$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa File: 3CED465E8E0811EE8450D961C4F9AE02.roa (raw, json) Hash identifier: 7Y9vxZXOKDWs2TXEF20NagK7/g30mcl6YUCvtQvsTVI= Subject key identifier: 86:2D:AD:9D:3A:A3:1C:1D:D2:47:75:40:E7:A0:CF:F1:96:27:08:B2 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 15 Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa Signing time: Tue 28 Nov 2023 16:07:33 +0000 ROA not before: Tue 28 Nov 2023 16:07:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149849 IP address blocks: 103.188.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: Nov 28 16:07:33 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65661045-0acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:ce:42:7a:d6:4d:fc:ad:7b:9f:8e:58:09: 25:96:3a:00:99:f0:60:4f:2b:25:95:9f:21:0f:8e: d6:d9:65:8c:09:b9:6a:16:25:f9:98:a0:0f:12:51: 08:b4:c7:04:cb:1f:30:3a:53:45:7f:b5:9e:cb:ef: 1f:c2:65:4f:05:a6:89:34:0b:74:0c:d5:9f:60:71: 94:6d:e0:01:17:fa:ff:31:4d:f4:2c:08:73:d6:6a: e2:7c:93:68:4e:84:81:04:c8:f7:86:5c:9e:4e:09: 7f:30:45:82:b6:5d:0f:f3:96:79:47:2d:c3:ee:c9: c8:67:e1:71:21:63:62:3a:28:31:63:e2:54:e9:00: 7a:4e:24:2e:55:4e:6b:35:cd:89:5b:1e:2c:ad:a0: ee:b1:8e:b5:14:94:2e:42:eb:05:f0:78:0c:96:b8: 6f:34:62:50:4f:40:3a:70:e6:74:21:18:47:c2:0d: 20:4d:00:9b:33:3d:2e:a6:b4:93:f4:78:d8:b9:f0: ae:1c:e1:2a:1d:a0:cc:37:e2:c7:34:3a:c6:f9:73: 41:17:65:75:8b:a8:e0:d6:74:c4:0b:a4:44:5a:79: 96:b8:45:09:a4:a3:2c:59:ab:91:ad:07:61:a1:c1: 7b:2a:26:67:5b:46:b2:ab:b5:3d:2a:3f:ac:f8:47: 89:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2D:AD:9D:3A:A3:1C:1D:D2:47:75:40:E7:A0:CF:F1:96:27:08:B2 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.88.0/24 Signature Algorithm: sha256WithRSAEncryption 25:1f:c4:88:6f:00:d8:79:e7:26:5c:e2:04:53:5a:06:3d:b4: ff:65:54:68:5d:32:fb:f4:e3:0d:e9:06:eb:77:58:c6:d3:53: 8d:88:8f:c5:cd:46:6c:20:77:25:90:fb:fe:94:73:e5:48:02: a4:40:ce:ee:c6:1b:3a:57:aa:42:71:e5:c6:51:56:0c:8f:e3: b2:0b:86:0f:cf:2c:52:d9:50:76:70:08:53:99:27:34:1b:71: 34:03:80:32:ae:3b:30:a7:d4:20:e6:db:b9:68:52:12:a4:78: d3:35:99:bb:9c:1c:c7:cf:53:71:a4:b4:ff:7e:d7:0f:75:e2: e3:15:9c:3e:fb:36:61:a2:9f:68:9f:95:ad:d0:8f:63:5b:e9: e8:57:c4:5c:ab:35:b2:4d:74:4e:ff:16:3f:67:37:64:20:59: 6e:34:bf:29:8a:2b:4c:98:eb:fb:6e:29:94:97:fd:ac:79:a0: b4:1f:a9:8b:6e:56:2b:07:f5:34:5e:c1:00:87:c0:d3:e1:31: 11:c8:ac:d4:3c:18:c0:94:dc:33:97:1b:19:38:16:c5:84:3f: 8c:6d:01:25:c4:7c:2e:73:09:a2:75:a5:3a:51:bf:86:a1:ae: 5c:73:31:9a:cc:c9:1a:5e:9a:7a:3a:21:f0:8a:fe:4b:8f:e0: 59:5a:9b:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjMwNjExMC8GA1UEBRMoQjYwNDEyQ0U5ODA5QzEwQzY3RERFQUJCQTBFMzM1RTNB REE0RkUxMDAeFw0yMzExMjgxNjA3MzNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjYxMDQ1LTBhY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+8s5CetZN/K17n45YCSWWOgCZ8GBPKyWVnyEPjtbZZYwJuWoWJfmYoA8SUQi0 xwTLHzA6U0V/tZ7L7x/CZU8Fpok0C3QM1Z9gcZRt4AEX+v8xTfQsCHPWauJ8k2hO hIEEyPeGXJ5OCX8wRYK2XQ/zlnlHLcPuychn4XEhY2I6KDFj4lTpAHpOJC5VTms1 zYlbHiytoO6xjrUUlC5C6wXweAyWuG80YlBPQDpw5nQhGEfCDSBNAJszPS6mtJP0 eNi58K4c4SodoMw34sc0Osb5c0EXZXWLqODWdMQLpERaeZa4RQmkoyxZq5GtB2Gh wXsqJmdbRrKrtT0qP6z4R4npAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhi2tnTqj HB3SR3VA56DP8ZYnCLIwHwYDVR0jBBgwFoAUtgQSzpgJwQxn3eq7oOM1462k/hAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMzA2LzE3MTc5MjBFNzE2 QjExRUVCMTY3MzI3N0M0RjlBRTAyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19o QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGdRU3pwZ0p3UXhuM2VxN29PTTE0NjJrX2hBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMwNi8xNzE3OTIwRTcxNkIxMUVFQjE2NzMyNzdDNEY5QUUwMi8zQ0VENDY1RThF MDgxMUVFODQ1MEQ5NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe8WDANBgkqhkiG9w0BAQsFAAOCAQEAJR/EiG8A2HnnJlzi BFNaBj20/2VUaF0y+/TjDekG63dYxtNTjYiPxc1GbCB3JZD7/pRz5UgCpEDO7sYb OleqQnHlxlFWDI/jsguGD88sUtlQdnAIU5knNBtxNAOAMq47MKfUIObbuWhSEqR4 0zWZu5wcx89TcaS0/37XD3Xi4xWcPvs2YaKfaJ+VrdCPY1vp6FfEXKs1sk10Tv8W P2c3ZCBZbjS/KYorTJjr+24plJf9rHmgtB+pi25WKwf1NF7BAIfA0+ExEcis1DwY wJTcM5cbGTgWxYQ/jG0BJcR8LnMJonWlOlG/hqGuXHMxmszJGl6aejoh8Ir+S4/g WVqblA== -----END CERTIFICATE-----Generated at Fri Jun 7 08:57:14 2024 by rpki-client on console-fra.rpki-client.org