$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa File: 88A00388193111EB9E0A6A49C4F9AE02.roa (raw, json) Hash identifier: u3WzgpaL6M5sXXo26nPKh9UHSPFb46VhuO2Q5Fo8Shs= Subject key identifier: 08:21:48:52:72:7F:A7:53:1F:0B:1A:01:52:5B:CF:1D:E2:5A:63:2C Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC4 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:06 +0000 ROA not before: Fri 06 Sep 2024 18:37:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 41378 IP address blocks: 103.142.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd2-4523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e1:ae:49:3c:71:60:c3:73:5f:fd:13:b1:7d: c3:81:f5:a0:0e:6a:6d:4f:e2:90:cd:54:ce:61:b8: 5a:08:76:d6:e4:e4:9c:ad:2b:94:ab:c8:5a:dd:27: ae:d4:d3:de:d8:5f:32:6d:ce:ea:d8:fa:ed:06:a5: 8f:3b:33:49:4a:c0:ae:8f:a5:4f:fa:64:38:d2:59: 59:41:39:dc:ef:77:72:91:2f:7e:67:1f:31:c7:29: 7e:3d:27:85:92:2e:cf:90:d6:29:85:c5:f9:69:c4: c1:03:28:ee:ff:fc:f6:67:1a:56:0d:b3:cb:5c:5c: e1:79:3b:85:3f:32:ce:7d:f8:70:5a:f2:44:40:18: 2f:e9:5c:05:6b:58:08:02:6c:9c:c2:6f:6d:30:13: 8e:7e:54:e1:d8:83:a4:37:3f:e4:a7:b0:d1:5b:67: 01:ab:90:57:e2:e9:3f:4c:86:cf:cd:19:b8:99:79: 73:ef:00:c1:1c:dd:e1:62:0c:b8:2e:14:49:49:39: f4:91:bb:43:b2:5d:73:52:e6:70:c5:69:8d:ca:e5: 90:38:ce:85:2e:e4:ec:40:8c:37:58:19:a7:cd:68: 15:80:16:f2:49:a7:5a:76:e8:77:f8:ac:49:c5:69: b8:b8:12:94:8d:54:fc:af:d4:1d:ac:a7:6e:3c:55: fe:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:21:48:52:72:7F:A7:53:1F:0B:1A:01:52:5B:CF:1D:E2:5A:63:2C X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 68:3f:18:8e:bc:a0:20:08:07:da:3e:2f:9a:35:0a:64:b7:17: b5:cc:e5:2a:46:42:48:1e:ec:65:2e:0e:03:be:0b:52:b9:a7: 4a:8d:d1:a9:eb:8c:88:90:e6:64:5b:59:75:a5:b8:d5:e5:b9: 28:ed:42:7a:d1:c9:c5:fc:d9:51:8c:9b:28:02:ed:92:99:ea: 74:ec:a7:39:e1:b1:cd:9a:47:d6:6d:d5:f2:a9:c9:5c:cc:91: 32:99:a3:ba:da:c6:85:56:c0:60:40:94:22:44:cc:bf:a8:91: 13:c4:f7:fb:da:ce:54:da:b1:07:34:f7:38:9c:68:6c:8a:31: 05:60:6d:4a:1d:75:0a:a4:6a:02:38:3d:69:1a:36:49:6b:d2: d4:04:81:fb:1f:f7:27:2c:72:97:0f:b7:b6:28:f6:47:69:a6: 87:c1:e2:88:01:c0:c9:eb:e3:a9:7f:37:1f:ea:03:36:df:b9: 35:a7:02:0c:b3:a4:56:60:9a:0c:42:72:23:cd:09:e7:6d:67: b9:4b:ba:8e:26:cb:03:32:a9:9f:ca:09:30:5a:13:af:33:05: eb:53:70:ba:78:b9:d7:f3:a8:51:dc:39:da:ef:28:15:5e:d8: 61:68:e6:5a:bb:2b:72:6d:b6:ab:35:2e:7b:3c:a8:d5:17:a3: ac:b0:90:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkMi00NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeGuSTxxYMNzX/0TsX3DgfWgDmptT+KQzVTOYbhaCHbW5OScrSuUq8ha3Seu 1NPe2F8ybc7q2PrtBqWPOzNJSsCuj6VP+mQ40llZQTnc73dykS9+Zx8xxyl+PSeF ki7PkNYphcX5acTBAyju//z2ZxpWDbPLXFzheTuFPzLOffhwWvJEQBgv6VwFa1gI Amycwm9tMBOOflTh2IOkNz/kp7DRW2cBq5BX4uk/TIbPzRm4mXlz7wDBHN3hYgy4 LhRJSTn0kbtDsl1zUuZwxWmNyuWQOM6FLuTsQIw3WBmnzWgVgBbySadaduh3+KxJ xWm4uBKUjVT8r9QdrKduPFX+ZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAghSFJy f6dTHwsaAVJbzx3iWmMsMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvODhBMDAzODgx OTMxMTFFQjlFMEE2QTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAGg/GI68oCAIB9o+ L5o1CmS3F7XM5SpGQkge7GUuDgO+C1K5p0qN0anrjIiQ5mRbWXWluNXluSjtQnrR ycX82VGMmygC7ZKZ6nTspznhsc2aR9Zt1fKpyVzMkTKZo7raxoVWwGBAlCJEzL+o kRPE9/vazlTasQc09zicaGyKMQVgbUoddQqkagI4PWkaNklr0tQEgfsf9ycscpcP t7Yo9kdppofB4ogBwMnr46l/Nx/qAzbfuTWnAgyzpFZgmgxCciPNCedtZ7lLuo4m ywMyqZ/KCTBaE68zBetTcLp4udfzqFHcOdrvKBVe2GFo5lq7K3Jttqs1Lns8qNUX o6ywkIk= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:24 2024 by rpki-client on console-fra.rpki-client.org