$ rpki-client -vvf rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/398B3186FE5111E6BCEC6E72C4F9AE02.roa File: 398B3186FE5111E6BCEC6E72C4F9AE02.roa (raw, json) Hash identifier: qGMPhkXUvwPd3kty4wB7soxvYFhUVT8gwc1IiwWOXGQ= Subject key identifier: 89:8A:79:28:2E:36:5A:23:8C:C1:98:1A:45:3C:3F:F8:37:C0:A0:71 Certificate issuer: /CN=A91798AD/serialNumber=7C1A0F48EA43231FA3343D592821EF29E8D2B31B Certificate serial: 1AF5 Authority key identifier: 7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBoPSOpDIx-jND1ZKCHvKejSsxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/398B3186FE5111E6BCEC6E72C4F9AE02.roa Signing time: Fri 22 Sep 2023 16:33:25 +0000 ROA not before: Fri 22 Sep 2023 16:33:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 17922 IP address blocks: 114.4.64.0/24 maxlen: 24 114.4.65.0/24 maxlen: 24 114.4.66.0/24 maxlen: 24 114.4.67.0/24 maxlen: 24 114.4.68.0/24 maxlen: 24 114.4.69.0/24 maxlen: 24 114.4.70.0/24 maxlen: 24 114.4.71.0/24 maxlen: 24 124.195.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.crl rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBoPSOpDIx-jND1ZKCHvKejSsxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6901 (0x1af5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91798AD/serialNumber=7C1A0F48EA43231FA3343D592821EF29E8D2B31B Validity Not Before: Sep 22 16:33:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650dc1d4-5640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1c:a3:ea:a3:49:c0:81:45:29:0a:e3:92:ee: d1:40:5d:6e:7c:f8:47:79:13:c5:a4:63:01:f0:0b: 92:04:27:4a:8e:1e:c8:c0:f9:9b:cd:73:86:e4:bb: fa:40:c2:59:47:ce:49:bb:0c:8c:40:fb:37:37:6c: 5f:99:59:07:f3:ba:50:db:45:62:7d:3e:68:52:1b: 66:a3:aa:c8:34:77:db:1f:58:37:1e:94:0b:c5:7f: 29:96:de:25:0e:6f:62:f8:99:b6:68:64:70:bc:06: fd:e3:c8:e1:cf:23:5d:49:be:32:9f:ab:8f:df:22: 9f:78:a5:13:22:6c:b9:2a:bc:d2:cc:7e:96:98:00: 27:d7:3c:a7:e8:09:fd:28:1b:38:d7:4e:55:66:ee: f3:b3:3c:cc:bc:70:71:fc:5e:74:e5:aa:fc:3f:94: 66:e2:48:db:1d:9d:a4:41:9c:c1:6e:9e:d2:bd:7b: 7b:b1:f4:1a:e4:2e:19:46:c4:1a:65:01:b7:2c:0b: cf:e8:8b:3b:20:a9:fb:f1:e0:fd:98:04:d6:2b:c8: d4:c3:9e:23:db:6d:f4:c8:1f:86:ca:be:3f:4e:6b: e6:7a:2a:0c:51:7f:3b:20:ac:a0:0b:e4:5e:a6:79: 34:2b:ea:17:58:e7:29:d8:d8:19:8b:37:d0:19:91: db:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8A:79:28:2E:36:5A:23:8C:C1:98:1A:45:3C:3F:F8:37:C0:A0:71 X509v3 Authority Key Identifier: keyid:7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBoPSOpDIx-jND1ZKCHvKejSsxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/398B3186FE5111E6BCEC6E72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.4.64.0/21 