$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/FC968EB81E0311E991EB9A44C4F9AE02.roa File: FC968EB81E0311E991EB9A44C4F9AE02.roa (raw, json) Hash identifier: KbvHQp+D9bm3ItxZS9oTgVES8bN1LBjXVwUoLq8TeHI= Subject key identifier: 13:0C:49:BC:E2:63:19:26:56:EF:25:A3:15:4C:5C:7B:95:AE:72:87 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38D5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/FC968EB81E0311E991EB9A44C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:42 +0000 ROA not before: Tue 16 Jul 2024 14:31:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7630 IP address blocks: 110.170.223.0/24 maxlen: 24 210.86.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14549 (0x38d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696844e-2678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ae:8b:34:5a:b3:2b:e5:36:76:99:58:ef:02: f7:fa:c4:aa:39:6e:24:56:81:f5:77:05:92:f5:16: 88:38:2c:09:54:f8:a4:95:db:b0:82:ed:ce:ee:c2: 2c:69:76:92:96:d5:b5:82:fe:66:66:06:77:fb:a9: 2e:d1:be:ac:f1:db:b8:3f:2e:21:e0:55:aa:fa:8a: cc:f6:17:c1:b2:df:0e:4d:64:59:62:95:0a:73:30: 75:cf:76:59:5c:e1:11:2a:c6:2b:71:90:20:be:eb: 74:45:be:9a:42:4f:a0:b5:bd:64:86:fb:b8:1d:fe: 67:94:36:b7:51:fd:8c:0b:09:92:09:23:6f:82:b1: d2:04:7f:cc:a0:ad:7c:74:60:87:5a:83:4b:2f:87: 3a:c4:34:2b:ac:07:e9:a7:6e:3b:34:09:c0:6f:14: 9b:ea:2b:66:6e:a8:9b:04:58:c2:3b:01:e4:7d:06: 18:dc:16:b3:6c:53:31:b8:18:e8:3e:87:7a:7d:e5: 9d:7d:2d:1f:04:6c:c6:fb:e0:5b:2c:1f:db:d2:7c: c1:cf:f1:25:64:31:3b:73:b5:5b:5e:ed:41:e2:42: b0:93:c6:f2:27:5f:45:40:f1:12:e1:72:3f:88:b4: d2:72:9c:2e:bf:f6:57:f9:7f:70:d7:cc:79:88:68: 7a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0C:49:BC:E2:63:19:26:56:EF:25:A3:15:4C:5C:7B:95:AE:72:87 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/FC968EB81E0311E991EB9A44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.223.0/24 210.86.192.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:24:c4:fc:d3:eb:61:f2:c8:09:0c:2b:f7:2d:3e:3f:24:cb: e0:b5:eb:d3:5b:bb:c6:ac:6b:c6:d0:a2:ef:44:27:ea:2b:ad: 9d:36:a1:38:4b:da:ba:36:54:af:97:86:25:46:bc:64:f2:62: 24:30:27:b4:c9:93:f1:16:ea:05:5d:fe:ac:42:eb:1c:b9:f1: f3:5d:e1:e7:fe:1f:2a:c8:1f:6c:a6:6d:fe:16:8c:71:38:0d: ee:df:41:6e:32:0a:3d:1e:45:ed:8f:e8:ec:c0:e2:3c:9f:ac: 63:38:eb:bc:d8:a4:5f:f6:10:41:b1:50:3e:1a:81:8b:4f:aa: 47:2f:ac:4f:eb:a1:6a:a0:75:aa:b6:59:1b:ac:bc:1a:e3:23: 43:7f:73:7e:57:0b:93:0b:2a:f5:c9:66:11:59:07:43:27:32: 9d:b0:b3:de:e2:2f:d3:b0:85:42:3c:f4:de:c2:32:9d:15:1d: c5:3f:60:eb:47:cb:36:a9:35:0e:25:62:3b:f9:d0:21:13:af: ae:c4:5a:73:ea:1f:21:0c:35:af:e9:c5:f9:a4:31:cd:11:0b: 70:de:d3:22:4d:0e:b2:cc:b8:65:86:31:a2:20:08:fc:ba:78: de:47:92:a0:61:29:16:43:9f:5c:80:0d:16:ee:f5:de:e7:24: ab:97:ce:49 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICONUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQ0ZS0yNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmK6LNFqzK+U2dplY7wL3+sSqOW4kVoH1dwWS9RaIOCwJVPiklduwgu3O7sIs aXaSltW1gv5mZgZ3+6ku0b6s8du4Py4h4FWq+orM9hfBst8OTWRZYpUKczB1z3ZZ XOERKsYrcZAgvut0Rb6aQk+gtb1khvu4Hf5nlDa3Uf2MCwmSCSNvgrHSBH/MoK18 dGCHWoNLL4c6xDQrrAfpp247NAnAbxSb6itmbqibBFjCOwHkfQYY3BazbFMxuBjo Pod6feWdfS0fBGzG++BbLB/b0nzBz/ElZDE7c7VbXu1B4kKwk8byJ19FQPES4XI/ iLTScpwuv/ZX+X9w18x5iGh6bwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBMMSbzi YxkmVu8loxVMXHuVrnKHMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvRkM5NjhFQjgx RTAzMTFFOTkxRUI5QTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABuqt8DBADSVsAwDQYJKoZIhvcNAQELBQADggEBAG8kxPzT 62HyyAkMK/ctPj8ky+C169Nbu8asa8bQou9EJ+orrZ02oThL2ro2VK+XhiVGvGTy YiQwJ7TJk/EW6gVd/qxC6xy58fNd4ef+HyrIH2ymbf4WjHE4De7fQW4yCj0eRe2P 6OzA4jyfrGM467zYpF/2EEGxUD4agYtPqkcvrE/roWqgdaq2WRusvBrjI0N/c35X C5MLKvXJZhFZB0MnMp2ws97iL9OwhUI89N7CMp0VHcU/YOtHyzapNQ4lYjv50CET r67EWnPqHyEMNa/pxfmkMc0RC3De0yJNDrLMuGWGMaIgCPy6eN5HkqBhKRZDn1yA DRbu9d7nJKuXzkk= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:00 2024 by rpki-client on console-fra.rpki-client.org