: 0c:35:b9:e0:e1:5a:26:8f:cc:13:37:77:1d:f1:bf:09:ce:05: 20:79:c4:11:11:7a:bd:1f:4f:7d:73:c6:a1:0e:fc:84:93:27: 1c:ba:e7:9a:ae:4d:44:91:f5:8d:52:07:8e:35:ca:eb:89:e5: 52:52:b3:b5:80:2c:e6:11:44:fa:a5:9d:53:40:2b:9c:d5:93: 4a:4d:56:13:1c:a3:6c:73:3b:e6:c2:53:22:4d:7a:bb:1e:85: 1c:a3:a1:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDE4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODNmYS1iOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvynachDrUIfFG47PRxXtN+pUcImI5aBxd3mpXpu0kMZakopU6iqwbjEGr1vi NjIyklWAbGfenQjuDTWpqY4UFcX3q0/oua/cgUEqXnIi8nrfexFFb2s83Tb52jnh GmujHWURb1713MadAeXJiipWnchXpkTfliK+KZY3ee8fGbcOwmH1KnidbPpxO/Au yiT/+RbSQZrOPFn5uH6oa7PlL1gQVkHUe/7o5gJEysV9J1+d2AALBspEM/gf5Tlz vQX+zXDhgi5OfXTmEW/pjHDr3n/t1KNHEBuGwSZxqxFG99ALTeJKh3vAE1DO+lSD x5EYPpDsT3q3IMM7vOksRrp8NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCM1CHyk nLBiiV06KqibKzEBNUk6MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvOUJDMjdDQjAx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACrZiowDQYJKoZIhvcNAQELBQADggEBAJBoJJxvkB3DPHAi 7Gzp7PzSEY16fWk4SF/Z3N+5N5ipXxOejaCd5eu3RKVM7PZb0RK5tHVyLRNH4Uic al8d1btFi/sQf7kk2Kv7SopA+s7xZhgOrIJTZAUjVaj9Cmeux1X2ZJy9HIIev2z2 PXNQxd3FWzXyrDF07uohdJAfICG6V2MnkSzXpoxh+orWVXeirEiZ7i+1DlwzNBJY DB2p5SRn1ww1ueDhWiaPzBM3dx3xvwnOBSB5xBERer0fT31zxqEO/ISTJxy655qu TUSR9Y1SB441yuuJ5VJSs7WALOYRRPqlnVNAK5zVk0pNVhMco2xzO+bCUyJNerse hRyjof8= -----END CERTIFICATE-----Generated at Sun Feb 16 21:01:11 2025 by rpki-client