124.195.38.0/23 Signature Algorithm: sha256WithRSAEncryption 52:6d:8a:b6:49:13:e2:74:42:27:c2:db:12:cc:4d:85:d3:ea: 96:66:c9:41:14:ec:78:ad:21:42:06:01:f0:e8:38:50:64:d5: 5c:49:5d:bc:e4:a4:4d:87:f3:5d:8a:da:de:38:09:ca:24:6f: 51:2e:49:e7:2f:41:88:c4:1a:25:45:ff:f9:a8:23:78:c1:2d: 45:fa:72:91:b5:49:f3:61:78:aa:00:46:19:52:58:91:88:63: f3:a0:87:80:be:35:97:35:14:73:91:79:c2:15:bb:67:f0:a3: be:82:6a:2b:15:cb:12:08:6e:f5:10:4f:75:e7:0e:9a:58:bc: 16:96:d0:a5:b1:95:0b:c0:01:35:9e:a1:d7:c9:7f:94:f9:7f: 1f:99:b0:1b:e2:a8:71:e6:69:fc:e9:ac:a0:06:5d:46:82:94: 09:f6:57:8e:b4:ed:10:7a:0e:22:04:f4:30:b4:fc:39:c2:1c: 6f:60:fd:7e:f0:98:26:af:5a:b5:e1:81:72:6d:2c:34:62:e6: 2a:97:83:b6:b5:26:6d:c9:e7:95:3b:f9:15:08:55:05:e4:f3: 1e:7e:da:2c:0f:ee:a4:3a:10:d0:4d:a1:e8:8e:6f:05:23:29: c9:d5:77:da:40:cf:a3:58:0e:a4:61:0d:4f:08:c9:40:37:92: a9:54:85:66 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4QUQxMTAvBgNVBAUTKDdDMUEwRjQ4RUE0MzIzMUZBMzM0M0Q1OTI4MjFFRjI5 RThEMkIzMUIwHhcNMjMwOTIyMTYzMzI1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBkYzFkNC01NjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xyj6qNJwIFFKQrjku7RQF1ufPhHeRPFpGMB8AuSBCdKjh7IwPmbzXOG5Lv6 QMJZR85JuwyMQPs3N2xfmVkH87pQ20VifT5oUhtmo6rINHfbH1g3HpQLxX8plt4l Dm9i+Jm2aGRwvAb948jhzyNdSb4yn6uP3yKfeKUTImy5KrzSzH6WmAAn1zyn6An9 KBs4105VZu7zszzMvHBx/F505ar8P5Rm4kjbHZ2kQZzBbp7SvXt7sfQa5C4ZRsQa ZQG3LAvP6Is7IKn78eD9mATWK8jUw54j2230yB+Gyr4/TmvmeioMUX87IKygC+Re pnk0K+oXWOcp2NgZizfQGZHbTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFImKeSgu NlojjMGYGkU8P/g3wKBxMB8GA1UdIwQYMBaAFHwaD0jqQyMfozQ9WSgh7yno0rMb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OThBRC83MEVGQjRBQ0ZF MkExMUU2OEYyQzVBMTNDNEY5QUUwMi9mQm9QU09wREl4LWpORDFaS0NIdktlalNz eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZCb1BTT3BESXgtak5EMVpLQ0h2S2VqU3N4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk4QUQvNzBFRkI0QUNGRTJBMTFFNjhGMkM1QTEzQzRGOUFFMDIvMzk4QjMxODZG RTUxMTFFNkJDRUM2RTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANyBEADBAF8wyYwDQYJKoZIhvcNAQELBQADggEBAFJtirZJ E+J0QifC2xLMTYXT6pZmyUEU7HitIUIGAfDoOFBk1VxJXbzkpE2H812K2t44Ccok b1EuSecvQYjEGiVF//moI3jBLUX6cpG1SfNheKoARhlSWJGIY/Ogh4C+NZc1FHOR ecIVu2fwo76CaisVyxIIbvUQT3XnDppYvBaW0KWxlQvAATWeodfJf5T5fx+ZsBvi qHHmafzprKAGXUaClAn2V4607RB6DiIE9DC0/DnCHG9g/X7wmCavWrXhgXJtLDRi 5iqXg7a1Jm3J55U7+RUIVQXk8x5+2iwP7qQ6ENBNoeiObwUjKcnVd9pAz6NYDqRh DU8IyUA3kqlUhWY= -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org