$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/88381F28647D11ECBE19A07FC4F9AE02.roa File: 88381F28647D11ECBE19A07FC4F9AE02.roa (raw, json) Hash identifier: nzdzq1MomTEyBWyPaJ+g0iyWRVEJXZ7EMRYAA1LS/Jo= Subject key identifier: C3:B4:14:52:95:84:9D:00:C0:A3:D9:E0:F1:42:DC:12:5D:DE:5F:75 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B1F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/88381F28647D11ECBE19A07FC4F9AE02.roa Signing time: Thu 30 May 2024 16:05:52 +0000 ROA not before: Thu 30 May 2024 16:05:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136646 IP address blocks: 103.97.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35615 (0x8b1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:05:52 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3e0-9193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:e8:b4:33:d8:6c:05:5f:a6:0c:27:00:39: 52:7c:9f:18:2f:f4:3e:29:92:4e:29:6d:3e:e2:41: 90:2a:76:08:e9:98:30:8e:1d:c9:58:fc:81:8b:31: ef:fe:ac:e9:52:7a:ef:72:a4:99:58:cd:54:d8:6f: e0:cb:71:32:92:2b:62:9f:bb:92:b0:44:ee:5e:1c: 5e:05:44:ab:67:f9:ce:ba:01:0a:86:7e:fd:59:6c: 46:fd:a8:0c:83:4f:15:d5:45:74:63:d2:85:7b:bc: d3:88:bb:3c:53:c1:1b:c8:cf:e8:bf:6d:18:69:97: 3d:1a:da:ce:a9:90:94:4c:20:74:dc:52:29:f4:87: d4:fc:90:8f:33:65:17:9c:66:ba:8d:fd:9f:64:8f: e5:d5:4f:58:f9:f4:ba:02:fa:26:fd:13:ca:4f:f4: 3a:39:e1:7b:a4:79:c8:f0:d7:e6:9e:dd:22:ae:b7: 6f:dd:04:c2:43:bc:87:22:5d:b1:3c:0e:2e:7d:0f: 66:29:0c:13:d6:3c:d8:89:1c:3b:bf:c3:18:de:75: 39:b0:53:51:d0:1c:df:79:cc:eb:c0:eb:74:46:19: 88:fa:35:19:5f:30:e9:7b:de:ff:08:ba:cd:c0:52: f2:4d:8c:6d:ca:3e:64:e7:de:d6:74:e9:ed:07:b2: 3c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B4:14:52:95:84:9D:00:C0:A3:D9:E0:F1:42:DC:12:5D:DE:5F:75 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/88381F28647D11ECBE19A07FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.212.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:80:57:d7:1a:b9:5f:f2:c1:9d:3f:00:8b:61:27:4d:c5:4f: e2:fa:9a:28:5d:6e:f3:03:ba:7a:f4:74:5e:91:e7:52:67:60: 98:e5:70:40:7d:1c:28:fa:56:4b:f8:9d:16:98:c6:58:ea:af: 53:c9:49:4d:39:d7:d7:6f:dd:f1:13:a8:12:91:48:2c:52:44: 86:36:fb:b2:ec:3c:7b:6b:9b:0e:53:d0:93:89:9b:14:5d:27: f0:dc:aa:40:4b:34:e0:e2:5d:01:6f:08:76:c2:4b:1e:6b:27: 65:00:64:fb:09:f3:b1:db:12:61:5d:24:ec:88:af:bc:71:8f: 12:cf:56:e8:7e:36:f0:e9:fb:38:b4:49:b1:40:a4:5b:8f:17: 5a:a1:39:4d:6e:0c:29:97:37:e2:16:71:67:7f:dd:2f:62:00: 96:95:fd:2c:27:fe:c1:27:6b:12:ac:1e:74:70:cd:df:df:aa: 21:c1:8b:f3:a7:c1:ed:23:b3:a3:bc:ba:05:27:a8:ae:01:e2: 04:66:cc:ff:d0:db:9b:44:f1:6f:ea:99:ad:2c:b1:8a:1c:7c: 66:e9:9d:12:ca:2c:11:50:20:ed:82:e6:95:1b:74:95:c5:aa: 0c:79:04:ee:d4:68:7a:8e:91:86:97:ee:4c:5f:04:0b:0d:19: 64:90:6b:a2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIsfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDU1MloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzZTAtOTE5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN086LQz2GwFX6YMJwA5UnyfGC/0PimSTiltPuJBkCp2COmYMI4dyVj8gYsx 7/6s6VJ673KkmVjNVNhv4MtxMpIrYp+7krBE7l4cXgVEq2f5zroBCoZ+/VlsRv2o DINPFdVFdGPShXu804i7PFPBG8jP6L9tGGmXPRrazqmQlEwgdNxSKfSH1PyQjzNl F5xmuo39n2SP5dVPWPn0ugL6Jv0Tyk/0Ojnhe6R5yPDX5p7dIq63b90EwkO8hyJd sTwOLn0PZikME9Y82IkcO7/DGN51ObBTUdAc33nM68DrdEYZiPo1GV8w6Xve/wi6 zcBS8k2Mbco+ZOfe1nTp7QeyPKUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTDtBRS lYSdAMCj2eDxQtwSXd5fdTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg4MzgxRjI4 NjQ3RDExRUNCRTE5QTA3RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ2HUMA0GCSqGSIb3DQEBCwUAA4IBAQBagFfXGrlf8sGd PwCLYSdNxU/i+pooXW7zA7p69HRekedSZ2CY5XBAfRwo+lZL+J0WmMZY6q9TyUlN OdfXb93xE6gSkUgsUkSGNvuy7Dx7a5sOU9CTiZsUXSfw3KpASzTg4l0Bbwh2wkse aydlAGT7CfOx2xJhXSTsiK+8cY8Sz1bofjbw6fs4tEmxQKRbjxdaoTlNbgwplzfi FnFnf90vYgCWlf0sJ/7BJ2sSrB50cM3f36ohwYvzp8HtI7OjvLoFJ6iuAeIEZsz/ 0NubRPFv6pmtLLGKHHxm6Z0SyiwRUCDtguaVG3SVxaoMeQTu1Gh6jpGGl+5MXwQL DRlkkGui -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:53 2024 by rpki-client on console-ams.rpki-client.org