$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa File: 88F562E83DAD11EFAA46E417C4F9AE02.roa (raw, json) Hash identifier: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw= Subject key identifier: 6D:0C:4D:73:66:53:AA:74:CA:FF:29:C5:49:57:05:8D:7F:E0:56:72 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: 06 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa Signing time: Tue 09 Jul 2024 04:41:41 +0000 ROA not before: Tue 09 Jul 2024 04:41:41 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137209 IP address blocks: 103.104.232.0/22 maxlen: 22 2402:1dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Jul 9 04:41:41 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668cbf85-3226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e7:ae:70:b8:04:3b:b5:9c:64:84:77:5f:b7: 17:f7:e6:22:d1:01:8b:fa:2e:b9:9d:6b:bf:ce:e2: 39:76:58:35:06:a4:d4:40:49:af:b9:5e:00:4e:5c: 38:38:d2:7b:5c:d4:76:2b:78:40:05:cb:ed:79:b0: 86:d8:4a:84:5b:92:1f:b1:28:f8:4c:c6:4e:59:90: 10:32:57:87:6c:42:e8:ab:60:74:da:05:fb:aa:99: dc:3a:0f:00:11:44:76:32:13:97:4c:d5:20:54:e2: f7:15:86:ef:4b:75:31:86:26:92:fe:9e:23:ad:f8: 71:ca:8d:11:0e:e0:38:58:85:96:1d:cb:fe:d0:ef: e3:7a:29:94:3d:17:85:18:97:e4:81:a3:9d:82:6e: 4a:51:3b:3b:92:ea:74:1a:1d:f0:c5:99:f7:1c:2d: 47:8c:8e:4c:d6:15:be:42:c5:5a:a6:04:ad:32:2b: c1:f7:9b:7e:74:06:96:b0:be:3c:b4:f8:dc:5d:01: 12:74:2a:d8:c5:26:ef:00:3d:53:f0:80:b0:78:e4: af:7c:a2:2b:6b:ab:32:64:a7:bf:cb:be:ac:d3:e5: be:05:97:56:8a:07:40:21:55:59:a2:6f:7a:e2:9f: 2f:34:41:04:d8:72:14:07:d5:23:c9:ad:90:3a:69: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0C:4D:73:66:53:AA:74:CA:FF:29:C5:49:57:05:8D:7F:E0:56:72 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.232.0/22 IPv6: 2402:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:e0:52:89:81:27:43:7d:ba:1c:ee:0a:89:ce:29:70:0e:4d: e8:e5:d2:64:00:6c:45:77:07:27:d1:70:02:ef:b9:4f:ad:50: e4:31:c8:9c:d7:7d:54:f4:18:dd:a1:83:00:08:13:26:02:3a: 00:55:f7:98:b4:22:cb:7a:57:2e:1f:56:08:9b:b0:07:e9:c0: c1:b9:10:1d:f6:38:71:49:87:64:bb:68:5d:42:24:98:1e:a5: 56:84:55:b8:20:fe:04:67:ff:52:b8:ec:99:3e:3b:f3:0e:bd: 72:3a:43:82:6e:8d:83:67:7c:3d:22:f5:e1:a4:c6:0f:0a:0a: c3:6f:f8:47:ee:48:a6:75:df:17:9f:69:f7:92:5d:c6:7d:e1: b5:4d:7b:c7:09:51:b0:89:7d:45:6b:24:37:19:b8:c1:91:c3: 20:4a:c2:4b:68:bc:0f:56:33:c7:04:e7:d0:c1:2e:cd:a1:a0: 94:d2:c1:a6:68:aa:70:69:06:da:54:ac:7b:96:7e:f2:8f:03: 13:37:b4:71:7e:6d:46:58:ec:eb:0e:b9:d9:c4:90:17:83:82: fa:9d:e4:68:c8:34:dc:e2:88:8f:5a:d6:61:b6:1e:19:d2:13: 1f:bb:94:cd:53:a8:15:f4:9d:96:8e:56:be:cb:5c:01:00:17: 82:52:ac:18 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTYxODExMC8GA1UEBRMoQTUyQkYwMjg3NzE5MTk0OTcxMkQzREFEMjlENEFCN0Ey Nzc5RUM0MzAeFw0yNDA3MDkwNDQxNDFaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGNiZjg1LTMyMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl565wuAQ7tZxkhHdftxf35iLRAYv6Lrmda7/O4jl2WDUGpNRASa+5XgBOXDg4 0ntc1HYreEAFy+15sIbYSoRbkh+xKPhMxk5ZkBAyV4dsQuirYHTaBfuqmdw6DwAR RHYyE5dM1SBU4vcVhu9LdTGGJpL+niOt+HHKjREO4DhYhZYdy/7Q7+N6KZQ9F4UY l+SBo52CbkpROzuS6nQaHfDFmfccLUeMjkzWFb5CxVqmBK0yK8H3m350Bpawvjy0 +NxdARJ0KtjFJu8APVPwgLB45K98oitrqzJkp7/LvqzT5b4Fl1aKB0AhVVmib3ri ny80QQTYchQH1SPJrZA6af3dAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUbQxNc2ZT qnTK/ynFSVcFjX/gVnIwHwYDVR0jBBgwFoAUpSvwKHcZGUlxLT2tKdSreid57EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNjE4LzU1N0VBQjNDM0FC RTExRUY4NjE5RDIyMEM0RjlBRTAyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcFN2d0tIY1pHVWx4TFQydEtkU3JlaWQ1N0VNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi84OEY1NjJFODNE QUQxMUVGQUE0NkU0MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmdo6DANBAIAAjAHAwUAJAIdwDANBgkqhkiG9w0BAQsFAAOC AQEALeBSiYEnQ326HO4Kic4pcA5N6OXSZABsRXcHJ9FwAu+5T61Q5DHInNd9VPQY 3aGDAAgTJgI6AFX3mLQiy3pXLh9WCJuwB+nAwbkQHfY4cUmHZLtoXUIkmB6lVoRV uCD+BGf/UrjsmT478w69cjpDgm6Ng2d8PSL14aTGDwoKw2/4R+5IpnXfF59p95Jd xn3htU17xwlRsIl9RWskNxm4wZHDIErCS2i8D1YzxwTn0MEuzaGglNLBpmiqcGkG 2lSse5Z+8o8DEze0cX5tRljs6w652cSQF4OC+p3kaMg03OKIj1rWYbYeGdITH7uU zVOoFfSdlo5WvstcAQAXglKsGA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org