$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa File: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (raw, json) Hash identifier: VoTiPsdb+KAK/LYE5b88EgvlGEc4xLutWyy9tYINRtc= Subject key identifier: CE:0E:92:6A:FB:B6:B7:E0:A6:CC:F5:ED:EA:71:B7:ED:16:1A:D6:77 Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 14DA Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa Signing time: Tue 08 Aug 2023 17:14:20 +0000 ROA not before: Tue 08 Aug 2023 17:14:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 1299 IP address blocks: 115.187.88.0/24 maxlen: 24 115.187.89.0/24 maxlen: 24 115.187.90.0/24 maxlen: 24 115.187.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5338 (0x14da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Aug 8 17:14:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d277ec-1308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ca:58:e1:a8:4e:22:34:1c:df:12:74:f2:55: 2a:57:f8:09:d4:7a:d6:38:30:68:27:48:e3:e2:40: 3a:b5:ca:8d:9c:4b:9c:26:9a:cc:dc:3b:7a:aa:39: b0:c1:6b:f7:2f:40:6a:73:8e:7b:9f:1b:57:94:8b: 3d:55:b8:56:d8:13:ff:c6:5a:7b:d2:f5:27:ab:97: e9:8d:99:b8:83:af:96:be:2b:69:57:ae:43:b7:e5: ca:aa:99:1e:38:43:cc:db:23:4c:2d:af:f9:dc:f7: af:72:06:9a:4f:87:17:bd:4d:88:e9:b3:3a:bb:1b: c1:0b:d3:9a:43:2a:fc:ca:4c:20:f2:1b:c2:ca:57: 9e:cc:6a:6c:d0:30:07:30:26:df:51:4e:e0:eb:73: e5:8c:3e:2a:3c:ec:f1:ef:e7:9c:a2:83:50:f1:00: 5b:d5:e3:c2:da:f2:59:9b:98:ab:33:f9:98:c3:64: b9:b7:8c:e2:cf:69:41:ef:0a:09:3e:b7:6e:71:9d: 50:56:ff:e3:01:bb:d1:0f:07:23:98:28:5f:2c:12: 33:ed:08:35:a6:54:62:8e:9e:0c:7e:42:53:40:7d: 41:7a:c6:97:fe:d7:1e:45:aa:bb:df:0e:eb:a8:02: 40:6b:d4:09:13:54:8f:19:f9:3e:65:32:72:26:bf: 46:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0E:92:6A:FB:B6:B7:E0:A6:CC:F5:ED:EA:71:B7:ED:16:1A:D6:77 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.187.88.0/22 Signature Algorithm: sha256WithRSAEncryption 62:4a:9e:e0:87:54:7a:d5:17:fb:a1:d3:78:13:e1:37:b6:eb: 51:8b:49:ae:d8:a0:b0:5c:32:6a:61:7e:47:c3:d2:54:93:6b: a1:4c:3a:0f:26:0e:fb:0c:5b:61:b9:16:b2:56:0b:fd:a3:e4: b0:3e:1f:10:b7:36:3d:fe:98:3b:c7:ad:e5:f0:c5:c7:8c:a7: e5:f3:41:8c:b3:65:bf:11:f1:13:24:15:1e:db:a3:31:b0:7d: 06:88:3f:4c:3b:4f:fa:44:01:dc:ce:2a:e3:20:9c:bd:cd:ae: 3a:7a:3a:d6:22:57:f9:8d:b4:cf:43:e1:b6:4a:74:5f:98:03: de:5e:94:8c:95:ce:4a:e2:55:1d:7e:b6:72:0a:90:84:a7:5f: a8:21:92:46:70:bb:e6:3e:da:a6:19:c4:d3:0f:6d:a1:9b:cc: 3b:3c:e6:14:7b:96:62:39:6c:67:23:75:1b:e5:c8:51:a0:56: a8:06:bd:40:8f:ad:6f:06:36:08:c8:70:db:48:ef:e4:63:67: e7:65:38:ac:47:e7:b6:2e:23:3c:80:29:6f:3c:ad:3e:18:79: 02:9b:a8:58:bd:d3:19:d1:21:2e:33:6c:d6:ee:57:e0:78:0e: 29:aa:96:af:60:64:fc:44:87:32:d0:26:a8:08:37:3e:c4:4c: 89:04:35:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjMwODA4MTcxNDIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyNzdlYy0xMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncpY4ahOIjQc3xJ08lUqV/gJ1HrWODBoJ0jj4kA6tcqNnEucJprM3Dt6qjmw wWv3L0Bqc457nxtXlIs9VbhW2BP/xlp70vUnq5fpjZm4g6+WvitpV65Dt+XKqpke OEPM2yNMLa/53PevcgaaT4cXvU2I6bM6uxvBC9OaQyr8ykwg8hvCyleezGps0DAH MCbfUU7g63PljD4qPOzx7+ecooNQ8QBb1ePC2vJZm5irM/mYw2S5t4ziz2lB7woJ PrducZ1QVv/jAbvRDwcjmChfLBIz7Qg1plRijp4MfkJTQH1BesaX/tceRaq73w7r qAJAa9QJE1SPGfk+ZTJyJr9GowIDAQABo4IClTCCApEwHQYDVR0OBBYEFM4Okmr7 trfgpsz17epxt+0WGtZ3MB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENEQvMTM3RDAwRDQxNjBFMTFFODg1MkM0MzdFQzRGOUFFMDIvM0RFMURCQzRE ODEwMTFFQzg5MkU4QTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzu1gwDQYJKoZIhvcNAQELBQADggEBAGJKnuCHVHrVF/uh 03gT4Te261GLSa7YoLBcMmphfkfD0lSTa6FMOg8mDvsMW2G5FrJWC/2j5LA+HxC3 Nj3+mDvHreXwxceMp+XzQYyzZb8R8RMkFR7bozGwfQaIP0w7T/pEAdzOKuMgnL3N rjp6OtYiV/mNtM9D4bZKdF+YA95elIyVzkriVR1+tnIKkISnX6ghkkZwu+Y+2qYZ xNMPbaGbzDs85hR7lmI5bGcjdRvlyFGgVqgGvUCPrW8GNgjIcNtI7+RjZ+dlOKxH 57YuIzyAKW88rT4YeQKbqFi90xnRIS4zbNbuV+B4Dimqlq9gZPxEhzLQJqgINz7E TIkENV4= -----END CERTIFICATE-----Generated at Tue May 14 19:55:19 2024 by rpki-client on console-fra.rpki-client.org