$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/8BA87150D10711EE8A757976C4F9AE02.roa File: 8BA87150D10711EE8A757976C4F9AE02.roa (raw, json) Hash identifier: HQ8PoKA7J1OoTe2Ioi360r/95b+SHPxrvwIHfzaOrgo= Subject key identifier: EA:74:6C:C3:09:12:0D:E8:E9:7A:10:26:64:3C:DC:57:FB:FA:11:6A Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 0341 Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/8BA87150D10711EE8A757976C4F9AE02.roa Signing time: Sun 07 Apr 2024 03:05:00 +0000 ROA not before: Sun 07 Apr 2024 03:05:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133894 IP address blocks: 103.88.192.0/24 maxlen: 24 103.88.193.0/24 maxlen: 24 103.88.194.0/24 maxlen: 24 103.88.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Apr 7 03:05:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66120d5c-1b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b3:bb:74:b9:ff:2a:8b:36:e8:71:a0:3a:f7: 60:57:d9:03:52:32:1b:9a:1f:7d:0e:5e:6a:93:d9: bc:84:2f:54:53:19:12:b6:1c:e2:31:b5:f3:7c:27: e8:69:28:fe:6f:9a:76:55:8d:0b:e8:ae:36:53:e0: 8b:97:25:a7:7d:ed:58:35:f0:37:e1:dd:47:33:07: dc:03:c9:58:b9:f8:a7:a1:3b:2c:49:e8:66:69:c3: f3:88:6c:77:58:99:97:d9:c5:7e:51:17:15:37:3c: d9:ad:0a:a9:47:fa:d6:c4:83:47:b3:ef:cd:82:91: b4:7a:3d:e5:06:c0:af:ec:75:d3:b1:57:e7:9d:1c: da:b5:35:8e:bc:e6:c1:cc:45:7b:89:47:4b:5e:d2: c6:8e:9e:17:43:2c:b2:a8:4b:ae:f0:e5:e6:6f:d8: 02:ac:ec:a6:b5:87:f0:55:15:e9:c4:85:eb:3c:5a: ff:35:7f:03:13:10:d3:7c:21:4f:cd:a0:ce:d4:5c: 77:27:fa:32:11:ca:49:9a:46:66:53:4a:93:4c:3c: 02:5b:a7:37:b7:99:b9:ab:a6:8c:0c:f9:f3:3a:1c: 45:82:ca:92:0d:5c:34:af:7a:2f:fe:13:60:bf:43: 56:e1:af:47:f3:12:09:bb:4b:bd:55:a1:94:c6:6f: 68:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:74:6C:C3:09:12:0D:E8:E9:7A:10:26:64:3C:DC:57:FB:FA:11:6A X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/8BA87150D10711EE8A757976C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.192.0/22 Signature Algorithm: sha256WithRSAEncryption 31:44:34:98:c1:e2:cb:bc:6d:ab:0d:12:c2:aa:8c:32:2b:ac: ab:64:56:25:ab:48:51:04:ed:6e:3f:20:de:58:ff:76:0c:32: b3:aa:20:7e:97:83:e3:e9:93:0a:0c:8a:c8:f5:92:37:5d:1c: 54:46:fd:99:ca:1c:76:cb:b7:e5:b2:4f:29:10:6c:e4:f4:58: c4:fe:ec:fa:c6:db:66:08:64:f8:bc:84:98:1c:a1:de:e5:bd: 77:ec:89:97:ff:70:c0:1d:c2:b0:7e:09:14:2c:94:e1:a0:70: 58:be:4d:5d:3f:95:b6:ba:db:7f:c8:00:38:9f:e1:c5:59:ef: 23:e6:ed:5e:49:12:29:1f:35:93:8b:bd:24:da:ac:07:5e:e7: 73:af:5a:a8:76:5f:38:a8:f0:da:36:46:6b:68:d7:58:c7:1c: 67:ab:86:40:2b:aa:b2:7e:e2:78:d0:2b:b7:bc:8a:56:f0:d3: 06:09:1d:8b:0c:bb:45:6b:f1:d1:7d:b5:c1:44:df:9d:ae:6c: 69:d0:4f:f9:34:4c:9d:87:0f:1a:92:f1:07:da:ec:d1:2b:6c: 97:38:96:ef:3e:96:29:c7:6a:83:d4:b3:90:94:b1:84:ea:5b: 64:cb:6f:bd:02:d1:b6:a9:f0:34:3d:b3:e1:63:22:40:f9:a7: 2e:e9:30:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjQwNDA3MDMwNTAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjEyMGQ1Yy0xYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrO7dLn/Kos26HGgOvdgV9kDUjIbmh99Dl5qk9m8hC9UUxkSthziMbXzfCfo aSj+b5p2VY0L6K42U+CLlyWnfe1YNfA34d1HMwfcA8lYufinoTssSehmacPziGx3 WJmX2cV+URcVNzzZrQqpR/rWxINHs+/NgpG0ej3lBsCv7HXTsVfnnRzatTWOvObB zEV7iUdLXtLGjp4XQyyyqEuu8OXmb9gCrOymtYfwVRXpxIXrPFr/NX8DExDTfCFP zaDO1Fx3J/oyEcpJmkZmU0qTTDwCW6c3t5m5q6aMDPnzOhxFgsqSDVw0r3ov/hNg v0NW4a9H8xIJu0u9VaGUxm9o6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOp0bMMJ Eg3o6XoQJmQ83Ff7+hFqMB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBDOEUvMDMyRTU3Qjg3NDM5MTFFQ0I1NTcyMzZGQzRGOUFFMDIvOEJBODcxNTBE MTA3MTFFRThBNzU3OTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWMAwDQYJKoZIhvcNAQELBQADggEBADFENJjB4su8basN EsKqjDIrrKtkViWrSFEE7W4/IN5Y/3YMMrOqIH6Xg+PpkwoMisj1kjddHFRG/ZnK HHbLt+WyTykQbOT0WMT+7PrG22YIZPi8hJgcod7lvXfsiZf/cMAdwrB+CRQslOGg cFi+TV0/lba623/IADif4cVZ7yPm7V5JEikfNZOLvSTarAde53OvWqh2Xzio8No2 Rmto11jHHGerhkArqrJ+4njQK7e8ilbw0wYJHYsMu0Vr8dF9tcFE352ubGnQT/k0 TJ2HDxqS8Qfa7NErbJc4lu8+linHaoPUs5CUsYTqW2TLb70C0bap8DQ9s+FjIkD5 py7pMOU= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:07 2024 by rpki-client on console-fra.rpki-client.org