$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa File: 4D12DEAE2E9311EBB9FC5259C4F9AE02.roa (raw, json) Hash identifier: Xm2gMwoiYfX+Fm5qNYBayNhfXFjCoBptj23LkxdkfKM= Subject key identifier: B5:30:0D:A6:72:17:8E:D9:71:24:97:E6:2E:D1:D8:D6:0D:51:B9:9F Certificate issuer: /CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Certificate serial: 0687 Authority key identifier: 5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa Signing time: Sat 01 Jun 2024 00:43:25 +0000 ROA not before: Sat 01 Jun 2024 00:43:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136438 IP address blocks: 103.88.24.0/22 maxlen: 22 103.88.24.0/23 maxlen: 23 103.88.24.0/24 maxlen: 24 103.88.25.0/24 maxlen: 24 103.88.26.0/23 maxlen: 23 103.88.26.0/24 maxlen: 24 103.88.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Validity Not Before: Jun 1 00:43:25 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665a6ead-fcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:35:50:5c:76:b1:3a:2b:8f:12:a4:c6:1c:fe: 1a:04:fc:26:47:8a:fb:af:86:11:b9:46:b3:78:1a: 75:27:fd:18:5b:c0:04:73:7f:df:8d:33:2e:43:1a: 0d:98:de:e4:95:78:f3:f3:87:47:2f:71:ca:db:29: e6:9e:ac:8e:da:2a:df:f9:04:8a:12:b1:a5:2a:94: 0c:7a:d0:1d:68:37:c4:cb:e3:4d:d0:de:cb:04:5f: a0:3e:45:6b:c0:cd:d7:8c:66:1f:02:35:26:5b:a5: 39:ac:f0:8e:60:70:79:cb:98:c2:1d:4d:87:3f:2a: 75:21:0d:0d:7d:36:c5:23:48:c8:88:ea:c3:7b:50: ee:ee:44:45:03:b2:11:18:6b:91:87:5e:09:3a:6c: fa:99:69:1f:84:bd:b0:36:da:6e:a9:a0:c5:5c:e3: 03:7d:60:52:b3:ad:7d:b8:d2:18:f8:a1:88:ef:bb: 29:ac:c4:54:f4:c2:56:fd:42:e8:0c:32:e3:39:40: 0c:c0:10:1e:33:c3:ed:eb:95:47:ce:27:46:77:68: d4:92:b4:13:a7:aa:b3:2b:87:ee:21:f7:07:39:9c: 33:80:44:2b:4e:71:b8:12:a4:47:f8:d9:39:81:cb: b7:08:8c:cd:10:93:77:98:e0:fc:3e:c1:cc:1f:fb: a1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:30:0D:A6:72:17:8E:D9:71:24:97:E6:2E:D1:D8:D6:0D:51:B9:9F X509v3 Authority Key Identifier: keyid:5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.24.0/22 Signature Algorithm: sha256WithRSAEncryption 86:3c:50:4e:24:ad:c0:7a:03:5d:33:1f:03:d7:ec:a9:5e:46: 13:62:75:ef:fb:d7:dc:dd:1f:00:1d:36:05:f3:33:1f:7e:30: 63:32:4a:8b:16:ac:e6:b1:c5:12:78:56:6d:18:d3:cb:a4:2a: 64:25:83:72:6f:82:d3:04:3f:0f:0b:8d:1a:4a:09:57:c7:b4: 20:2e:2f:92:3f:1f:e7:e4:f5:50:04:06:17:b4:6e:6b:4d:78: 27:6e:6b:b8:06:59:f7:67:dc:69:8f:47:4d:65:46:d2:07:15: bf:be:a1:88:8e:49:9a:9b:8f:e4:fa:25:76:87:bf:1c:3e:ba: 8e:be:29:4c:f9:51:53:03:d3:1a:65:77:65:7c:ed:f7:53:4d: d2:cd:0b:a0:72:07:91:66:68:42:1f:4a:b7:9f:f8:9f:bb:cd: 49:56:f0:a0:99:9d:ce:11:06:1d:94:d5:98:ac:29:77:e0:8f: 63:b5:a3:7f:bf:ca:7d:4b:59:f8:f7:79:d1:cb:a4:24:b5:86: 1f:4e:0f:f5:85:92:e7:9d:ee:5f:b2:58:6d:3e:bb:67:51:69: 40:32:66:a5:b6:2d:5c:bc:3a:59:24:23:e8:99:8b:6e:59:2f: 4a:bd:fe:9b:a7:c2:f7:af:f1:d6:21:75:bd:52:95:70:48:e9: dd:5b:14:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCOEUxMTAvBgNVBAUTKDVGOTMzRDMwRjI0N0QwNDE5RkYwQkUwNjAzRTE2RDVD MjdDNDA0MDcwHhcNMjQwNjAxMDA0MzI1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNmVhZC1mY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jVQXHaxOiuPEqTGHP4aBPwmR4r7r4YRuUazeBp1J/0YW8AEc3/fjTMuQxoN mN7klXjz84dHL3HK2ynmnqyO2irf+QSKErGlKpQMetAdaDfEy+NN0N7LBF+gPkVr wM3XjGYfAjUmW6U5rPCOYHB5y5jCHU2HPyp1IQ0NfTbFI0jIiOrDe1Du7kRFA7IR GGuRh14JOmz6mWkfhL2wNtpuqaDFXOMDfWBSs619uNIY+KGI77sprMRU9MJW/ULo DDLjOUAMwBAeM8Pt65VHzidGd2jUkrQTp6qzK4fuIfcHOZwzgEQrTnG4EqRH+Nk5 gcu3CIzNEJN3mOD8PsHMH/uh/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLUwDaZy F47ZcSSX5i7R2NYNUbmfMB8GA1UdIwQYMBaAFF+TPTDyR9BBn/C+BgPhbVwnxAQH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkI4RS85N0E0NTFCNjJF OTExMUVCQTUxRUU4M0NDNEY5QUUwMi9YNU05TVBKSDBFR2Y4TDRHQS1GdFhDZkVC QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g1TTlNUEpIMEVHZjhMNEdBLUZ0WENmRUJBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZCOEUvOTdBNDUxQjYyRTkxMTFFQkE1MUVFODNDQzRGOUFFMDIvNEQxMkRFQUUy RTkzMTFFQkI5RkM1MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWBgwDQYJKoZIhvcNAQELBQADggEBAIY8UE4krcB6A10z HwPX7KleRhNide/719zdHwAdNgXzMx9+MGMySosWrOaxxRJ4Vm0Y08ukKmQlg3Jv gtMEPw8LjRpKCVfHtCAuL5I/H+fk9VAEBhe0bmtNeCdua7gGWfdn3GmPR01lRtIH Fb++oYiOSZqbj+T6JXaHvxw+uo6+KUz5UVMD0xpld2V87fdTTdLNC6ByB5FmaEIf Sref+J+7zUlW8KCZnc4RBh2U1ZisKXfgj2O1o3+/yn1LWfj3edHLpCS1hh9OD/WF kued7l+yWG0+u2dRaUAyZqW2LVy8OlkkI+iZi25ZL0q9/punwvev8dYhdb1SlXBI 6d1bFCE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org