$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/928CA88A586011EE8C13C32FC4F9AE02.roa File: 928CA88A586011EE8C13C32FC4F9AE02.roa (raw, json) Hash identifier: gKhhf47HcCImYTBxE7JZps94qUFjuJ8kL8JpZRIALWI= Subject key identifier: B1:69:7F:D9:AD:E3:7F:D3:80:9F:8F:24:DA:F9:0D:1D:FE:4F:F5:83 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 056E Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/928CA88A586011EE8C13C32FC4F9AE02.roa Signing time: Thu 21 Sep 2023 09:23:49 +0000 ROA not before: Thu 21 Sep 2023 09:23:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 932 IP address blocks: 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 2001:df5:8300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Sep 21 09:23:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650c0ba5-1251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:7f:01:6c:10:d9:ac:b7:ba:e3:f3:5a:4a: 05:f9:8d:8e:0c:f6:e3:a4:c6:bb:a0:2b:6c:c1:54: 32:d1:11:0d:73:6f:9b:18:86:69:91:67:47:91:e0: 09:49:05:a2:54:d0:01:79:8d:96:0a:e9:62:e5:c4: 5d:76:5c:22:7d:c6:0c:4c:17:27:98:d7:6a:9d:e3: 12:33:55:8b:3e:3d:52:7a:f3:0a:6e:a4:09:14:95: 8d:6d:75:d1:e4:8e:80:9a:2d:85:1c:8d:66:63:cf: 14:a5:81:02:88:86:84:fe:c2:54:de:86:27:e0:1e: ff:ca:5b:39:f7:68:b6:18:09:32:59:b1:53:d6:7a: 11:dd:cb:0f:80:8b:43:70:43:8d:07:b7:95:b9:c3: 63:d1:bc:2f:fa:02:38:19:cd:c0:3c:e6:de:b7:96: 24:93:c6:d3:77:dc:0f:17:35:57:ff:38:f1:10:0d: a1:60:b1:34:08:46:f3:1d:7c:82:65:f5:e6:18:c4: c1:dc:3a:ec:ce:1e:24:38:e0:a8:93:3a:5b:3b:89: 8b:09:a9:6c:f0:65:45:5f:2e:31:45:f9:a8:b7:5d: d2:53:ea:de:42:00:d0:a0:62:43:66:8b:82:6c:ab: 26:c1:37:f5:02:6a:c7:52:8a:57:df:72:c2:f5:0f: e5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:69:7F:D9:AD:E3:7F:D3:80:9F:8F:24:DA:F9:0D:1D:FE:4F:F5:83 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/928CA88A586011EE8C13C32FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.88.0/22 116.206.176.0/22 IPv6: 2001:df5:8300::/48 Signature Algorithm: sha256WithRSAEncryption 0a:60:ed:ce:d6:a5:ca:52:33:93:f6:30:f3:9c:be:b3:da:63: 00:72:9a:81:df:6e:f6:e7:ee:fd:bc:15:a9:5d:96:c4:ed:59: 88:db:43:63:7d:49:c8:66:e7:89:c6:7d:83:06:3b:1f:20:88: 63:1f:42:86:59:ee:f6:0b:cd:4e:e3:1d:e1:48:eb:40:28:5e: 25:2f:0b:00:63:cb:39:9a:6f:97:f2:98:4d:0a:85:8f:32:b7: aa:ef:9c:65:32:a5:5e:61:07:dc:8e:9c:cf:9d:70:30:b3:aa: 29:42:6a:4e:d4:77:75:06:01:06:f3:bc:59:ae:0f:ee:9c:cb: 84:eb:3e:52:7c:6e:80:7b:32:a1:07:63:5c:c6:5b:26:dd:3e: 25:9c:7d:21:c6:46:35:4c:b3:25:c9:41:d8:0d:36:52:7d:57: aa:d4:f9:56:dc:f0:2a:04:78:ab:10:e6:53:52:30:61:25:c0: 2b:0c:ef:18:2b:ea:d8:da:67:ba:87:1d:bc:e1:4f:48:6b:2d: e2:91:58:9b:40:94:d8:4a:42:2e:b4:f5:95:2c:a0:f2:26:77: f4:2a:5a:40:b5:98:fa:0b:c5:2c:2f:5b:ec:e6:c3:18:2d:98: f7:72:c8:34:0b:82:9a:de:6d:8f:0c:bd:e6:5f:aa:78:9d:dd: 49:15:09:12 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjMwOTIxMDkyMzQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBjMGJhNS0xMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwox/AWwQ2ay3uuPzWkoF+Y2ODPbjpMa7oCtswVQy0RENc2+bGIZpkWdHkeAJ SQWiVNABeY2WCuli5cRddlwifcYMTBcnmNdqneMSM1WLPj1SevMKbqQJFJWNbXXR 5I6Ami2FHI1mY88UpYECiIaE/sJU3oYn4B7/yls592i2GAkyWbFT1noR3csPgItD cEONB7eVucNj0bwv+gI4Gc3APObet5Ykk8bTd9wPFzVX/zjxEA2hYLE0CEbzHXyC ZfXmGMTB3Drszh4kOOCokzpbO4mLCals8GVFXy4xRfmot13SU+reQgDQoGJDZouC bKsmwTf1AmrHUopX33LC9Q/lowIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLFpf9mt 43/TgJ+PJNr5DR3+T/WDMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvOTI4Q0E4OEE1 ODYwMTFFRThDMTNDMzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJn9FgDBAJ0zrAwDwQCAAIwCQMHACABDfWDADANBgkqhkiG 9w0BAQsFAAOCAQEACmDtztalylIzk/Yw85y+s9pjAHKagd9u9ufu/bwVqV2WxO1Z iNtDY31JyGbnicZ9gwY7HyCIYx9Chlnu9gvNTuMd4UjrQCheJS8LAGPLOZpvl/KY TQqFjzK3qu+cZTKlXmEH3I6cz51wMLOqKUJqTtR3dQYBBvO8Wa4P7pzLhOs+Unxu gHsyoQdjXMZbJt0+JZx9IcZGNUyzJclB2A02Un1XqtT5VtzwKgR4qxDmU1IwYSXA KwzvGCvq2NpnuocdvOFPSGst4pFYm0CU2EpCLrT1lSyg8iZ39CpaQLWY+gvFLC9b 7ObDGC2Y93LINAuCmt5tjwy95l+qeJ3dSRUJEg== -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:45 2024 by rpki-client on console-fra.rpki-client.org