$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa File: 3B398B8A178411EC83735974C4F9AE02.roa (raw, json) Hash identifier: 5UDUidpQPGHgxOTOuzJEc3YzmvENE2MsYWlww1+lJn8= Subject key identifier: D0:D9:A0:2D:94:C5:9B:B3:28:EC:66:44:01:F0:EF:3E:64:4E:04:A1 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0445 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:02:10 +0000 ROA not before: Thu 03 Aug 2023 01:02:10 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 37931 IP address blocks: 61.88.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 01:02:10 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc92-3fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d9:66:81:f6:0b:96:89:23:b2:8a:3b:dd:2b: 6e:08:1e:36:9b:8d:f8:cc:e4:3e:ae:29:fc:3e:2e: b6:5d:fe:9a:09:65:64:d9:d3:f6:3d:04:8d:7a:36: ec:db:98:dd:86:2c:ba:17:4f:ab:24:91:1b:08:2b: 28:b8:78:82:aa:2d:54:5c:c4:cc:5a:9b:3b:64:f2: 55:8c:cf:d0:7a:6c:d2:81:3b:b6:88:65:92:69:c9: 02:be:af:2b:20:af:15:af:3a:62:45:23:c2:b4:51: 08:fc:d1:53:c3:57:98:05:ca:46:32:d8:78:81:da: a4:39:3e:50:7a:09:e8:7a:29:0a:d1:6b:62:85:1a: f8:da:ee:3b:e3:a3:43:45:ff:b7:4e:bd:ea:f2:73: 67:15:1c:7f:c5:86:5d:83:41:cf:62:f8:b4:d0:07: 9f:4b:70:c8:72:28:f1:18:b0:65:82:70:c9:45:1b: ca:c3:e9:61:2f:2d:4d:d5:f1:f5:44:93:6e:d1:88: 3e:97:1f:3a:39:09:eb:d5:66:9d:db:84:a9:c8:ff: 07:1e:15:73:aa:cf:bb:0e:22:dc:13:b7:79:9a:41: a8:58:a5:bf:36:86:44:8a:4d:bb:d8:ec:7d:30:a9: 07:af:97:aa:30:45:20:76:70:b1:f6:82:76:08:e8: 9c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D9:A0:2D:94:C5:9B:B3:28:EC:66:44:01:F0:EF:3E:64:4E:04:A1 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3B398B8A178411EC83735974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.88.223.0/24 Signature Algorithm: sha256WithRSAEncryption af:c0:b0:b3:06:e0:5b:41:da:63:45:21:81:39:5a:3e:2f:de: ef:e4:8a:a5:dd:94:4c:16:c6:51:ae:7f:85:32:ba:85:cb:68: 26:0e:bd:3b:40:df:f7:6a:74:68:8d:1f:0d:f6:50:90:57:48: 69:9c:93:8b:b1:df:2b:b8:0b:a6:94:66:3a:c5:f2:5b:f4:74: f6:70:25:01:f6:8e:e4:3f:37:54:36:f5:75:18:fa:d9:00:82: 12:b1:e5:02:4c:3a:9c:00:89:bb:a2:a9:b6:1f:0a:b1:c5:52: 80:6e:25:f0:59:92:8a:60:5f:54:89:25:22:9c:d1:65:d2:44: d8:8b:71:ac:7c:13:62:a0:9c:74:3e:72:70:a0:04:cf:38:47: 0a:89:1f:0f:e2:62:19:ab:f1:27:5f:26:59:f6:69:e1:5c:50: e3:0e:1d:d9:03:8e:24:9a:7d:a5:86:73:70:99:2a:cf:ca:51: 32:48:f9:ee:80:0b:1b:4a:28:61:20:17:88:da:10:e0:b5:88: fb:91:c6:3a:d0:a6:6a:15:6d:04:40:a5:d5:32:9a:37:4c:cc: 32:e6:03:04:4f:2f:84:85:a7:b0:df:48:3c:e7:eb:74:89:8c: ca:37:ef:e9:8d:13:37:f8:fa:42:fa:d4:4b:ec:83:e7:9f:01: 0c:2c:1b:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjMwODAzMDEwMjEwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM5Mi0zZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtlmgfYLlokjsoo73StuCB42m434zOQ+rin8Pi62Xf6aCWVk2dP2PQSNejbs 25jdhiy6F0+rJJEbCCsouHiCqi1UXMTMWps7ZPJVjM/QemzSgTu2iGWSackCvq8r IK8VrzpiRSPCtFEI/NFTw1eYBcpGMth4gdqkOT5QegnoeikK0WtihRr42u4746ND Rf+3Tr3q8nNnFRx/xYZdg0HPYvi00AefS3DIcijxGLBlgnDJRRvKw+lhLy1N1fH1 RJNu0Yg+lx86OQnr1Wad24SpyP8HHhVzqs+7DiLcE7d5mkGoWKW/NoZEik272Ox9 MKkHr5eqMEUgdnCx9oJ2COicQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNDZoC2U xZuzKOxmRAHw7z5kTgShMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvM0IzOThCOEEx Nzg0MTFFQzgzNzM1OTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WN8wDQYJKoZIhvcNAQELBQADggEBAK/AsLMG4FtB2mNF IYE5Wj4v3u/kiqXdlEwWxlGuf4UyuoXLaCYOvTtA3/dqdGiNHw32UJBXSGmck4ux 3yu4C6aUZjrF8lv0dPZwJQH2juQ/N1Q29XUY+tkAghKx5QJMOpwAibuiqbYfCrHF UoBuJfBZkopgX1SJJSKc0WXSRNiLcax8E2KgnHQ+cnCgBM84RwqJHw/iYhmr8Sdf Jln2aeFcUOMOHdkDjiSafaWGc3CZKs/KUTJI+e6ACxtKKGEgF4jaEOC1iPuRxjrQ pmoVbQRApdUymjdMzDLmAwRPL4SFp7DfSDzn63SJjMo37+mNEzf4+kL61Evsg+ef AQwsG0s= -----END CERTIFICATE-----Generated at Fri May 17 02:38:38 2024 by rpki-client on console-fra.rpki-client.org