$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa File: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (raw, json) Hash identifier: P/jVLVKJm35tcLY3WNaJuQCIeip3WppGMETv/Tz90FE= Subject key identifier: 79:23:4D:48:57:43:C0:63:E5:D6:C4:8E:3B:C3:27:50:61:9F:4E:80 Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 15A7 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa Signing time: Mon 02 Sep 2024 17:34:53 +0000 ROA not before: Mon 02 Sep 2024 17:34:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 1299 IP address blocks: 115.187.88.0/24 maxlen: 24 115.187.89.0/24 maxlen: 24 115.187.90.0/24 maxlen: 24 115.187.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5543 (0x15a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Sep 2 17:34:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d5f73d-f0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:d3:6a:aa:28:73:6f:f8:ea:ed:f5:be:4f: 7c:4c:62:3e:4e:dd:a8:f0:83:4f:21:f8:d7:ec:a8: 99:e0:0d:d8:47:62:66:3f:f2:40:a3:8d:08:71:79: 41:a9:5e:8c:cb:a1:43:9c:0e:7e:88:61:70:9f:5e: 34:5a:80:0e:75:26:18:bf:07:79:ee:ef:8b:10:1a: a0:66:84:42:b4:96:df:87:8a:31:16:d0:18:5d:34: 89:a2:0e:8e:69:c8:4a:f5:e5:08:d4:fb:96:45:d3: 89:25:14:55:85:9e:95:d5:1f:aa:e3:5c:0a:25:4f: cd:55:2b:2f:ca:c8:26:ee:67:12:53:d9:b9:25:32: c7:0c:4e:3d:21:e1:88:12:8b:bf:55:73:a8:89:f4: 0e:c0:f6:72:a4:fc:60:7a:95:41:a5:85:41:7e:8d: 14:00:60:99:33:ab:cd:af:3f:c2:10:cf:53:44:ed: d4:c5:9e:52:f3:03:4d:8c:7c:79:77:c1:1a:ce:d3: de:70:0b:ff:65:37:bd:56:45:73:87:06:29:45:c7: 45:eb:2b:60:f2:70:df:0b:94:63:fd:c3:66:88:d8: ed:f0:7e:60:da:1f:4d:82:47:25:b9:35:ca:32:cd: a7:74:15:52:fc:b4:a3:91:c6:78:0f:de:56:01:ee: ca:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:23:4D:48:57:43:C0:63:E5:D6:C4:8E:3B:C3:27:50:61:9F:4E:80 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/3DE1DBC4D81011EC892E8A79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.187.88.0/22 Signature Algorithm: sha256WithRSAEncryption 41:ef:a5:fe:99:de:c8:b5:84:17:5f:72:39:6b:04:3a:31:84: 3a:26:59:75:c3:25:e6:ed:6e:dd:f0:39:fb:05:47:75:e5:90: 64:0d:e3:ba:93:56:bf:84:83:ac:c9:2a:5f:e7:1c:50:87:53: d2:10:22:e7:0d:52:47:8c:61:ce:88:c4:c7:7c:9f:e2:18:9f: 2a:a7:a4:5e:df:26:3d:8d:2d:b6:41:60:6a:dc:08:ea:14:18: c3:44:82:38:cc:e7:3a:78:c3:d1:2e:83:b1:ad:6f:48:21:0a: 86:c9:d2:ed:2f:31:85:bb:a4:56:f6:d4:33:8f:c4:00:72:55: f9:cf:8b:84:11:a2:6c:8d:24:9e:48:ee:37:15:0f:3e:4a:96: 36:ea:75:04:2c:3a:55:11:7c:1e:b6:a4:79:15:33:9e:59:6a: 3e:8d:ff:a0:c8:05:c6:a1:b7:8e:70:7f:2c:fd:9b:e4:87:c7: 2e:86:92:bb:b5:c4:b6:48:9f:5e:47:30:30:81:17:69:12:25: 01:7f:13:d1:a1:e8:5b:0c:15:00:67:4e:88:ea:75:22:2b:ac: 0d:e1:66:c1:1b:c7:3b:a9:b5:ff:2c:04:db:bb:6b:ff:59:d5: 40:a0:4b:8b:c8:24:2d:77:b9:fd:1d:f2:86:ea:9d:ef:a7:60: 55:38:50:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjQwOTAyMTczNDUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZjczZC1mMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxHTaqooc2/46u31vk98TGI+Tt2o8INPIfjX7KiZ4A3YR2JmP/JAo40IcXlB qV6My6FDnA5+iGFwn140WoAOdSYYvwd57u+LEBqgZoRCtJbfh4oxFtAYXTSJog6O achK9eUI1PuWRdOJJRRVhZ6V1R+q41wKJU/NVSsvysgm7mcSU9m5JTLHDE49IeGI Eou/VXOoifQOwPZypPxgepVBpYVBfo0UAGCZM6vNrz/CEM9TRO3UxZ5S8wNNjHx5 d8EaztPecAv/ZTe9VkVzhwYpRcdF6ytg8nDfC5Rj/cNmiNjt8H5g2h9NgkcluTXK Ms2ndBVS/LSjkcZ4D95WAe7KcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHkjTUhX Q8Bj5dbEjjvDJ1Bhn06AMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENEQvMTM3RDAwRDQxNjBFMTFFODg1MkM0MzdFQzRGOUFFMDIvM0RFMURCQzRE ODEwMTFFQzg5MkU4QTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzu1gwDQYJKoZIhvcNAQELBQADggEBAEHvpf6Z3si1hBdf cjlrBDoxhDomWXXDJebtbt3wOfsFR3XlkGQN47qTVr+Eg6zJKl/nHFCHU9IQIucN UkeMYc6IxMd8n+IYnyqnpF7fJj2NLbZBYGrcCOoUGMNEgjjM5zp4w9Eug7Gtb0gh CobJ0u0vMYW7pFb21DOPxAByVfnPi4QRomyNJJ5I7jcVDz5KljbqdQQsOlURfB62 pHkVM55Zaj6N/6DIBcaht45wfyz9m+SHxy6Gkru1xLZIn15HMDCBF2kSJQF/E9Gh 6FsMFQBnTojqdSIrrA3hZsEbxzuptf8sBNu7a/9Z1UCgS4vIJC13uf0d8obqne+n YFU4UNs= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org