$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/E8E88010F2C811EA914D710EC4F9AE02.roa File: E8E88010F2C811EA914D710EC4F9AE02.roa (raw, json) Hash identifier: 4IYIB01vfapV8uIVjZVvt9vfa/un9Di3AF5QTJRdC70= Subject key identifier: FF:28:12:C9:F5:90:61:56:CD:2E:9A:DE:6B:3D:B8:0D:CD:B6:03:83 Certificate issuer: /CN=A91E9888/serialNumber=11F5A7073AC21AFF5CC4D3BBBD658DEA3932CB83 Certificate serial: 0B9E Authority key identifier: 11:F5:A7:07:3A:C2:1A:FF:5C:C4:D3:BB:BD:65:8D:EA:39:32:CB:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfWnBzrCGv9cxNO7vWWN6jkyy4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/E8E88010F2C811EA914D710EC4F9AE02.roa Signing time: Thu 28 Mar 2024 19:28:02 +0000 ROA not before: Thu 28 Mar 2024 19:28:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136429 IP address blocks: 103.87.212.0/22 maxlen: 22 103.87.212.0/23 maxlen: 23 103.87.212.0/24 maxlen: 24 103.87.213.0/24 maxlen: 24 103.87.214.0/23 maxlen: 23 103.87.214.0/24 maxlen: 24 103.87.215.0/24 maxlen: 24 2404:4e40::/32 maxlen: 32 2404:4e40:1::/48 maxlen: 48 2404:4e40:2::/48 maxlen: 48 2404:4e40:3::/48 maxlen: 48 2404:4e40:4::/48 maxlen: 48 2404:4e40:5::/48 maxlen: 48 2404:4e40:6::/48 maxlen: 48 2404:4e40:7::/48 maxlen: 48 2404:4e40:8::/48 maxlen: 48 2404:4e40:9::/48 maxlen: 48 2404:4e40:a::/48 maxlen: 48 2404:4e40:b::/48 maxlen: 48 2404:4e40:c::/48 maxlen: 48 2404:4e40:d::/48 maxlen: 48 2404:4e40:e::/48 maxlen: 48 2404:4e40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/EfWnBzrCGv9cxNO7vWWN6jkyy4M.crl rsync://rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/EfWnBzrCGv9cxNO7vWWN6jkyy4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfWnBzrCGv9cxNO7vWWN6jkyy4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9888/serialNumber=11F5A7073AC21AFF5CC4D3BBBD658DEA3932CB83 Validity Not Before: Mar 28 19:28:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605c4c1-baaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:95:9c:e6:59:54:13:5d:94:26:44:59:97: 23:ae:40:62:55:4f:8d:be:69:9f:01:0e:b3:38:3d: d0:b3:ed:58:2e:6f:f4:e6:7b:6f:cf:d6:a7:64:30: ce:a8:33:cf:b8:b0:62:94:fe:ae:bf:02:45:7c:71: ab:bf:d9:f3:a9:c8:c1:f5:b4:aa:4d:4a:37:9b:06: d0:9c:7b:fa:d3:d3:e4:63:2b:a6:8e:dd:44:27:70: f2:b9:53:65:c6:1c:06:38:59:e0:3a:d5:bb:c8:5d: 64:5c:56:a7:26:69:86:f9:e4:82:ad:53:e0:ff:33: 3c:3d:a6:a2:d9:32:3a:f4:c6:69:01:8e:2f:27:89: c7:92:02:0b:d2:8f:7c:e7:54:0c:cb:53:e6:43:30: a4:25:7b:b6:1b:18:75:33:9d:d2:e7:7b:ff:58:ec: 1f:73:ab:9e:80:2f:e3:8b:72:a0:79:81:45:61:31: f7:fd:f9:e3:d1:e7:e2:7a:eb:69:6b:8a:ae:d7:91: 9d:47:df:da:ca:d3:ce:b4:3b:a5:c2:36:6e:e0:fb: 13:5f:25:c4:cc:bd:ea:8c:66:c4:2d:55:e6:9d:d9: ea:55:b9:12:57:fe:c2:c4:01:48:30:6f:70:18:45: b3:cc:60:42:39:94:e6:f5:c7:be:fa:a8:f4:75:52: 06:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:28:12:C9:F5:90:61:56:CD:2E:9A:DE:6B:3D:B8:0D:CD:B6:03:83 X509v3 Authority Key