$ rpki-client -vvf rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F86B8216BFED11EABE972E5AC4F9AE02.roa File: F86B8216BFED11EABE972E5AC4F9AE02.roa (raw, json) Hash identifier: V0pjnh04vEdgmV8Kv8derW5bLwshO/M+fOtkhl/pSHk= Subject key identifier: 71:6A:AC:B0:4E:26:50:72:AC:6D:A9:47:C6:FF:3C:89:7F:F7:94:66 Certificate issuer: /CN=A913FA1D/serialNumber=7C53BF6AF493D24C3B7C6BA216B382B0C7F7FC24 Certificate serial: 0795 Authority key identifier: 7C:53:BF:6A:F4:93:D2:4C:3B:7C:6B:A2:16:B3:82:B0:C7:F7:FC:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F86B8216BFED11EABE972E5AC4F9AE02.roa Signing time: Fri 02 Feb 2024 22:00:01 +0000 ROA not before: Fri 02 Feb 2024 22:00:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132827 IP address blocks: 103.28.168.0/24 maxlen: 24 103.28.169.0/24 maxlen: 24 103.28.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.crl rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FA1D/serialNumber=7C53BF6AF493D24C3B7C6BA216B382B0C7F7FC24 Validity Not Before: Feb 2 22:00:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd65e1-6430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7e:fb:9a:85:9e:ba:4c:c9:9f:67:88:b5:38: 74:f3:1f:e9:28:e4:4a:1a:ae:79:7b:33:8f:53:11: 63:17:7a:7d:b6:21:68:14:9e:42:a0:5b:b5:07:53: 67:e8:83:38:a8:e6:0c:79:68:35:e7:fb:8f:13:1b: 8d:29:16:12:4d:71:e7:70:07:31:c7:0c:b2:bd:cf: c3:74:59:a1:1d:b5:b5:cc:3e:75:eb:80:9c:7e:9b: c0:b4:da:3f:83:ee:54:31:cc:e0:00:dd:73:82:08: d2:63:d1:c6:d5:7e:06:1f:ec:31:e7:50:db:bb:73: 04:09:aa:a7:90:b1:28:59:1a:60:17:26:c4:98:59: e7:dd:7e:d0:f3:86:31:49:84:36:bc:2e:3a:31:b3: 47:69:2d:e9:81:bb:7b:98:9e:3c:51:34:bb:dc:69: b7:e0:77:d5:fd:85:b0:a9:aa:c0:34:d2:4b:79:67: ec:2c:6f:43:d1:1a:99:7a:58:b8:c5:53:01:fb:ac: 66:cb:82:60:bd:20:07:0e:36:e2:ba:e0:c6:bd:8f: 2b:09:67:64:47:a3:69:97:53:90:26:ad:be:e0:7b: 6c:04:fd:67:7f:9f:9e:b8:8c:7d:bd:21:16:17:34: 44:70:07:e2:f5:ea:da:79:e9:52:7c:01:4a:e8:75: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6A:AC:B0:4E:26:50:72:AC:6D:A9:47:C6:FF:3C:89:7F:F7:94:66 X509v3 Authority Key Identifier: keyid:7C:53:BF:6A:F4:93:D2:4C:3B:7C:6B:A2:16:B3:82:B0:C7:F7:FC:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F86B8216BFED11EABE972E5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.168.0-103.28.170.255 Signature Algorithm: sha256WithRSAEncryption 3b:8c:d5:ee:ed:ec:e3:90:b9:ee:7b:24:8f:d8:b1:52:51:af: