$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa File: 9765FB988A5D11EE9E6AA223C4F9AE02.roa (raw, json) Hash identifier: gdVUdTDJS2HzCLE0SH5abxwvNMrpuz9i+05KM/O5dKM= Subject key identifier: 93:EC:8D:FE:04:80:50:D9:F0:7C:EA:7F:22:C2:84:19:D4:60:31:21 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0733 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa Signing time: Mon 28 Oct 2024 21:52:35 +0000 ROA not before: Mon 28 Oct 2024 21:52:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 394869 IP address blocks: 61.245.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Oct 28 21:52:35 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672007a2-63b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:31:b1:20:8e:43:7b:d4:a0:d0:97:f5:73: 7c:d2:61:8f:22:19:05:63:2e:d0:92:d5:f2:1e:e4: a4:a7:fc:d1:ba:63:6e:7c:6d:4d:71:b2:b4:7b:b5: 23:84:4d:23:84:68:5a:93:65:0b:69:e6:d4:ab:05: fc:1b:d7:f0:79:61:d5:83:d8:be:f2:d2:84:47:ab: d1:87:66:65:ac:17:c8:7e:d0:6c:fc:54:66:64:0e: 00:e6:c1:f4:9c:6e:cd:52:10:cc:f6:b3:13:e0:9b: cc:e0:d8:bc:36:f7:61:07:92:38:e7:ad:8c:11:f5: 2f:2d:a2:63:62:60:ba:65:9a:93:33:56:da:2b:21: 06:67:e0:99:9d:85:18:b1:92:07:89:c0:32:93:53: 85:75:31:ad:d1:b0:36:8d:bb:a1:c3:fb:fa:40:28: 17:4c:30:b3:49:a4:9a:30:cf:59:0d:5c:3a:31:d3: b6:de:12:ab:3e:04:3a:53:aa:4c:a1:33:f3:32:7f: 1b:fa:c2:75:13:e8:93:e6:b0:18:a9:88:5d:6b:5a: 58:4d:f4:f2:b2:b7:2e:11:da:d5:57:e8:5f:c4:d1: f1:f3:ab:52:3e:f7:71:89:2d:a5:45:09:34:96:2e: be:dd:44:37:67:5e:d2:54:6e:d6:75:cd:a2:4b:72: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EC:8D:FE:04:80:50:D9:F0:7C:EA:7F:22:C2:84:19:D4:60:31:21 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.31.0/24 Signature Algorithm: sha256WithRSAEncryption 23:af:8b:57:68:dc:4f:18:2c:03:0c:e0:ab:2d:cb:72:33:54: b0:2c:b2:ed:e7:c0:72:36:94:ff:70:12:5f:25:f9:61:d0:8d: de:34:8f:49:18:d2:73:d9:63:3a:22:ed:9b:cd:76:3f:ca:3c: 0b:50:14:72:16:f2:83:10:8f:4d:99:57:e2:d5:f5:08:9c:dc: 0a:5c:8c:e9:60:46:74:b6:f4:28:bc:d7:3b:c0:1d:3a:6a:ce: 73:75:d3:90:f1:be:c1:a5:c9:1f:24:1a:60:3b:5d:90:7f:b5: 97:b4:d9:49:54:ce:09:0e:5e:5c:86:2d:00:e4:83:0e:cf:b4: 86:a9:eb:6d:80:66:7f:81:42:f4:eb:18:c0:1e:2d:9e:5e:69: 75:10:27:1f:0a:3a:22:bd:91:f1:0f:af:99:5f:de:0e:25:61: 55:f7:05:ed:01:b9:dc:a7:e5:68:1c:6f:f9:a0:ff:9a:79:c4: 85:22:ad:dd:b1:e5:eb:43:56:56:eb:46:9c:39:ba:86:f0:a0: 23:19:af:93:df:bb:ae:ed:fc:ff:64:16:15:36:2d:19:d3:a7: 45:27:ad:7e:fa:98:4a:0c:dc:29:55:d4:8c:7b:eb:c8:7a:59: 9a:02:79:af:c0:c7:f6:fd:42:5d:1e:b1:5a:85:e8:e5:1a:2f: 1a:8b:c4:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjQxMDI4MjE1MjM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMDdhMi02M2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6cxsSCOQ3vUoNCX9XN80mGPIhkFYy7QktXyHuSkp/zRumNufG1NcbK0e7Uj hE0jhGhak2ULaebUqwX8G9fweWHVg9i+8tKER6vRh2ZlrBfIftBs/FRmZA4A5sH0 nG7NUhDM9rMT4JvM4Ni8NvdhB5I4562MEfUvLaJjYmC6ZZqTM1baKyEGZ+CZnYUY sZIHicAyk1OFdTGt0bA2jbuhw/v6QCgXTDCzSaSaMM9ZDVw6MdO23hKrPgQ6U6pM oTPzMn8b+sJ1E+iT5rAYqYhda1pYTfTysrcuEdrVV+hfxNHx86tSPvdxiS2lRQk0 li6+3UQ3Z17SVG7Wdc2iS3KC+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJPsjf4E gFDZ8HzqfyLChBnUYDEhMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvOTc2NUZCOTg4 QTVEMTFFRTlFNkFBMjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA99R8wDQYJKoZIhvcNAQELBQADggEBACOvi1do3E8YLAMM 4Ksty3IzVLAssu3nwHI2lP9wEl8l+WHQjd40j0kY0nPZYzoi7ZvNdj/KPAtQFHIW 8oMQj02ZV+LV9Qic3ApcjOlgRnS29Ci81zvAHTpqznN105DxvsGlyR8kGmA7XZB/ tZe02UlUzgkOXlyGLQDkgw7PtIap622AZn+BQvTrGMAeLZ5eaXUQJx8KOiK9kfEP r5lf3g4lYVX3Be0Budyn5Wgcb/mg/5p5xIUird2x5etDVlbrRpw5uobwoCMZr5Pf u67t/P9kFhU2LRnTp0UnrX76mEoM3ClV1Ix768h6WZoCea/Ax/b9Ql0esVqF6OUa LxqLxPU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org