$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa File: DB9351105A5B11EBBBCAAF76C4F9AE02.roa (raw, json) Hash identifier: hV887Zb01Xmf1996NUh4fqFnm7Wejk78uwNDFtNzFJc= Subject key identifier: 77:33:A0:EE:CD:C1:7D:10:7F:EC:6F:58:6B:49:43:33:46:21:C9:8F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3678 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:30:14 +0000 ROA not before: Sat 08 Jul 2023 14:30:14 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132013 IP address blocks: 110.170.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13944 (0x3678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:30:14 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a972f6-0d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:49:d6:02:66:94:ae:b9:ca:07:3d:a9:8f:8c: 82:48:de:0e:34:dd:a3:fa:42:dd:37:a2:10:34:5a: eb:62:a4:ba:58:39:80:21:2e:b0:02:71:5e:d0:99: b3:a2:60:0f:e0:9b:a4:a5:dd:37:fd:aa:58:bc:40: 51:94:98:3e:ab:98:a9:4b:b8:13:7c:e6:ca:37:48: f8:74:89:2b:28:19:23:7f:74:2c:fc:97:45:d3:a3: 81:f2:df:b6:6a:0b:fb:78:9f:78:ef:3c:5f:38:8a: c6:bb:6b:c3:70:e2:a7:3f:c0:b6:69:8f:1c:a7:a0: d9:85:6b:57:aa:46:74:aa:32:95:c1:9b:b3:b3:df: 6e:7a:d3:63:4b:4c:da:1b:89:95:64:c7:65:60:13: 60:30:12:d9:99:cf:94:76:32:84:0f:85:c1:bf:1f: 44:17:a3:c3:d2:0a:59:4f:c0:32:dc:c9:e6:53:f2: 46:f6:37:20:18:cd:b2:6b:06:8c:11:f4:3e:e9:c2: fa:0c:b1:ce:dd:d1:ab:ae:55:95:d7:cc:fc:21:ec: 17:08:13:bf:18:13:c6:c3:d8:d9:36:dc:12:8e:ec: ea:2b:7b:6f:fa:74:b1:39:8c:a2:e4:d6:6f:d7:a6: 3e:41:32:08:e3:08:bc:70:ae:42:a4:e4:ce:b5:e5: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:33:A0:EE:CD:C1:7D:10:7F:EC:6F:58:6B:49:43:33:46:21:C9:8F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.222.0/24 Signature Algorithm: sha256WithRSAEncryption 97:da:0e:a3:c0:60:c0:ab:67:42:2c:59:83:28:00:32:f2:30: c9:6c:59:76:d0:1c:d7:00:c3:cb:fe:1b:53:50:a1:a5:ee:a5: 88:ef:d7:d0:d0:ea:9f:01:46:21:6c:b6:02:a1:34:97:41:39: d1:f7:f6:89:06:9c:32:8d:e6:28:6b:26:2a:3e:0b:fe:c5:8b: 7f:c0:c6:ef:53:68:37:59:97:1e:31:e4:0c:82:c0:43:db:2c: be:3f:bf:d5:99:b1:4f:4d:68:1e:e1:83:b4:be:79:3a:0b:be: 12:a0:f5:da:29:7f:e4:eb:af:d5:c7:24:89:75:c0:85:01:81: 03:aa:2f:dd:f3:55:4e:ef:85:99:b7:ef:52:1d:18:df:50:c9: 0c:a0:96:c0:33:4f:c6:8d:0e:12:72:9c:df:7e:37:a8:eb:30: 05:4e:5b:e1:c7:21:33:0e:63:f0:69:7b:48:64:8a:54:ac:bc: b5:fe:6f:38:0c:d2:2e:c5:64:d9:77:e3:10:ad:1e:0a:d6:fd: c4:a1:5e:45:22:7e:2d:42:cb:da:70:16:bd:a6:69:30:f1:71: ab:c6:25:20:6f:46:cd:73:dd:1f:c8:bc:60:a0:7d:51:eb:17: 92:ce:67:75:d5:4a:64:d0:e1:37:be:15:3b:0b:bf:cc:d8:cc: da:01:8c:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMDE0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzJmNi0wZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUnWAmaUrrnKBz2pj4yCSN4ONN2j+kLdN6IQNFrrYqS6WDmAIS6wAnFe0Jmz omAP4Jukpd03/apYvEBRlJg+q5ipS7gTfObKN0j4dIkrKBkjf3Qs/JdF06OB8t+2 agv7eJ947zxfOIrGu2vDcOKnP8C2aY8cp6DZhWtXqkZ0qjKVwZuzs99uetNjS0za G4mVZMdlYBNgMBLZmc+UdjKED4XBvx9EF6PD0gpZT8Ay3MnmU/JG9jcgGM2yawaM EfQ+6cL6DLHO3dGrrlWV18z8IewXCBO/GBPGw9jZNtwSjuzqK3tv+nSxOYyi5NZv 16Y+QTII4wi8cK5CpOTOteWDAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHczoO7N wX0Qf+xvWGtJQzNGIcmPMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvREI5MzUxMTA1 QTVCMTFFQkJCQ0FBRjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqt4wDQYJKoZIhvcNAQELBQADggEBAJfaDqPAYMCrZ0Is WYMoADLyMMlsWXbQHNcAw8v+G1NQoaXupYjv19DQ6p8BRiFstgKhNJdBOdH39okG nDKN5ihrJio+C/7Fi3/Axu9TaDdZlx4x5AyCwEPbLL4/v9WZsU9NaB7hg7S+eToL vhKg9dopf+Trr9XHJIl1wIUBgQOqL93zVU7vhZm371IdGN9QyQyglsAzT8aNDhJy nN9+N6jrMAVOW+HHITMOY/Bpe0hkilSsvLX+bzgM0i7FZNl34xCtHgrW/cShXkUi fi1Cy9pwFr2maTDxcavGJSBvRs1z3R/IvGCgfVHrF5LOZ3XVSmTQ4Te+FTsLv8zY zNoBjFs= -----END CERTIFICATE-----Generated at Sat May 18 15:58:21 2024 by rpki-client on console-ams.rpki-client.org