$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa File: DC2BF7FC484411ED8285CF43C4F9AE02.roa (raw, json) Hash identifier: WUAfyK46I7VOPEuBaEo7zcM+Ve990o72fJocgCBWxVs= Subject key identifier: DA:66:A8:82:36:DA:B0:9D:71:51:1B:80:1E:13:56:D0:72:F3:1E:90 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 36CE Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa Signing time: Sat 08 Jul 2023 14:31:27 +0000 ROA not before: Sat 08 Jul 2023 14:31:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55790 IP address blocks: 210.86.219.0/24 maxlen: 24 2001:fb0:103c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14030 (0x36ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 8 14:31:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9733f-db0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:42:eb:7d:cd:8a:c3:3a:10:f3:76:33:1b:d4: 84:0f:f8:04:39:c8:c0:05:da:46:4b:7f:ba:9f:46: c4:d3:65:1f:65:64:5e:89:eb:d3:b2:42:e7:25:a4: 01:7d:6f:81:38:90:6d:01:34:5d:32:a8:3a:67:53: a8:26:42:d7:a8:3f:88:91:4a:8a:74:85:36:0b:71: 75:a0:59:c3:69:e3:2b:e2:1b:2c:bc:e6:4d:ff:8e: 37:41:fe:ce:b0:bf:cb:cb:8d:eb:13:8c:20:78:06: 7f:bb:07:51:54:85:a3:e6:be:b0:7e:67:4e:19:e3: d6:17:d2:ec:4c:6c:d6:cd:18:c2:4a:af:69:2a:8a: d2:4e:2c:61:34:38:2b:24:16:a3:15:b5:78:96:a6: 0e:fc:25:3e:95:d1:cb:64:66:52:bb:33:18:dc:ab: 18:4d:1a:30:70:ff:3d:00:48:4a:31:b3:c3:d0:15: 2c:e1:27:50:7d:55:4c:fa:39:0e:9d:3f:b6:8e:8a: ce:ef:2e:54:74:50:5a:17:8c:4f:74:c9:bd:0f:59: 55:0d:a4:08:15:c7:10:b6:fc:07:68:72:3a:64:e0: e1:4a:0f:cb:34:39:6f:5b:42:02:9b:7c:e4:3c:6f: e8:50:7f:fc:4a:07:df:d5:5c:99:0b:56:e8:8a:e8: fb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:66:A8:82:36:DA:B0:9D:71:51:1B:80:1E:13:56:D0:72:F3:1E:90 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.219.0/24 IPv6: 2001:fb0:103c::/48 Signature Algorithm: sha256WithRSAEncryption 61:4a:a1:3c:1b:53:21:e9:ad:90:0e:80:da:a0:03:16:09:e0: 2d:88:c9:4a:43:e7:9b:17:73:62:4a:4a:02:ef:da:e2:0b:b9: f5:b2:2a:e3:68:ab:cf:da:22:ac:57:90:02:97:7f:a2:f7:e3: c2:70:fe:c2:d9:7d:d0:de:98:93:65:c3:6c:ee:c9:72:3e:a8: 47:35:f3:33:e5:c7:9e:39:c1:c9:b9:06:c5:38:b7:cd:4e:e8: 12:da:30:96:7a:72:11:3f:83:88:29:83:dd:fc:dc:91:78:12: d8:56:61:0d:30:ba:e1:33:57:a8:b6:c9:fd:2a:67:ef:bd:df: 10:9b:8b:e6:16:dd:99:13:b2:fd:1c:24:62:2a:99:20:1a:99: e4:75:8b:20:b2:b4:f1:6b:54:9a:bd:b7:fc:f8:52:12:c5:31: 47:71:9a:ee:dd:87:9f:a7:a2:90:8f:f9:c6:b5:75:e8:10:e4: 30:a6:08:27:8b:0e:40:f7:ba:8a:6f:13:60:ea:dd:32:f2:fe: 60:b3:91:40:f5:e2:86:de:a9:d9:e9:32:31:26:ba:16:af:37: 7e:e8:23:8c:72:e3:6f:1b:f4:f1:39:9d:a2:36:70:f0:95:81: d4:8c:f6:09:23:ac:93:08:4b:6a:d0:26:50:67:6b:22:38:42: f3:4c:75:62 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMwNzA4MTQzMTI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5NzMzZi1kYjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0Lrfc2KwzoQ83YzG9SED/gEOcjABdpGS3+6n0bE02UfZWReievTskLnJaQB fW+BOJBtATRdMqg6Z1OoJkLXqD+IkUqKdIU2C3F1oFnDaeMr4hssvOZN/443Qf7O sL/Ly43rE4wgeAZ/uwdRVIWj5r6wfmdOGePWF9LsTGzWzRjCSq9pKorSTixhNDgr JBajFbV4lqYO/CU+ldHLZGZSuzMY3KsYTRowcP89AEhKMbPD0BUs4SdQfVVM+jkO nT+2jorO7y5UdFBaF4xPdMm9D1lVDaQIFccQtvwHaHI6ZODhSg/LNDlvW0ICm3zk PG/oUH/8Sgff1VyZC1boiuj7YwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNpmqII2 2rCdcVEbgB4TVtBy8x6QMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvREMyQkY3RkM0 ODQ0MTFFRDgyODVDRjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADSVtswDwQCAAIwCQMHACABD7AQPDANBgkqhkiG9w0BAQsF AAOCAQEAYUqhPBtTIemtkA6A2qADFgngLYjJSkPnmxdzYkpKAu/a4gu59bIq42ir z9oirFeQApd/ovfjwnD+wtl90N6Yk2XDbO7Jcj6oRzXzM+XHnjnBybkGxTi3zU7o EtowlnpyET+DiCmD3fzckXgS2FZhDTC64TNXqLbJ/Spn773fEJuL5hbdmROy/Rwk YiqZIBqZ5HWLILK08WtUmr23/PhSEsUxR3Ga7t2Hn6eikI/5xrV16BDkMKYIJ4sO QPe6im8TYOrdMvL+YLORQPXiht6p2ekyMSa6Fq83fugjjHLjbxv08TmdojZw8JWB 1Iz2CSOskwhLatAmUGdrIjhC80x1Yg== -----END CERTIFICATE-----Generated at Fri May 24 15:43:20 2024 by rpki-client on console-fra.rpki-client.org