$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa File: 28382F96644E11EEA1DCB653C4F9AE02.roa (raw, json) Hash identifier: bp4PkF9H+7SLP2SSMLLtPbsOj6bIY1D18QE4n7qL2gU= Subject key identifier: BA:23:A7:EE:42:46:40:6F:C2:D9:A2:61:A9:67:A2:26:F1:B2:5B:5C Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Certificate serial: 07 Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa Signing time: Fri 06 Oct 2023 13:45:12 +0000 ROA not before: Fri 06 Oct 2023 13:45:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151845 IP address blocks: 103.249.112.0/23 maxlen: 24 2401:4260:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Validity Not Before: Oct 6 13:45:12 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65200f67-5bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:4c:20:5c:33:34:60:81:c0:b2:d9:8e:e9: 4a:2f:55:04:14:0b:5f:9e:41:32:4e:b7:17:d6:81: d8:78:67:b2:f0:24:79:73:87:d4:12:ae:41:d7:59: 60:b4:91:85:f3:5e:d6:34:28:8e:3c:5e:72:a3:f4: 93:8e:01:72:de:5b:60:61:bb:b0:51:2e:e4:a0:65: 7f:15:d5:65:36:e0:eb:c4:e6:1c:73:99:16:7e:9f: a8:15:9e:9f:8c:60:54:84:17:21:89:55:c1:17:14: a5:55:7c:f1:02:6a:f6:93:c1:a3:64:b4:1a:af:26: 91:a8:e8:25:5b:e6:57:d9:2b:39:0f:1c:53:33:95: c2:47:40:7f:fe:68:13:26:3b:b6:54:a3:f4:3b:e0: e6:71:f7:13:6b:0c:e9:bb:9f:07:7f:18:9a:75:05: 5a:58:03:e4:93:df:fe:09:1b:70:02:d0:ee:75:43: 86:42:2d:ae:fd:23:85:78:f1:5f:99:22:5a:86:88: 21:67:b3:b3:2f:bd:29:80:59:cb:a3:05:cb:f8:76: 74:30:9b:25:9e:e1:4d:e4:ff:d8:3e:cb:aa:f3:c6: a0:22:cc:9a:34:27:4e:7c:7c:fc:25:8e:3d:92:9b: d2:97:99:9d:6b:d1:98:73:c5:47:f1:cd:87:52:74: 42:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:23:A7:EE:42:46:40:6F:C2:D9:A2:61:A9:67:A2:26:F1:B2:5B:5C X509v3 Authority Key Identifier: keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.112.0/23 IPv6: 2401:4260:1::/48 Signature Algorithm: sha256WithRSAEncryption 05:e4:75:02:1f:63:11:43:3f:89:36:bc:10:13:25:ca:27:35: ec:d8:03:72:61:24:87:4b:f2:ab:b0:72:c1:62:f7:3e:67:aa: 2e:5e:b6:bf:f3:f6:01:22:b6:01:87:e8:84:20:27:59:5f:19: 6c:64:da:d0:41:ac:97:ed:54:a9:29:4e:c4:70:c9:7a:25:69: 92:5e:65:0d:f2:a2:00:98:64:89:46:44:db:ba:27:6b:28:18: 98:d6:ef:8a:6f:7c:f0:7e:37:44:63:26:6f:ae:08:6c:e7:5a: 64:eb:d8:5d:b1:19:81:c0:91:36:62:38:d5:ee:57:d0:fd:35: fd:78:9d:94:a0:52:6d:31:b7:ed:9d:86:34:ca:8c:d1:bf:b0: f4:be:ca:4e:7c:e9:42:f2:ed:30:49:64:93:e8:57:9e:70:b9: cd:0e:b7:9a:01:74:72:6c:16:59:e1:2f:17:32:b4:3e:11:3f: 24:84:a6:59:8a:aa:ff:0a:f9:18:a5:2a:fd:fc:7c:05:43:a1: 67:50:73:5d:84:bc:12:1c:86:7b:dd:1f:52:79:2e:e0:01:6f: 23:27:82:cb:60:8b:d2:37:37:f6:6e:67:97:b9:03:62:03:2a: f2:71:e0:b0:f9:57:ca:d9:a2:e9:16:e6:f5:dd:ef:61:60:df: cb:ef:a2:d2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkI3QTExMC8GA1UEBRMoODdCRkVFQzhGRjlGQjI2ODgwMjBEQjU5QTYyMkMxM0Ex NUU1QUYyMDAeFw0yMzEwMDYxMzQ1MTJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjAwZjY3LTViZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+S0wgXDM0YIHAstmO6UovVQQUC1+eQTJOtxfWgdh4Z7LwJHlzh9QSrkHXWWC0 kYXzXtY0KI48XnKj9JOOAXLeW2Bhu7BRLuSgZX8V1WU24OvE5hxzmRZ+n6gVnp+M YFSEFyGJVcEXFKVVfPECavaTwaNktBqvJpGo6CVb5lfZKzkPHFMzlcJHQH/+aBMm O7ZUo/Q74OZx9xNrDOm7nwd/GJp1BVpYA+ST3/4JG3AC0O51Q4ZCLa79I4V48V+Z IlqGiCFns7MvvSmAWcujBcv4dnQwmyWe4U3k/9g+y6rzxqAizJo0J058fPwljj2S m9KXmZ1r0ZhzxUfxzYdSdELtAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUuiOn7kJG QG/C2aJhqWeiJvGyW1wwHwYDVR0jBBgwFoAUh7/uyP+fsmiAINtZpiLBOhXlryAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyQjdBLzA2QTE5NjAyNjQ0 RDExRUU4NEQ0MDM0RkM0RjlBRTAyL2g3X3V5UC1mc21pQUlOdFpwaUxCT2hYbHJ5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDdfdXlQLWZzbWlBSU50WnBpTEJPaFhscnlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkI3QS8wNkExOTYwMjY0NEQxMUVFODRENDAzNEZDNEY5QUUwMi8yODM4MkY5NjY0 NEUxMUVFQTFEQ0I2NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWf5cDAPBAIAAjAJAwcAJAFCYAABMA0GCSqGSIb3DQEBCwUA A4IBAQAF5HUCH2MRQz+JNrwQEyXKJzXs2ANyYSSHS/KrsHLBYvc+Z6ouXra/8/YB IrYBh+iEICdZXxlsZNrQQayX7VSpKU7EcMl6JWmSXmUN8qIAmGSJRkTbuidrKBiY 1u+Kb3zwfjdEYyZvrghs51pk69hdsRmBwJE2YjjV7lfQ/TX9eJ2UoFJtMbftnYY0 yozRv7D0vspOfOlC8u0wSWST6FeecLnNDreaAXRybBZZ4S8XMrQ+ET8khKZZiqr/ CvkYpSr9/HwFQ6FnUHNdhLwSHIZ73R9SeS7gAW8jJ4LLYIvSNzf2bmeXuQNiAyry ceCw+VfK2aLpFub13e9hYN/L76LS -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:10 2024 by rpki-client on console-ams.rpki-client.org