Identifier: keyid:11:F5:A7:07:3A:C2:1A:FF:5C:C4:D3:BB:BD:65:8D:EA:39:32:CB:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/EfWnBzrCGv9cxNO7vWWN6jkyy4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfWnBzrCGv9cxNO7vWWN6jkyy4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9888/6F54D10EFFF311E9879B1479C4F9AE02/E8E88010F2C811EA914D710EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.212.0/22 IPv6: 2404:4e40::/32 Signature Algorithm: sha256WithRSAEncryption 28:60:0b:f7:dc:9d:38:cd:75:da:85:df:8d:83:29:44:60:df: c2:0e:0a:00:b4:77:20:5b:d2:15:8c:02:36:fb:40:eb:ba:3e: 20:25:30:f7:9c:6d:17:6e:d1:c1:38:25:75:e6:21:6c:ad:03: 80:92:57:9e:8c:5e:2f:21:18:79:75:33:ff:c9:7a:7b:48:b7: bd:1f:87:1f:ca:06:db:c8:f4:d7:e1:5d:51:c6:71:cb:f0:23: 0e:dd:6b:f4:a7:74:d6:de:12:0c:e2:0d:d7:33:e1:7b:87:a0: 64:10:71:3e:1d:2e:f1:ec:ce:dc:20:f5:03:14:fd:e8:1c:d9: d0:0e:74:44:15:7d:7c:d7:c8:8c:c8:07:84:33:b8:41:1a:d2: 63:21:b8:81:f1:74:9f:2d:3c:bd:52:47:2e:18:91:64:d8:ce: 89:c5:5f:5d:9f:04:a4:6c:2c:4c:9d:db:c2:af:98:3a:3a:9a: 5c:c9:2f:4e:59:50:8c:b5:19:1e:43:9b:83:45:f9:93:d4:5e: e5:34:d9:87:17:db:7f:e3:53:69:fd:42:83:25:39:b5:7a:61: 49:6a:af:f6:23:3d:7d:7b:ed:9e:a8:85:0e:56:95:35:07:85: 50:11:2e:e1:f8:ee:42:6a:74:14:52:c7:4d:da:06:0d:8f:5d: 96:e5:08:4d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk4ODgxMTAvBgNVBAUTKDExRjVBNzA3M0FDMjFBRkY1Q0M0RDNCQkJENjU4REVB MzkzMkNCODMwHhcNMjQwMzI4MTkyODAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YzRjMS1iYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzSVnOZZVBNdlCZEWZcjrkBiVU+NvmmfAQ6zOD3Qs+1YLm/05ntvz9anZDDO qDPPuLBilP6uvwJFfHGrv9nzqcjB9bSqTUo3mwbQnHv609PkYyumjt1EJ3DyuVNl xhwGOFngOtW7yF1kXFanJmmG+eSCrVPg/zM8Paai2TI69MZpAY4vJ4nHkgIL0o98 51QMy1PmQzCkJXu2Gxh1M53S53v/WOwfc6uegC/ji3KgeYFFYTH3/fnj0efieutp a4qu15GdR9/aytPOtDulwjZu4PsTXyXEzL3qjGbELVXmndnqVbkSV/7CxAFIMG9w GEWzzGBCOZTm9ce++qj0dVIGnQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP8oEsn1 kGFWzS6a3ms9uA3NtgODMB8GA1UdIwQYMBaAFBH1pwc6whr/XMTTu71ljeo5MsuD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTg4OC82RjU0RDEwRUZG RjMxMUU5ODc5QjE0NzlDNEY5QUUwMi9FZlduQnpyQ0d2OWN4Tk83dldXTjZqa3l5 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VmV25CenJDR3Y5Y3hOTzd2V1dONmpreXk0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk4ODgvNkY1NEQxMEVGRkYzMTFFOTg3OUIxNDc5QzRGOUFFMDIvRThFODgwMTBG MkM4MTFFQTkxNEQ3MTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnV9QwDQQCAAIwBwMFACQETkAwDQYJKoZIhvcNAQELBQAD ggEBAChgC/fcnTjNddqF342DKURg38IOCgC0dyBb0hWMAjb7QOu6PiAlMPecbRdu 0cE4JXXmIWytA4CSV56MXi8hGHl1M//JentIt70fhx/KBtvI9NfhXVHGccvwIw7d a/SndNbeEgziDdcz4XuHoGQQcT4dLvHsztwg9QMU/egc2dAOdEQVfXzXyIzIB4Qz uEEa0mMhuIHxdJ8tPL1SRy4YkWTYzonFX12fBKRsLEyd28KvmDo6mlzJL05ZUIy1 GR5Dm4NF+ZPUXuU02YcX23/jU2n9QoMlObV6YUlqr/YjPX177Z6ohQ5WlTUHhVAR LuH47kJqdBRSx03aBg2PXZblCE0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org