$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/A88B0898EC9911EE9627923CC4F9AE02.roa File: A88B0898EC9911EE9627923CC4F9AE02.roa (raw, json) Hash identifier: Q6U74OWQee2tozS+dAmpsL+G+700VEvm1Ngpa46boEk= Subject key identifier: 4F:FD:32:EF:FE:E8:6B:57:3E:43:86:4D:F4:9E:61:A5:08:B7:DF:C3 Certificate issuer: /CN=A91BC15C/serialNumber=15E02CB4E7DCBB0ACCE228119CFF8034386297BF Certificate serial: 33A7 Authority key identifier: 15:E0:2C:B4:E7:DC:BB:0A:CC:E2:28:11:9C:FF:80:34:38:62:97:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeAstOfcuwrM4igRnP-ANDhil78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/A88B0898EC9911EE9627923CC4F9AE02.roa Signing time: Thu 28 Mar 2024 00:25:20 +0000 ROA not before: Thu 28 Mar 2024 00:25:20 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45931 IP address blocks: 103.29.88.0/24 maxlen: 24 103.29.89.0/24 maxlen: 24 202.58.240.0/24 maxlen: 24 202.58.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/FeAstOfcuwrM4igRnP-ANDhil78.crl rsync://rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/FeAstOfcuwrM4igRnP-ANDhil78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeAstOfcuwrM4igRnP-ANDhil78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13223 (0x33a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC15C/serialNumber=15E02CB4E7DCBB0ACCE228119CFF8034386297BF Validity Not Before: Mar 28 00:25:20 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6604b8ef-dcc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:5e:a8:bb:64:81:ba:cc:64:37:1c:c3:e8: 77:3d:11:27:c6:18:5f:5f:cd:69:b9:bc:87:db:8d: a9:15:e4:6b:12:05:b7:df:03:cb:ef:9f:7d:db:9b: 41:56:10:b4:23:ba:0e:c1:fc:a3:6d:7d:a2:19:e3: ab:74:36:15:18:68:a0:fb:98:29:01:3a:74:71:d0: 7f:74:59:cd:17:a2:fc:8a:c6:cd:d7:b3:72:4a:2f: 4d:3c:e2:76:80:02:64:36:fc:3d:81:ab:68:b3:1b: 12:93:be:30:cc:49:1a:fd:0b:3d:85:48:a3:21:cf: 18:b7:4e:ad:60:0f:c7:1a:a6:7b:13:bf:5e:16:8b: 9b:71:e7:aa:c2:7f:85:7d:cc:4d:1f:d8:45:e3:59: 1d:88:40:81:f3:b4:aa:fb:51:64:0c:36:17:4f:63: f1:92:d1:c5:5e:26:89:8a:bd:8a:f5:17:d0:2d:19: b0:3c:57:1d:96:4a:59:1b:db:1c:e9:58:79:d4:4c: 51:05:95:25:be:fd:2b:31:3a:c9:55:94:e2:9f:fa: b5:3d:cd:26:a6:c7:9e:85:38:63:ef:8e:64:e8:6a: f0:92:74:8d:1e:b8:1b:bb:cd:52:d6:c2:d6:1b:28: 45:b2:50:da:0a:6a:7d:96:39:26:b9:e5:db:a7:ea: 1f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FD:32:EF:FE:E8:6B:57:3E:43:86:4D:F4:9E:61:A5:08:B7:DF:C3 X509v3 Authority Key Identifier: keyid:15:E0:2C:B4:E7:DC:BB:0A:CC:E2:28:11:9C:FF:80:34:38:62:97:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/FeAstOfcuwrM4igRnP-ANDhil78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeAstOfcuwrM4igRnP-ANDhil78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC15C/6BA359301DA211E2B4B6449508B02CD2/A88B0898EC9911EE9627923CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.88.0/23 