$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/ABF84E2A1E0211E9862ECE3FC4F9AE02.roa File: ABF84E2A1E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: S3xcNScLErojXKgtDNKVknabT+/hT4VRZezbx+w2Vig= Subject key identifier: D0:31:43:70:69:55:58:FC:C7:A1:39:C0:3E:F6:CE:DD:4E:33:24:24 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36D5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/ABF84E2A1E0211E9862ECE3FC4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:33 +0000 ROA not before: Sat 08 Jul 2023 14:31:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 56112 IP address blocks: 110.170.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14037 (0x36d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a97345-5634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2c:5b:bd:43:2f:e5:ca:f0:05:f0:3b:f3:da: 39:22:2d:78:5b:2f:e6:72:c4:fd:92:73:02:71:b6: 57:9a:36:3f:e0:3f:83:83:56:d4:79:5f:41:9a:16: 14:af:14:c5:5a:cc:d6:2a:85:93:82:56:a4:2c:31: bf:55:55:bd:61:29:50:16:09:83:7b:fb:90:b4:1f: 84:99:b4:6f:e3:b5:d8:99:2b:aa:34:fc:f6:94:33: 8d:0b:fe:88:65:68:02:69:b7:e9:67:14:6c:f1:cf: 0a:2c:2a:f4:90:ff:cb:b0:6e:57:f0:a3:04:20:44: 78:d9:60:88:f5:c7:21:e8:e7:ac:a4:2d:ad:56:3d: 95:08:cb:d3:09:9c:af:7e:f6:b9:22:4a:20:14:41: 04:b6:62:98:e2:b5:37:0e:5e:bb:35:c6:fe:e6:2e: 76:6c:db:7d:b8:45:18:4e:29:fa:c0:13:9a:a4:94: 9c:3c:6b:9a:04:e3:e2:19:53:3f:3c:44:47:cb:5a: a6:ba:c5:d8:cc:c4:04:b5:6e:7b:6b:46:4b:d3:8c: 5c:85:84:99:f2:d6:9f:75:95:27:d3:54:63:a4:d7: e3:cf:2f:6e:8d:ba:28:95:1c:e6:7d:3b:e6:e0:c6: e5:1d:9b:52:86:2b:d4:7b:bd:2e:0e:82:e5:a4:9f: d6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:31:43:70:69:55:58:FC:C7:A1:39:C0:3E:F6:CE:DD:4E:33:24:24 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/ABF84E2A1E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.242.0/24 Signature Algorithm: sha256WithRSAEncryption 38:fd:e6:de:29:0a:23:45:d7:f6:12:3d:9b:a2:d8:cf:71:1d: 11:3b:1e:f9:a7:db:96:b5:79:7e:ea:72:8b:4b:91:fe:c8:64: e7:90:cd:53:09:fe:ad:d7:48:cc:cf:28:a9:13:7b:de:6f:b8: ac:2a:d0:46:34:6e:3b:06:0b:ff:31:48:77:ac:96:1e:9a:5d: a7:25:bd:eb:12:54:97:0e:ac:4c:b9:11:81:94:07:09:de:d3: 1e:71:d4:6a:98:4c:83:da:d0:e3:b3:59:a9:53:f0:2f:4f:fd: e9:e3:3a:6b:91:0e:99:3a:4a:75:b6:9b:bd:b9:af:5e:f2:60: 99:00:a0:2c:c7:d6:c0:72:eb:94:f6:97:58:5b:42:93:74:02: 6e:1c:d7:a1:49:72:14:54:25:e4:6e:17:82:af:07:dc:0b:b6: a4:44:0d:bf:b1:4f:3c:56:94:5f:e5:4b:91:64:f5:6e:43:80: 4a:8b:d6:31:1c:e9:b4:a9:85:12:3e:5f:e7:71:8b:56:6d:30: 86:89:8c:5c:55:fc:55:57:3e:23:50:e0:9a:31:ab:9c:53:d8: 13:01:37:f4:9f:49:81:38:2b:33:db:1a:51:4b:8b:b2:63:71: 88:2a:f3:3c:46:ca:1f:88:da:77:aa:db:26:97:33:43:ad:de: 3e:72:6c:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTMzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzM0NS01NjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SxbvUMv5crwBfA789o5Ii14Wy/mcsT9knMCcbZXmjY/4D+Dg1bUeV9BmhYU rxTFWszWKoWTglakLDG/VVW9YSlQFgmDe/uQtB+EmbRv47XYmSuqNPz2lDONC/6I ZWgCabfpZxRs8c8KLCr0kP/LsG5X8KMEIER42WCI9cch6OespC2tVj2VCMvTCZyv fva5IkogFEEEtmKY4rU3Dl67Ncb+5i52bNt9uEUYTin6wBOapJScPGuaBOPiGVM/ PERHy1qmusXYzMQEtW57a0ZL04xchYSZ8tafdZUn01RjpNfjzy9ujboolRzmfTvm 4MblHZtShivUe70uDoLlpJ/WuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNAxQ3Bp VVj8x6E5wD72zt1OMyQkMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvQUJGODRFMkEx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqvIwDQYJKoZIhvcNAQELBQADggEBADj95t4pCiNF1/YS PZui2M9xHRE7Hvmn25a1eX7qcotLkf7IZOeQzVMJ/q3XSMzPKKkTe95vuKwq0EY0 bjsGC/8xSHeslh6aXaclvesSVJcOrEy5EYGUBwne0x5x1GqYTIPa0OOzWalT8C9P /enjOmuRDpk6SnW2m725r17yYJkAoCzH1sBy65T2l1hbQpN0Am4c16FJchRUJeRu F4KvB9wLtqREDb+xTzxWlF/lS5Fk9W5DgEqL1jEc6bSphRI+X+dxi1ZtMIaJjFxV /FVXPiNQ4Joxq5xT2BMBN/SfSYE4KzPbGlFLi7JjcYgq8zxGyh+I2neq2yaXM0Ot 3j5ybIk= -----END CERTIFICATE-----Generated at Fri May 24 15:43:20 2024 by rpki-client on console-fra.rpki-client.org