$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9CB7FE4C1E0211E9862ECE3FC4F9AE02.roa File: 9CB7FE4C1E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: qE+QpnlaTlt8b3emBVouHjFGFTLtyv6Skq7pbVQWpPg= Subject key identifier: 89:C4:E1:66:06:0D:0D:42:92:32:82:72:51:83:46:4C:B5:93:F2:3F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3878 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9CB7FE4C1E0211E9862ECE3FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:20 +0000 ROA not before: Tue 16 Jul 2024 14:30:20 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132545 IP address blocks: 110.170.217.0/24 maxlen: 24 110.170.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14456 (0x3878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:30:20 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669683fc-0aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ea:b7:fb:24:91:21:cd:8f:65:1d:d8:b4:d9: 59:e0:67:59:a8:1d:98:73:49:87:2c:13:01:84:ed: a6:6a:af:47:8c:7e:2e:bd:4f:1f:8e:de:0e:d8:da: cd:c2:0b:ab:da:0b:29:ff:3f:53:e9:5c:08:e8:5d: e6:4c:8e:3b:91:9a:4d:31:1b:3e:77:ec:46:41:64: 57:95:f5:79:c0:66:5d:ce:d3:ae:1b:62:65:92:d9: 44:bb:56:3c:9a:80:d9:a5:fc:3c:ad:1a:b3:01:6f: 2a:85:ab:54:40:fc:d4:f9:da:49:65:0e:19:58:20: 00:6f:d8:60:45:f0:24:e3:33:82:d1:36:d6:81:6d: e5:b0:f1:af:34:fc:65:52:54:7c:47:1c:1c:ff:78: 68:03:96:65:8d:4f:35:19:d8:24:3a:d2:f0:d5:28: 13:97:07:d4:06:68:74:54:a0:a5:90:0f:c4:9b:8d: 5d:7d:17:e0:69:51:33:d6:04:21:a2:a4:a5:21:ac: b5:a1:4a:42:3c:f6:59:f6:ed:55:43:d2:25:19:ac: 9b:1b:7e:68:da:e4:00:53:bf:7d:e5:94:20:fe:0e: 54:98:cc:a2:9b:d0:56:ab:04:fa:2e:ad:bb:c3:97: 3a:e2:9f:d2:65:dd:2f:c2:f1:ec:17:9f:7b:4c:a7: 77:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C4:E1:66:06:0D:0D:42:92:32:82:72:51:83:46:4C:B5:93:F2:3F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/9CB7FE4C1E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.217.0-110.170.218.255 Signature Algorithm: sha256WithRSAEncryption 2a:c6:68:3f:65:0a:18:41:0e:28:e8:75:aa:b8:71:cc:64:e1: c1:9e:65:ae:56:27:52:a7:34:b4:49:20:e8:5a:79:81:b6:35: 36:db:99:9c:da:26:2d:17:75:09:6d:8b:b4:91:de:c3:b3:a5: 08:d6:5b:c3:bd:12:58:36:56:f3:45:20:b4:07:46:b2:a2:2f: 78:f2:54:68:6d:f6:e1:38:af:b4:8b:e6:3d:8a:8b:ba:d2:3e: 21:35:1b:1c:e5:77:75:5d:11:d8:ae:9e:85:16:c1:8d:e5:6e: ea:6a:c0:b9:30:e4:87:80:f1:32:48:ee:0f:6a:88:9f:7e:a0: 7c:8b:f5:1e:8f:64:0f:a8:8a:57:2e:1f:16:b2:b8:04:35:eb: 15:78:fc:1f:13:5a:bb:e7:38:29:50:2c:9e:be:71:34:1b:54: 96:a6:1c:17:2b:40:d3:a9:35:af:7c:cd:0d:74:e6:92:40:4d: 62:33:e0:32:c9:ad:2e:82:61:46:ac:9f:ad:e4:35:5c:9c:a5: e8:29:c4:29:e4:67:ca:a7:46:e6:fe:0c:e3:15:9b:37:c1:33: 1a:b9:78:ac:9f:48:3d:86:c6:05:87:94:44:e2:ac:be:e5:a1: 12:39:58:ac:09:67:7a:a9:55:9e:be:29:11:41:d9:8f:f1:95: b6:b5:c7:b4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICOHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMDIwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODNmYy0wYWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+q3+ySRIc2PZR3YtNlZ4GdZqB2Yc0mHLBMBhO2maq9HjH4uvU8fjt4O2NrN wgur2gsp/z9T6VwI6F3mTI47kZpNMRs+d+xGQWRXlfV5wGZdztOuG2JlktlEu1Y8 moDZpfw8rRqzAW8qhatUQPzU+dpJZQ4ZWCAAb9hgRfAk4zOC0TbWgW3lsPGvNPxl UlR8Rxwc/3hoA5ZljU81GdgkOtLw1SgTlwfUBmh0VKClkA/Em41dfRfgaVEz1gQh oqSlIay1oUpCPPZZ9u1VQ9IlGaybG35o2uQAU7995ZQg/g5UmMyim9BWqwT6Lq27 w5c64p/SZd0vwvHsF597TKd3owIDAQABo4ICnTCCApkwHQYDVR0OBBYEFInE4WYG DQ1CkjKCclGDRky1k/I/MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvOUNCN0ZFNEMx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAG6q2QMEAG6q2jANBgkqhkiG9w0BAQsFAAOCAQEAKsZo P2UKGEEOKOh1qrhxzGThwZ5lrlYnUqc0tEkg6Fp5gbY1NtuZnNomLRd1CW2LtJHe w7OlCNZbw70SWDZW80UgtAdGsqIvePJUaG324TivtIvmPYqLutI+ITUbHOV3dV0R 2K6ehRbBjeVu6mrAuTDkh4DxMkjuD2qIn36gfIv1Ho9kD6iKVy4fFrK4BDXrFXj8 HxNau+c4KVAsnr5xNBtUlqYcFytA06k1r3zNDXTmkkBNYjPgMsmtLoJhRqyfreQ1 XJyl6CnEKeRnyqdG5v4M4xWbN8EzGrl4rJ9IPYbGBYeUROKsvuWhEjlYrAlneqlV nr4pEUHZj/GVtrXHtA== -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org