202.58.240.0/23 Signature Algorithm: sha256WithRSAEncryption 96:89:24:6f:2f:b3:bf:eb:8c:2a:8d:db:ac:9f:b5:e4:70:3e: 07:c4:9c:3f:09:ed:73:24:2e:b9:02:c9:1b:47:39:f3:cc:eb: 31:aa:e5:7c:e8:80:36:2a:26:77:7f:23:44:06:b4:d7:8e:c2: 87:2c:e4:d8:ad:b2:47:b0:8d:c9:10:39:63:2b:f9:19:8e:0f: 05:e1:ce:4c:77:7b:93:56:72:e6:e9:02:7e:63:86:b6:64:38: fc:6b:fd:76:7c:1b:c0:3a:da:ef:bb:da:d4:b8:32:0f:b6:30: 12:f7:54:34:de:32:fb:dc:93:88:92:fb:f4:9c:c7:4d:75:e8: b0:9a:46:b1:82:8f:15:c0:6b:ab:9d:a2:89:a9:a4:b4:18:60: 9f:07:6d:8e:94:84:8f:3c:4a:22:73:d6:b5:4d:03:64:82:45: e7:8e:0c:98:81:60:bd:e3:56:74:4a:9e:93:67:cf:71:7d:d3: 8a:89:46:5e:57:99:38:cb:ba:c1:6a:71:5e:7c:e4:9f:0f:d3: 6e:a5:32:0f:c1:eb:30:c5:c0:88:54:00:17:28:be:26:47:e0: ad:51:f4:e9:d7:cf:c2:8e:c5:c2:b3:f2:7b:91:b5:84:a6:2c: 5a:a0:f3:b8:b4:29:2d:1f:ce:c0:66:8a:00:03:0c:25:67:3c: fb:c1:08:d0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxNUMxMTAvBgNVBAUTKDE1RTAyQ0I0RTdEQ0JCMEFDQ0UyMjgxMTlDRkY4MDM0 Mzg2Mjk3QkYwHhcNMjQwMzI4MDAyNTIwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0YjhlZi1kY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/NeqLtkgbrMZDccw+h3PREnxhhfX81pubyH242pFeRrEgW33wPL759925tB VhC0I7oOwfyjbX2iGeOrdDYVGGig+5gpATp0cdB/dFnNF6L8isbN17NySi9NPOJ2 gAJkNvw9gatosxsSk74wzEka/Qs9hUijIc8Yt06tYA/HGqZ7E79eFoubceeqwn+F fcxNH9hF41kdiECB87Sq+1FkDDYXT2PxktHFXiaJir2K9RfQLRmwPFcdlkpZG9sc 6Vh51ExRBZUlvv0rMTrJVZTin/q1Pc0mpseehThj745k6GrwknSNHrgbu81S1sLW GyhFslDaCmp9ljkmueXbp+ofnQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE/9Mu/+ 6GtXPkOGTfSeYaUIt9/DMB8GA1UdIwQYMBaAFBXgLLTn3LsKzOIoEZz/gDQ4Ype/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzE1Qy82QkEzNTkzMDFE QTIxMUUyQjRCNjQ0OTUwOEIwMkNEMi9GZUFzdE9mY3V3ck00aWdSblAtQU5EaGls NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZlQXN0T2ZjdXdyTTRpZ1JuUC1BTkRoaWw3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMxNUMvNkJBMzU5MzAxREEyMTFFMkI0QjY0NDk1MDhCMDJDRDIvQTg4QjA4OThF Qzk5MTFFRTk2Mjc5MjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnHVgDBAHKOvAwDQYJKoZIhvcNAQELBQADggEBAJaJJG8v s7/rjCqN26yfteRwPgfEnD8J7XMkLrkCyRtHOfPM6zGq5XzogDYqJnd/I0QGtNeO wocs5NitskewjckQOWMr+RmODwXhzkx3e5NWcubpAn5jhrZkOPxr/XZ8G8A62u+7 2tS4Mg+2MBL3VDTeMvvck4iS+/Scx0116LCaRrGCjxXAa6udoomppLQYYJ8HbY6U hI88SiJz1rVNA2SCReeODJiBYL3jVnRKnpNnz3F904qJRl5XmTjLusFqcV585J8P 026lMg/B6zDFwIhUABcoviZH4K1R9OnXz8KOxcKz8nuRtYSmLFqg87i0KS0fzsBm igADDCVnPPvBCNA= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org