$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa File: AD88248C1FBE11EE97342E64C4F9AE02.roa (raw, json) Hash identifier: a0w3266kckTjSALb3eHJxIS1hs6Dlk0YZFh3kYRufVA= Subject key identifier: F0:B4:CC:34:7D:49:10:04:5F:3B:7A:AF:AB:59:05:5A:66:A3:2C:38 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 96 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa Signing time: Thu 07 Dec 2023 05:36:14 +0000 ROA not before: Thu 07 Dec 2023 05:36:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 398478 IP address blocks: 103.88.188.0/22 maxlen: 22 116.204.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Dec 7 05:36:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657159ce-38af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e8:51:c8:5a:b7:e3:15:05:f7:86:ad:4f:10: c4:9b:70:62:f0:de:fa:a7:b5:37:64:86:c3:1b:e3: b0:ff:29:89:de:ab:93:01:39:9e:4d:72:77:6f:1c: fd:3c:d7:68:68:d2:1d:2f:7d:7d:21:c7:80:98:d7: f5:c8:6d:b2:3b:67:e1:75:c6:1d:59:99:ac:53:74: 76:68:89:77:93:97:ad:fe:da:87:a4:a4:2a:f2:f0: c9:6c:68:be:ea:ab:46:c0:9a:a7:17:ef:86:68:0b: 6a:25:ff:53:6e:7a:9c:8a:ac:81:96:56:65:bc:02: 9f:e0:c1:ea:ee:cd:52:26:de:ec:b9:f3:72:12:d4: 62:9f:74:36:3c:59:25:62:a3:a5:19:98:c2:71:d6: 7c:77:61:7c:64:8a:2c:32:09:b1:3a:f4:57:3d:34: 79:b0:30:49:17:9c:c1:d6:b9:d9:8f:eb:62:e5:3d: bd:77:2a:06:ad:b5:38:18:80:fc:bb:c6:ab:68:70: 69:28:1b:20:fb:35:a7:3e:f7:e5:cf:a9:18:72:9d: ef:d3:a1:6f:68:16:73:5c:21:88:79:35:0d:b2:55: e9:e7:cc:64:a4:91:c7:77:df:67:bb:28:8c:44:75: d6:ff:ad:e4:60:38:3d:39:c0:19:65:6d:e4:2f:d2: 21:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B4:CC:34:7D:49:10:04:5F:3B:7A:AF:AB:59:05:5A:66:A3:2C:38 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.188.0/22 116.204.236.0/22 Signature Algorithm: sha256WithRSAEncryption 63:ec:4b:6a:40:18:ad:f9:2e:22:bf:ec:bf:c5:40:76:33:e8: 32:9c:11:cc:bd:a6:1d:90:1d:66:2f:d2:3c:37:a5:c0:10:1d: de:80:a6:c3:ae:f6:bb:82:6e:e0:a2:de:da:29:83:6d:83:3b: 61:78:0d:a6:08:56:dd:b2:70:98:73:57:59:8d:be:a1:7a:28: 2c:fc:7d:9a:98:83:d8:58:7d:a3:0c:9e:93:c7:d2:33:31:6b: 8f:a4:5f:fb:16:83:77:f1:3c:5e:25:01:0b:77:54:1c:84:7a: 3e:fc:06:d1:15:a4:72:71:8e:15:e2:02:e4:68:95:74:6c:75: b5:0b:af:09:a7:2a:88:ad:ff:f8:9d:9f:58:90:a3:9f:e8:f2: 54:e8:08:23:37:6f:b6:53:bb:72:9e:4c:23:54:38:ee:98:c1: f7:56:3b:e7:6f:10:65:49:cf:f0:71:82:5d:7a:99:7c:a1:12: e8:d1:ed:01:ad:cf:82:2b:cd:eb:bc:65:93:a9:d3:64:5e:c4: 61:39:20:1d:71:2e:03:a8:75:82:60:08:48:1d:fd:57:81:19: 4d:7d:9c:c0:d5:24:e7:16:e4:cc:a8:22:99:13:1b:c1:f9:87: b6:10:33:46:ca:d9:65:a5:ce:12:70:bf:cb:a6:bd:dd:46:e3: e9:49:25:22 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjMxMjA3MDUzNjE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxNTljZS0zOGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ehRyFq34xUF94atTxDEm3Bi8N76p7U3ZIbDG+Ow/ymJ3quTATmeTXJ3bxz9 PNdoaNIdL319IceAmNf1yG2yO2fhdcYdWZmsU3R2aIl3k5et/tqHpKQq8vDJbGi+ 6qtGwJqnF++GaAtqJf9TbnqciqyBllZlvAKf4MHq7s1SJt7sufNyEtRin3Q2PFkl YqOlGZjCcdZ8d2F8ZIosMgmxOvRXPTR5sDBJF5zB1rnZj+ti5T29dyoGrbU4GID8 u8araHBpKBsg+zWnPvflz6kYcp3v06FvaBZzXCGIeTUNslXp58xkpJHHd99nuyiM RHXW/63kYDg9OcAZZW3kL9Ih4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPC0zDR9 SRAEXzt6r6tZBVpmoyw4MB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQUQ4ODI0OEMx RkJFMTFFRTk3MzQyRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWLwDBAJ0zOwwDQYJKoZIhvcNAQELBQADggEBAGPsS2pA GK35LiK/7L/FQHYz6DKcEcy9ph2QHWYv0jw3pcAQHd6ApsOu9ruCbuCi3topg22D O2F4DaYIVt2ycJhzV1mNvqF6KCz8fZqYg9hYfaMMnpPH0jMxa4+kX/sWg3fxPF4l AQt3VByEej78BtEVpHJxjhXiAuRolXRsdbULrwmnKoit//idn1iQo5/o8lToCCM3 b7ZTu3KeTCNUOO6YwfdWO+dvEGVJz/Bxgl16mXyhEujR7QGtz4Irzeu8ZZOp02Re xGE5IB1xLgOodYJgCEgd/VeBGU19nMDVJOcW5MyoIpkTG8H5h7YQM0bK2WWlzhJw v8umvd1G4+lJJSI= -----END CERTIFICATE-----Generated at Fri May 3 09:09:31 2024 by rpki-client on console-fra.rpki-client.org