$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A9CFE2CA1E0211E9862ECE3FC4F9AE02.roa File: A9CFE2CA1E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: CY9yywcqTFZhW/YRJ3quhxW2dc7f5TW3n05dKMWrxCw= Subject key identifier: D5:62:D5:EF:A6:C1:CB:FA:65:E3:F4:64:0B:E9:0D:2B:65:B1:E6:1A Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38AE Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A9CFE2CA1E0211E9862ECE3FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:09 +0000 ROA not before: Tue 16 Jul 2024 14:31:09 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38002 IP address blocks: 61.91.255.0/24 maxlen: 24 171.102.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14510 (0x38ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:09 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696842d-ae7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:70:d4:f0:3d:49:0b:f6:23:74:17:70:ef:a0: 01:3f:5d:15:c5:0d:6d:5f:cb:55:f1:1d:fb:3e:07: 1d:c8:c6:60:09:9d:e9:15:86:66:c9:59:02:3a:0b: b8:60:e4:d7:85:9c:4f:68:2b:05:fb:f8:22:c4:e0: b4:5b:63:f1:48:2c:5e:db:74:9b:15:40:4d:45:e2: 3f:ec:95:1e:9b:5a:7a:cd:8a:41:24:fa:d1:f8:36: 7f:78:43:5f:98:fd:00:28:b5:63:dc:ff:5a:6f:59: 00:7c:86:85:53:3a:01:e5:dc:33:9b:39:7d:25:c8: bb:35:a1:fa:91:84:38:7e:a6:de:4c:18:02:03:10: 21:ea:cd:54:8d:b8:64:a9:ec:7f:5b:51:9e:ec:50: df:5b:c8:e3:24:90:2a:33:3d:84:10:86:e8:94:57: 96:b0:a3:8e:a1:44:40:ba:af:db:4c:e1:64:e1:f6: 79:5e:13:4f:10:05:e4:0b:bd:3c:28:53:44:52:bd: 93:3a:ea:99:16:10:74:92:42:8e:28:0d:fa:55:23: f3:40:d2:15:53:07:0c:dd:6a:c6:b1:cf:de:b5:c5: 23:04:a2:4c:ab:f0:58:9b:e8:f0:1d:ff:44:ed:25: c9:8e:5f:77:a2:ba:bf:5a:34:9b:0e:e6:ea:24:d1: 0b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:62:D5:EF:A6:C1:CB:FA:65:E3:F4:64:0B:E9:0D:2B:65:B1:E6:1A X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A9CFE2CA1E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.91.255.0/24 171.102.36.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:d4:44:68:cc:1d:3d:1f:0d:24:9d:83:c7:75:15:37:66:db: c8:ee:b0:22:6e:b6:f6:7d:f2:56:36:1a:e9:e6:51:a6:ab:c5: 47:fd:fe:55:39:b9:4c:f1:26:e5:34:5f:52:15:48:e8:c2:e0: 65:32:bc:4f:b9:a0:2a:3a:d3:1e:cd:b5:b8:d2:0e:20:85:9d: eb:4f:0c:48:25:f2:bb:fb:91:ba:e8:68:ba:65:cf:a9:d1:6f: 15:1f:a5:fc:e2:45:44:a9:64:29:65:39:0b:67:1b:97:74:af: b0:c1:3d:ee:b2:a6:cd:b7:61:af:eb:76:3a:b9:9c:fb:ef:11: a2:0f:b6:1a:c7:6b:c3:bd:07:d5:3a:5d:b2:dd:e6:07:93:0d: e4:f9:e3:df:53:f2:7e:3e:21:b2:88:1b:85:97:57:fb:7e:2a: 8c:50:fa:ee:89:bd:6d:82:a8:79:39:67:17:1c:f4:b7:57:be: 88:2f:ad:e2:c2:62:79:3e:b6:96:d9:47:46:3b:79:16:5a:68: 6f:11:f6:77:40:21:a0:82:e1:2f:4f:9e:0e:9f:a7:b8:63:40: 40:44:87:fd:38:2c:0b:22:e1:27:98:e6:35:2c:59:08:56:58: 11:26:17:65:b8:78:62:2f:8e:5d:0b:e9:cb:21:19:7a:d1:16: b6:47:44:d1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTA5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyZC1hZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHDU8D1JC/YjdBdw76ABP10VxQ1tX8tV8R37PgcdyMZgCZ3pFYZmyVkCOgu4 YOTXhZxPaCsF+/gixOC0W2PxSCxe23SbFUBNReI/7JUem1p6zYpBJPrR+DZ/eENf mP0AKLVj3P9ab1kAfIaFUzoB5dwzmzl9Jci7NaH6kYQ4fqbeTBgCAxAh6s1Ujbhk qex/W1Ge7FDfW8jjJJAqMz2EEIbolFeWsKOOoURAuq/bTOFk4fZ5XhNPEAXkC708 KFNEUr2TOuqZFhB0kkKOKA36VSPzQNIVUwcM3WrGsc/etcUjBKJMq/BYm+jwHf9E 7SXJjl93orq/WjSbDubqJNEL5wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNVi1e+m wcv6ZeP0ZAvpDStlseYaMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvQTlDRkUyQ0Ex RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA9W/8DBACrZiQwDQYJKoZIhvcNAQELBQADggEBAB3URGjM HT0fDSSdg8d1FTdm28jusCJutvZ98lY2GunmUaarxUf9/lU5uUzxJuU0X1IVSOjC 4GUyvE+5oCo60x7NtbjSDiCFnetPDEgl8rv7kbroaLplz6nRbxUfpfziRUSpZCll OQtnG5d0r7DBPe6yps23Ya/rdjq5nPvvEaIPthrHa8O9B9U6XbLd5geTDeT5499T 8n4+IbKIG4WXV/t+KoxQ+u6JvW2CqHk5Zxcc9LdXvogvreLCYnk+tpbZR0Y7eRZa aG8R9ndAIaCC4S9Png6fp7hjQEBEh/04LAsi4SeY5jUsWQhWWBEmF2W4eGIvjl0L 6cshGXrRFrZHRNE= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org