$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AD10DD5E1E0211E9862ECE3FC4F9AE02.roa File: AD10DD5E1E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: HpkNKShEUBKRpmgUnfiVzvFHrmsJiJCw6BPJaqp+/yU= Subject key identifier: 1C:A9:25:6B:F1:03:CD:B8:BA:08:45:7D:F2:52:9C:F3:77:E3:B5:F5 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38D3 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AD10DD5E1E0211E9862ECE3FC4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:40 +0000 ROA not before: Tue 16 Jul 2024 14:31:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58806 IP address blocks: 171.102.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14547 (0x38d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696844c-c10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:e5:04:51:5f:c1:bb:a2:fa:ee:53:ae:23: 0f:af:ed:50:d8:15:44:ab:f0:58:e1:52:10:73:45: 59:a9:ed:f9:9e:0a:20:67:af:de:de:82:20:62:13: 17:4c:8a:97:fc:b7:cb:6e:84:c4:3d:30:2d:10:6e: 1d:65:69:e2:63:f6:84:c0:88:b8:39:f5:da:92:1c: 4a:08:6b:44:bf:57:e1:8a:81:99:6f:f2:c9:34:fc: 62:71:59:0f:87:16:53:fc:57:26:a0:9b:f1:b8:c1: bd:ff:d0:5f:3f:ff:66:c1:29:de:8b:12:91:04:67: be:1b:1f:47:28:ce:5e:d0:41:d5:46:15:5f:63:1d: 41:0f:75:6d:b6:ea:d2:e0:d3:d4:07:d4:31:d8:52: 81:fd:9f:bf:c7:bf:49:35:fa:8c:d4:6a:0e:a8:41: 29:1c:ca:ce:71:1e:c3:ce:b5:0b:98:76:2f:1b:53: fd:f9:c3:31:cd:4b:f8:fc:c8:22:61:e0:20:34:a7: 2c:16:3a:a3:01:80:92:de:0a:6d:25:91:14:35:c0: df:bd:f9:74:f5:6f:44:84:4b:43:b3:5f:57:c6:2f: 84:50:03:b1:de:48:40:19:c7:c1:95:6c:33:c4:36: 75:fb:87:6b:46:2a:51:60:cf:db:9f:e2:2e:19:49: ee:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A9:25:6B:F1:03:CD:B8:BA:08:45:7D:F2:52:9C:F3:77:E3:B5:F5 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AD10DD5E1E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.40.0/24 Signature Algorithm: sha256WithRSAEncryption 87:bf:3d:4d:d3:a3:4e:98:30:26:3f:f0:90:16:eb:c0:ee:dc: 8f:d5:55:07:d9:00:ab:70:14:dc:bc:4c:7f:65:ad:9d:e8:a7: 92:48:60:b3:88:14:39:70:30:06:4a:89:af:30:6b:b3:a3:94: dd:1c:d7:5c:dd:ac:bc:c3:7e:b8:01:52:dc:20:d5:55:ca:af: 08:42:e6:18:7f:49:c0:38:5f:38:62:f1:88:f7:66:28:76:8a: e3:d5:ad:0d:12:9a:f5:0e:a4:f0:dd:10:47:83:2a:d3:cc:e0: c3:2d:75:d9:94:2f:aa:6b:86:82:7a:9e:54:3f:80:71:85:94: 8e:7b:01:86:7d:d4:2d:f6:8d:52:cc:e8:bb:b3:3a:00:fb:9f: a8:5e:39:f6:7b:b8:e1:64:35:c7:c9:68:c0:ae:df:76:53:88: a4:81:ab:54:31:e1:1a:e8:0a:f9:01:4c:c5:e5:41:d1:1c:fd: f3:4c:4d:b5:4a:f2:58:66:89:1d:32:45:82:65:85:46:9b:e8: 10:d6:08:6f:5f:0b:ac:87:46:ea:93:ad:0a:9c:1a:2d:7b:e7: 78:0e:b9:3a:db:58:c7:cb:f0:61:ea:31:dc:87:e8:2b:ff:7f: ca:23:ba:be:08:44:01:5d:ce:40:04:f4:ec:07:78:0e:90:f2: ce:1b:af:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICONMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0Yy1jMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8nlBFFfwbui+u5TriMPr+1Q2BVEq/BY4VIQc0VZqe35ngogZ6/e3oIgYhMX TIqX/LfLboTEPTAtEG4dZWniY/aEwIi4OfXakhxKCGtEv1fhioGZb/LJNPxicVkP hxZT/FcmoJvxuMG9/9BfP/9mwSneixKRBGe+Gx9HKM5e0EHVRhVfYx1BD3VtturS 4NPUB9Qx2FKB/Z+/x79JNfqM1GoOqEEpHMrOcR7DzrULmHYvG1P9+cMxzUv4/Mgi YeAgNKcsFjqjAYCS3gptJZEUNcDfvfl09W9EhEtDs19Xxi+EUAOx3khAGcfBlWwz xDZ1+4drRipRYM/bn+IuGUnuOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBypJWvx A824ughFffJSnPN347X1MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvQUQxMERENUUx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACrZigwDQYJKoZIhvcNAQELBQADggEBAIe/PU3To06YMCY/ 8JAW68Du3I/VVQfZAKtwFNy8TH9lrZ3op5JIYLOIFDlwMAZKia8wa7OjlN0c11zd rLzDfrgBUtwg1VXKrwhC5hh/ScA4Xzhi8Yj3Zih2iuPVrQ0SmvUOpPDdEEeDKtPM 4MMtddmUL6prhoJ6nlQ/gHGFlI57AYZ91C32jVLM6LuzOgD7n6heOfZ7uOFkNcfJ aMCu33ZTiKSBq1Qx4RroCvkBTMXlQdEc/fNMTbVK8lhmiR0yRYJlhUab6BDWCG9f C6yHRuqTrQqcGi1753gOuTrbWMfL8GHqMdyH6Cv/f8ojur4IRAFdzkAE9OwHeA6Q 8s4brwI= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:07 2024 by rpki-client on console-ams.rpki-client.org