$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa File: 3B398B8A178411EC83735974C4F9AE02.roa (raw, json) Hash identifier: SksUcxMguSSsYgsTOlV2nGlosz5GcrNGDJ2VSXMrlE0= Subject key identifier: B1:72:70:83:30:02:03:BB:EE:0B:98:D4:38:D0:19:23:D5:63:4C:BD Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0538 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:57 +0000 ROA not before: Tue 03 Sep 2024 01:14:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 37931 IP address blocks: 61.88.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1 Validity Not Before: Sep 3 01:14:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66310-3555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:35:29:a5:46:80:2a:8f:f6:0d:49:09:8b: e3:1a:bd:7f:5a:7c:3f:f3:34:0f:8d:e9:f5:ad:14: ef:eb:35:e8:4e:9d:d6:9a:56:77:cd:73:c1:cb:e9: 52:34:0d:87:7d:c9:6b:8f:04:f5:dd:8e:c3:30:92: 28:84:ab:44:48:37:7e:74:f9:85:8e:57:54:4e:b2: 37:a4:1e:2b:ff:ff:0b:bf:7d:a1:36:62:97:e2:d6: f0:4d:f6:dd:50:26:60:ef:54:ea:c9:f6:0a:b6:20: e4:f1:20:50:ab:6e:f6:e7:ed:61:fd:56:bb:26:a2: d1:1c:ab:3a:c4:fd:60:e5:90:c0:07:68:5b:a5:8a: bf:58:fc:c6:67:e0:ee:94:9d:1b:38:0f:82:cc:53: f0:5b:f3:4c:fc:99:7e:cd:5f:37:0b:46:e8:55:89: f4:76:70:81:1f:2a:1e:19:c4:ed:7e:68:2f:a4:8b: 7c:b3:7b:bc:74:08:f2:90:24:3f:5b:6f:00:40:47: d6:a5:7d:91:88:6b:96:ce:da:50:4f:dc:4f:29:e3: 0d:76:24:be:b3:0c:5d:02:37:c5:6d:cb:20:7b:99: 81:60:a1:e1:6e:2d:a9:9f:e7:75:b5:2c:c0:71:8f: ca:bb:55:8d:b3:c9:40:e2:f5:fe:b3:0c:a2:c6:35: d8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:72:70:83:30:02:03:BB:EE:0B:98:D4:38:D0:19:23:D5:63:4C:BD X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.88.223.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:6e:ca:54:c3:60:a2:c1:88:cf:a2:3f:ab:d5:18:83:30:85: c1:7c:f7:e8:08:6f:b7:aa:31:28:b5:a4:5d:a3:d8:c1:96:42: 1f:90:11:60:ef:0d:60:cf:59:20:a2:1f:fa:b2:fb:00:74:75: 5a:92:a7:e0:a3:57:e5:5e:ff:8d:86:06:1f:f4:bb:0b:a8:0a: 9c:a1:fe:e3:d3:b8:54:c8:9b:76:ef:2d:19:7c:af:f6:3f:75: d7:4d:d3:83:40:3b:e2:e4:ba:86:18:68:73:b7:46:c6:0f:39: 43:30:87:99:16:9d:b9:f5:4b:7d:1b:b3:79:aa:56:6c:2c:42: 0f:40:a0:26:9f:a4:50:5b:7b:e9:d4:bd:63:a7:5d:23:d4:1b: 58:93:6f:59:5e:ff:b6:7a:28:57:97:3c:3d:21:12:f1:7a:22: f8:ab:7c:63:8f:35:33:2f:e2:5c:8a:ed:2c:2b:0f:5a:72:34: c7:5a:38:3d:6a:b4:83:bb:70:87:c5:b4:3c:14:8d:f5:8e:a6: d4:96:d1:72:e7:e2:76:9e:e7:29:14:59:16:1f:58:d7:80:ce: da:fd:2f:b6:10:b7:ab:f9:ce:cc:c8:eb:d5:bd:2f:47:94:b6: 5a:c0:43:30:37:ca:e1:71:f9:be:91:eb:c1:a6:84:db:a9:3b: 88:b9:63:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMxMC0zNTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJQ1KaVGgCqP9g1JCYvjGr1/Wnw/8zQPjen1rRTv6zXoTp3WmlZ3zXPBy+lS NA2HfclrjwT13Y7DMJIohKtESDd+dPmFjldUTrI3pB4r//8Lv32hNmKX4tbwTfbd UCZg71TqyfYKtiDk8SBQq2725+1h/Va7JqLRHKs6xP1g5ZDAB2hbpYq/WPzGZ+Du lJ0bOA+CzFPwW/NM/Jl+zV83C0boVYn0dnCBHyoeGcTtfmgvpIt8s3u8dAjykCQ/ W28AQEfWpX2RiGuWztpQT9xPKeMNdiS+swxdAjfFbcsge5mBYKHhbi2pn+d1tSzA cY/Ku1WNs8lA4vX+swyixjXYbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLFycIMw AgO77guY1DjQGSPVY0y9MB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvM0IzOThCOEEx Nzg0MTFFQzgzNzM1OTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WN8wDQYJKoZIhvcNAQELBQADggEBAJ9uylTDYKLBiM+i P6vVGIMwhcF89+gIb7eqMSi1pF2j2MGWQh+QEWDvDWDPWSCiH/qy+wB0dVqSp+Cj V+Ve/42GBh/0uwuoCpyh/uPTuFTIm3bvLRl8r/Y/dddN04NAO+LkuoYYaHO3RsYP OUMwh5kWnbn1S30bs3mqVmwsQg9AoCafpFBbe+nUvWOnXSPUG1iTb1le/7Z6KFeX PD0hEvF6IvirfGOPNTMv4lyK7SwrD1pyNMdaOD1qtIO7cIfFtDwUjfWOptSW0XLn 4nae5ykUWRYfWNeAztr9L7YQt6v5zszI69W9L0eUtlrAQzA3yuFx+b6R68GmhNup O4i5Y+o= -----END CERTIFICATE-----Generated at Sun Feb 16 20:25:24 2025 by rpki-client