$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa File: A88A36D0003A11EEB8430127C4F9AE02.roa (raw, json) Hash identifier: S9c42K/e6Cb4RZkOmU2A+Wc3g/Elgh6iQKBCJml/etM= Subject key identifier: 5D:F6:FF:C4:98:F8:C0:89:6B:C2:55:8C:E5:85:62:B5:85:33:80:50 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 3470 Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa Signing time: Thu 22 Aug 2024 15:00:56 +0000 ROA not before: Thu 22 Aug 2024 15:00:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9260 IP address blocks: 110.38.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Aug 22 15:00:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c752a8-429d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1d:a8:2a:a0:dd:42:dc:cc:41:05:55:43:86: 1d:54:f2:95:8c:3d:28:77:c7:d3:7a:01:10:fc:7f: 83:ac:cd:82:ee:c3:06:59:37:a7:77:b1:a9:76:da: fd:55:ed:47:03:4b:32:b0:d2:65:06:26:b2:ca:54: 77:7d:39:56:96:27:13:f7:79:49:25:21:48:02:db: 83:be:f4:14:24:03:9d:c1:5b:9d:d1:79:3a:6c:cf: 7a:6e:b5:ee:02:7d:77:67:4d:b6:70:a6:d1:e0:b0: 53:b8:c0:1b:08:47:b9:a8:77:57:87:65:12:50:4d: 70:a4:89:6a:9b:cd:d1:c8:18:24:1c:df:c9:72:81: 98:24:05:20:52:a1:47:46:d1:02:0d:ed:33:47:43: aa:f1:25:05:3b:eb:0d:2c:41:32:b8:bc:68:7a:fc: 0c:f0:7c:63:df:5b:02:e7:55:4e:2b:19:58:b9:89: 1c:ab:bf:90:5c:d3:b5:5e:9e:04:c1:ff:16:9b:87: f9:fa:45:6b:61:f3:7d:1a:99:2f:96:0b:05:35:ec: 41:6a:55:ff:46:3a:fd:9f:6a:79:d5:16:7a:f6:bf: f4:75:4a:dd:66:3e:1d:26:03:61:10:88:e1:7c:9f: 97:7a:74:2b:05:c9:93:87:04:0f:a7:76:be:41:ec: 7b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F6:FF:C4:98:F8:C0:89:6B:C2:55:8C:E5:85:62:B5:85:33:80:50 X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.38.31.0/24 Signature Algorithm: sha256WithRSAEncryption 37:78:fb:54:57:31:1f:c9:0d:97:8b:fd:44:13:61:c1:d6:4f: 50:4e:b6:79:af:98:db:9c:75:1a:8c:0c:a8:61:60:fb:c6:37: 7b:f1:01:bb:d8:a4:1a:8e:b8:30:fc:05:ab:4f:84:59:e7:cb: 67:80:44:e6:04:0c:a6:65:cf:c0:52:96:f2:ae:35:bc:4d:07: 60:4d:f1:fc:35:d3:fe:24:48:c2:c7:26:f9:65:34:72:4d:c6: ad:b0:4a:7e:91:6a:89:3f:9f:a5:03:2c:b8:df:70:b8:63:c4: c9:58:7c:f2:3e:98:2c:a3:c1:70:7e:08:c1:49:e1:1d:18:a6: cc:e8:bd:d2:2b:b3:cc:a1:52:97:7c:5c:66:d2:45:4d:f1:8b: c1:30:a6:59:59:12:f7:3a:d9:2a:53:4e:4b:14:3c:d4:ec:4c: 29:8d:d9:1d:30:71:29:09:3d:2d:35:a5:2d:18:cb:b7:2a:53: 17:17:d5:cf:15:f0:1a:0f:53:7a:66:12:bb:03:1e:59:fe:52: 9e:e1:45:18:3b:34:13:3c:4c:94:35:7c:33:15:d0:c0:48:99: 8b:41:a7:39:ac:5c:23:51:e9:06:8f:ad:fe:2a:10:83:fa:79: ca:85:a3:b4:8b:79:c5:a6:a5:64:c0:b2:61:2a:ef:e3:45:4d: 0b:ec:73:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjQwODIyMTUwMDU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3NTJhOC00MjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApx2oKqDdQtzMQQVVQ4YdVPKVjD0od8fTegEQ/H+DrM2C7sMGWTend7Gpdtr9 Ve1HA0sysNJlBiayylR3fTlWlicT93lJJSFIAtuDvvQUJAOdwVud0Xk6bM96brXu An13Z022cKbR4LBTuMAbCEe5qHdXh2USUE1wpIlqm83RyBgkHN/JcoGYJAUgUqFH RtECDe0zR0Oq8SUFO+sNLEEyuLxoevwM8Hxj31sC51VOKxlYuYkcq7+QXNO1Xp4E wf8Wm4f5+kVrYfN9GpkvlgsFNexBalX/Rjr9n2p51RZ69r/0dUrdZj4dJgNhEIjh fJ+XenQrBcmThwQPp3a+Qex7qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF32/8SY +MCJa8JVjOWFYrWFM4BQMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZGQjAvRTU1N0MwMDAxRDkyMTFFMjkzM0EyMUY2MDhCMDJDRDIvQTg4QTM2RDAw MDNBMTFFRUI4NDMwMTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuJh8wDQYJKoZIhvcNAQELBQADggEBADd4+1RXMR/JDZeL /UQTYcHWT1BOtnmvmNucdRqMDKhhYPvGN3vxAbvYpBqOuDD8BatPhFnny2eAROYE DKZlz8BSlvKuNbxNB2BN8fw10/4kSMLHJvllNHJNxq2wSn6Raok/n6UDLLjfcLhj xMlYfPI+mCyjwXB+CMFJ4R0YpszovdIrs8yhUpd8XGbSRU3xi8EwpllZEvc62SpT TksUPNTsTCmN2R0wcSkJPS01pS0Yy7cqUxcX1c8V8BoPU3pmErsDHln+Up7hRRg7 NBM8TJQ1fDMV0MBImYtBpzmsXCNR6QaPrf4qEIP6ecqFo7SLecWmpWTAsmEq7+NF TQvscw0= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org