$ rpki-client -vvf rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/028335CAC3BC11EEB6DE185EC4F9AE02.roa File: 028335CAC3BC11EEB6DE185EC4F9AE02.roa (raw, json) Hash identifier: YYtXyk1EEHIZzzJgz3IlAy5yL7gltpGPXetLmQmw2Q8= Subject key identifier: 6B:20:F8:59:25:12:AF:C0:70:31:A2:C6:83:D5:EF:9E:F4:1A:1C:D7 Certificate issuer: /CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Certificate serial: DC Authority key identifier: 92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/028335CAC3BC11EEB6DE185EC4F9AE02.roa Signing time: Fri 15 Mar 2024 05:37:53 +0000 ROA not before: Fri 15 Mar 2024 05:37:53 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150745 IP address blocks: 103.81.28.0/24 maxlen: 24 103.81.29.0/24 maxlen: 24 2001:df1:e940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Validity Not Before: Mar 15 05:37:53 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3deb0-42f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:03:dd:d1:c7:f6:d5:0d:2e:9c:c7:46:42:e9: 5d:62:92:e4:b7:25:28:43:66:0b:fc:86:ad:e2:70: 96:b2:13:92:f7:f0:f6:6a:72:5f:4a:72:69:3c:c9: 76:8e:bd:99:b7:db:41:34:49:59:ad:c8:16:f2:87: d1:46:cc:05:11:1f:c7:6e:d3:57:61:6d:ff:bd:0a: 4f:88:19:41:b1:c9:de:8c:bb:b7:41:2a:e2:28:3d: 5e:e4:ed:ee:ef:f1:d7:a6:80:e8:55:a1:1c:b4:95: 1d:cb:58:4f:45:28:d8:2c:5e:51:01:c9:f0:30:8f: ae:87:00:c0:4b:ec:6d:70:57:1d:c5:92:e4:b3:f1: 82:a3:f2:a4:ff:07:b4:cd:c0:a6:db:3b:97:5c:07: 11:7f:07:a8:bb:0c:b9:03:57:bb:7c:85:59:3b:03: 23:54:e4:0a:7d:77:02:6c:05:59:34:16:b4:c3:ea: 10:f0:23:3a:20:17:34:b2:67:6c:c4:26:1e:72:e1: 58:83:01:21:f5:a6:66:fc:74:ec:26:38:28:c3:cc: b6:28:6b:92:84:a3:8a:b8:25:71:37:0c:77:b5:ae: 37:5c:d3:db:bb:97:0f:d0:fd:43:51:83:38:01:5e: 93:d4:fd:dc:d6:15:dd:ce:3f:75:70:fd:50:41:db: 33:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:20:F8:59:25:12:AF:C0:70:31:A2:C6:83:D5:EF:9E:F4:1A:1C:D7 X509v3 Authority Key Identifier: keyid:92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/028335CAC3BC11EEB6DE185EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.28.0/23 IPv6: 2001:df1:e940::/48 Signature Algorithm: sha256WithRSAEncryption 99:9b:0f:7e:c7:2e:74:9e:25:f1:72:07:ca:ea:0e:87:90:36: 09:1d:39:40:04:ff:01:96:07:9e:55:6f:fc:e5:ca:e4:fa:f2: bf:69:41:91:40:b3:0a:be:0e:81:48:72:d0:c6:3e:9d:5e:b6: e9:2b:fd:cc:21:e9:02:8d:17:cd:cd:f1:80:0a:17:fc:0e:1f: 1f:45:24:1e:d0:cb:47:3f:01:c1:77:4c:4c:8a:be:2d:8d:0b: 7c:b8:87:0f:e2:a9:88:10:5d:32:98:cc:f1:75:89:1b:aa:14: c5:c5:79:62:30:9a:20:7b:03:62:1b:1e:93:f2:51:f0:87:2d: 54:37:09:3a:29:f3:f0:3f:f0:46:99:9c:d4:a6:91:e4:27:ae: e9:a7:6a:71:b0:88:e3:18:b8:8c:8a:2f:4c:20:a6:1b:60:5f: c0:a9:34:4b:01:37:a9:25:71:b2:45:39:ca:28:54:96:ca:56: dd:79:bd:11:2b:d2:ea:5a:58:16:61:bf:13:67:ab:ba:a0:33: ac:67:89:f3:7c:15:05:f1:6a:fe:75:bc:2d:be:8d:0f:c9:a8: 2f:91:04:ca:1e:ac:80:be:ab:16:1a:53:68:41:23:30:a7:5d: d7:0b:70:48:2f:7b:af:e7:b0:ba:8c:43:5b:f8:77:dc:67:05: a1:b4:b0:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAzRTkxMTAvBgNVBAUTKDkyRkVGRThBRTgyOUYwQTVBNTAxQjU3NTA2RkFFNEU1 QzExQTFEOTcwHhcNMjQwMzE1MDUzNzUzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzZGViMC00MmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogPd0cf21Q0unMdGQuldYpLktyUoQ2YL/Iat4nCWshOS9/D2anJfSnJpPMl2 jr2Zt9tBNElZrcgW8ofRRswFER/HbtNXYW3/vQpPiBlBscnejLu3QSriKD1e5O3u 7/HXpoDoVaEctJUdy1hPRSjYLF5RAcnwMI+uhwDAS+xtcFcdxZLks/GCo/Kk/we0 zcCm2zuXXAcRfweouwy5A1e7fIVZOwMjVOQKfXcCbAVZNBa0w+oQ8CM6IBc0smds xCYecuFYgwEh9aZm/HTsJjgow8y2KGuShKOKuCVxNwx3ta43XNPbu5cP0P1DUYM4 AV6T1P3c1hXdzj91cP1QQdsz0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGsg+Fkl Eq/AcDGixoPV7570GhzXMB8GA1UdIwQYMBaAFJL+/oroKfClpQG1dQb65OXBGh2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDNFOS8xNzYxMzIzNEFD M0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhLV2xBYlYxQnZyazVjRWFI WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t2Ny1pdWdwOEtXbEFiVjFCdnJrNWNFYUhaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAzRTkvMTc2MTMyMzRBQzNBMTFFRDk3NDBCNjU1QzRGOUFFMDIvMDI4MzM1Q0FD M0JDMTFFRUI2REUxODVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnURwwDwQCAAIwCQMHACABDfHpQDANBgkqhkiG9w0BAQsF AAOCAQEAmZsPfscudJ4l8XIHyuoOh5A2CR05QAT/AZYHnlVv/OXK5Pryv2lBkUCz Cr4OgUhy0MY+nV626Sv9zCHpAo0Xzc3xgAoX/A4fH0UkHtDLRz8BwXdMTIq+LY0L fLiHD+KpiBBdMpjM8XWJG6oUxcV5YjCaIHsDYhsek/JR8IctVDcJOinz8D/wRpmc 1KaR5Ceu6adqcbCI4xi4jIovTCCmG2BfwKk0SwE3qSVxskU5yihUlspW3Xm9ESvS 6lpYFmG/E2eruqAzrGeJ83wVBfFq/nW8Lb6ND8moL5EEyh6sgL6rFhpTaEEjMKdd 1wtwSC97r+ewuoxDW/h33GcFobSwpw== -----END CERTIFICATE-----Generated at Sat Jun 1 08:15:56 2024 by rpki-client on console-ams.rpki-client.org