ac:95:2f:7f:8b:64:f4:7a:0f:90:28:b2:e7:fd:2e:a0:23:fe: 5c:1c:fd:e4:72:ff:b8:88:6a:94:81:da:ef:9f:9c:ed:03:90: b4:56:9d:0b:37:bf:75:c8:32:49:88:da:6e:c0:f7:38:52:af: b5:47:e0:06:11:eb:46:fa:45:03:8c:6e:49:e1:ca:c3:fc:f4: 06:1c:f6:1c:c7:98:63:4c:05:6a:7e:49:0d:c2:d6:f9:37:59: 48:be:3b:aa:5a:bd:1e:46:da:d4:22:fa:28:56:0a:2c:f2:b7: 2c:20:19:4b:04:1f:0d:93:fa:18:c1:a3:65:ab:71:5a:62:d1: e1:59:63:24:cb:d7:34:92:5c:0b:68:69:20:3b:39:19:7a:bc: c0:7f:71:46:77:df:50:b8:0f:2d:8c:db:26:78:a6:61:a8:74: 16:30:ab:48:11:39:b6:35:fa:dc:f7:c8:77:9f:11:12:a4:44: ea:21:25:1e:65:1b:89:37:0f:98:51:85:da:29:bb:82:fc:2f: 73:d9:63:36:79:56:a5:70:af:f4:51:92:10:e1:b8:f5:20:3a: 48:b4:51:cb:39:60:aa:0a:e4:a0:a9:a5:92:d6:ba:b1:60:bf: bb:a1:0c:fe -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZBMUQxMTAvBgNVBAUTKDdDNTNCRjZBRjQ5M0QyNEMzQjdDNkJBMjE2QjM4MkIw QzdGN0ZDMjQwHhcNMjQwMjAyMjIwMDAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNjVlMS02NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1H77moWeukzJn2eItTh08x/pKORKGq55ezOPUxFjF3p9tiFoFJ5CoFu1B1Nn 6IM4qOYMeWg15/uPExuNKRYSTXHncAcxxwyyvc/DdFmhHbW1zD5164CcfpvAtNo/ g+5UMczgAN1zggjSY9HG1X4GH+wx51Dbu3MECaqnkLEoWRpgFybEmFnn3X7Q84Yx SYQ2vC46MbNHaS3pgbt7mJ48UTS73Gm34HfV/YWwqarANNJLeWfsLG9D0RqZeli4 xVMB+6xmy4JgvSAHDjbiuuDGvY8rCWdkR6Npl1OQJq2+4HtsBP1nf5+euIx9vSEW FzREcAfi9eraeelSfAFK6HWDmwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHFqrLBO JlByrG2pR8b/PIl/95RmMB8GA1UdIwQYMBaAFHxTv2r0k9JMO3xrohazgrDH9/wk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkExRC85RUVBNEQ2OEJG RUMxMUVBODk5MjlBNThDNEY5QUUwMi9mRk9fYXZTVDBrdzdmR3VpRnJPQ3NNZjNf Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGT19hdlNUMGt3N2ZHdWlGck9Dc01mM19DUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZBMUQvOUVFQTRENjhCRkVDMTFFQTg5OTI5QTU4QzRGOUFFMDIvRjg2QjgyMTZC RkVEMTFFQUJFOTcyRTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2ccqAMEAGccqjANBgkqhkiG9w0BAQsFAAOCAQEAO4zV 7u3s45C57nskj9ixUlGvrJUvf4tk9HoPkCiy5/0uoCP+XBz95HL/uIhqlIHa75+c 7QOQtFadCze/dcgySYjabsD3OFKvtUfgBhHrRvpFA4xuSeHKw/z0Bhz2HMeYY0wF an5JDcLW+TdZSL47qlq9Hkba1CL6KFYKLPK3LCAZSwQfDZP6GMGjZatxWmLR4Vlj JMvXNJJcC2hpIDs5GXq8wH9xRnffULgPLYzbJnimYah0FjCrSBE5tjX63PfId58R EqRE6iElHmUbiTcPmFGF2im7gvwvc9ljNnlWpXCv9FGSEOG49SA6SLRRyzlgqgrk oKmlkta6sWC/u6EM/g== -----END CERTIFICATE-----Generated at Mon May 6 22:40:54 2024 by rpki-client on console-ams.rpki-client.org