$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa File: 4D12DEAE2E9311EBB9FC5259C4F9AE02.roa (raw, json) Hash identifier: I9VnR1RWM0VR2Kj2xG0fGQ4fg7twbJNXtLcE/L58FFo= Subject key identifier: 0B:6D:62:26:51:04:98:D0:7E:C4:0D:40:38:23:05:3D:40:11:A4:41 Certificate issuer: /CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Certificate serial: 05BB Authority key identifier: 5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa Signing time: Wed 03 May 2023 01:01:32 +0000 ROA not before: Wed 03 May 2023 01:01:32 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136438 IP address blocks: 103.88.24.0/22 maxlen: 22 103.88.24.0/23 maxlen: 23 103.88.24.0/24 maxlen: 24 103.88.25.0/24 maxlen: 24 103.88.26.0/23 maxlen: 23 103.88.26.0/24 maxlen: 24 103.88.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Validity Not Before: May 3 01:01:32 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6451b26b-0903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:6c:a3:cb:8a:7a:4f:45:8b:66:9c:17:c0: ce:fa:e6:2e:2c:d6:ff:2a:4b:e4:d8:e8:4e:78:de: 62:f8:b8:31:30:a1:16:50:bd:43:b6:d6:a5:ba:b3: ed:db:87:d7:1e:fd:c5:a0:77:9c:a7:aa:ef:7f:4d: 24:f1:53:e4:41:1b:ad:fb:4d:69:71:ab:46:35:24: 16:7b:c9:d4:6b:7b:8f:a7:ea:16:a6:f8:aa:d2:0c: 0c:de:31:ca:13:95:de:11:bf:37:36:6a:d9:c7:07: 41:89:d3:78:64:cb:27:16:ce:14:44:1b:5c:e6:94: be:d6:9c:d3:02:9c:11:e3:19:4e:2f:79:19:3a:4c: 2e:81:ba:f2:cd:33:13:be:4b:60:00:f8:ec:b7:ad: 43:62:aa:ce:35:52:93:48:a1:22:f1:4b:bb:73:79: b3:af:14:bf:f2:34:7a:fb:51:98:69:48:86:0d:02: e1:0d:15:0b:c6:23:c6:43:0f:d0:d7:2d:e6:3b:17: 2e:1b:f4:15:b5:4d:d4:1e:74:09:52:78:f1:c5:b1: 82:8d:72:c6:e9:d9:45:f3:d9:b5:90:42:e0:f9:20: 51:24:3f:ee:02:72:72:f8:33:ae:9e:10:3c:d8:58: b5:c0:62:ef:0e:1c:d2:42:c2:a7:fc:78:46:07:0f: 80:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6D:62:26:51:04:98:D0:7E:C4:0D:40:38:23:05:3D:40:11:A4:41 X509v3 Authority Key Identifier: keyid:5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.24.0/22 Signature Algorithm: sha256WithRSAEncryption 02:c2:74:ea:4f:a6:58:b0:92:ea:3c:46:ce:76:3f:74:ab:bf: d3:5a:26:1d:e1:62:a6:44:c0:e2:17:1c:5f:a5:d3:23:37:96: b6:fe:d9:98:ca:2b:8c:6b:e2:23:b1:fd:63:b8:37:bd:a2:b8: 77:ea:ce:d0:f7:80:a8:da:d9:ad:f4:9a:66:55:3d:82:f6:2e: 99:62:b4:17:fa:ac:8a:11:15:f7:ee:30:7d:9b:29:5a:c9:4c: 8d:4c:30:f7:c4:bb:9b:49:9d:4e:e0:60:d0:5a:f3:9b:51:79: 68:fc:50:4e:c0:3c:6a:df:7c:c0:13:ac:1d:97:25:c0:da:4a: 8c:b7:ac:74:c7:c7:21:ed:dc:cf:c4:47:1a:99:c6:68:f8:f4: 8b:eb:01:22:ef:87:db:e2:56:29:a8:06:b1:d6:90:b8:68:a2: e7:82:fa:67:cc:a7:68:b3:6f:bd:9a:c7:4d:14:a8:6b:2c:d0: 19:01:89:23:99:a5:5d:60:6b:5a:3a:9e:9c:5b:e9:55:9a:a0: de:75:7e:ee:5b:c8:26:39:14:f5:7b:1d:68:20:2a:03:7e:f6: 97:ea:18:f8:05:10:d2:91:8d:78:38:57:7f:79:ab:36:8d:8b: 5d:02:1f:8c:8b:ee:85:f5:1a:9f:72:df:13:3e:d2:6c:1f:40: 30:6a:5a:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCOEUxMTAvBgNVBAUTKDVGOTMzRDMwRjI0N0QwNDE5RkYwQkUwNjAzRTE2RDVD MjdDNDA0MDcwHhcNMjMwNTAzMDEwMTMyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxYjI2Yi0wOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5xso8uKek9Fi2acF8DO+uYuLNb/Kkvk2OhOeN5i+LgxMKEWUL1DttalurPt 24fXHv3FoHecp6rvf00k8VPkQRut+01pcatGNSQWe8nUa3uPp+oWpviq0gwM3jHK E5XeEb83NmrZxwdBidN4ZMsnFs4URBtc5pS+1pzTApwR4xlOL3kZOkwugbryzTMT vktgAPjst61DYqrONVKTSKEi8Uu7c3mzrxS/8jR6+1GYaUiGDQLhDRULxiPGQw/Q 1y3mOxcuG/QVtU3UHnQJUnjxxbGCjXLG6dlF89m1kELg+SBRJD/uAnJy+DOunhA8 2Fi1wGLvDhzSQsKn/HhGBw+A/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAttYiZR BJjQfsQNQDgjBT1AEaRBMB8GA1UdIwQYMBaAFF+TPTDyR9BBn/C+BgPhbVwnxAQH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkI4RS85N0E0NTFCNjJF OTExMUVCQTUxRUU4M0NDNEY5QUUwMi9YNU05TVBKSDBFR2Y4TDRHQS1GdFhDZkVC QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g1TTlNUEpIMEVHZjhMNEdBLUZ0WENmRUJBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZCOEUvOTdBNDUxQjYyRTkxMTFFQkE1MUVFODNDQzRGOUFFMDIvNEQxMkRFQUUy RTkzMTFFQkI5RkM1MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWBgwDQYJKoZIhvcNAQELBQADggEBAALCdOpPpliwkuo8 Rs52P3Srv9NaJh3hYqZEwOIXHF+l0yM3lrb+2ZjKK4xr4iOx/WO4N72iuHfqztD3 gKja2a30mmZVPYL2LplitBf6rIoRFffuMH2bKVrJTI1MMPfEu5tJnU7gYNBa85tR eWj8UE7APGrffMATrB2XJcDaSoy3rHTHxyHt3M/ERxqZxmj49IvrASLvh9viVimo BrHWkLhooueC+mfMp2izb72ax00UqGss0BkBiSOZpV1ga1o6npxb6VWaoN51fu5b yCY5FPV7HWggKgN+9pfqGPgFENKRjXg4V395qzaNi10CH4yL7oX1Gp9y3xM+0mwf QDBqWnQ= -----END CERTIFICATE-----Generated at Sun May 19 00:16:17 2024 by rpki-client on console-fra.rpki-client.org