$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/8CFF3572708F11ED88DF8322C4F9AE02.roa File: 8CFF3572708F11ED88DF8322C4F9AE02.roa (raw, json) Hash identifier: 1bn4lFGYLSIZluLZ4YG3ap3tOazJY/9wc79bQ56kHrI= Subject key identifier: FD:4D:C2:93:67:58:2F:28:EA:89:0E:6C:6E:2B:35:20:90:3D:CC:BB Certificate issuer: /CN=A9148E7B/serialNumber=980227A5D775A034DA778D33F88C5CC020D1C39C Certificate serial: E1 Authority key identifier: 98:02:27:A5:D7:75:A0:34:DA:77:8D:33:F8:8C:5C:C0:20:D1:C3:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mAInpdd1oDTad40z-IxcwCDRw5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/8CFF3572708F11ED88DF8322C4F9AE02.roa Signing time: Sat 03 Feb 2024 04:56:15 +0000 ROA not before: Sat 03 Feb 2024 04:56:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132098 IP address blocks: 103.28.0.0/22 maxlen: 22 103.28.0.0/24 maxlen: 24 103.28.1.0/24 maxlen: 24 103.28.2.0/24 maxlen: 24 103.28.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/mAInpdd1oDTad40z-IxcwCDRw5w.crl rsync://rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/mAInpdd1oDTad40z-IxcwCDRw5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mAInpdd1oDTad40z-IxcwCDRw5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148E7B/serialNumber=980227A5D775A034DA778D33F88C5CC020D1C39C Validity Not Before: Feb 3 04:56:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bdc76f-879f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:58:96:4f:4b:a4:f2:e9:53:b1:9c:73:e1:f0: a4:df:3e:78:48:81:6f:63:6a:56:ef:49:8b:cb:bc: 54:0b:7b:b3:1e:11:3b:2d:79:09:36:c3:c6:ad:8a: 95:4d:ca:c0:b0:fc:dd:84:33:d7:eb:68:88:8a:31: 6a:b5:c9:f0:ca:a6:9f:12:65:47:0c:ac:be:29:b0: c0:e8:84:bc:91:31:89:25:8c:d9:86:76:be:91:2c: ce:02:8b:29:f2:c3:e2:f2:14:ef:06:15:48:36:16: 89:7b:d2:39:33:ff:a8:e9:3a:1d:f9:5b:b3:9f:58: a6:bc:6d:a0:76:75:7f:fd:57:ef:c0:f0:46:ba:63: dd:3e:4f:86:7f:4b:48:1c:6c:96:52:08:74:aa:b3: f3:65:15:e0:fc:ef:2a:b0:11:09:83:18:14:b1:27: 21:df:88:ce:63:46:e5:9f:01:1b:75:0c:39:29:2c: 8b:d5:3c:50:45:bd:34:50:31:d9:2b:5a:9e:c2:05: 80:08:a6:53:fd:5b:3a:2c:e1:f0:c3:03:a9:f2:f7: 00:94:39:99:c5:58:3c:68:e3:47:52:24:f0:8f:45: 11:8b:1c:45:4e:a0:89:a5:03:45:27:0b:49:11:4c: 8a:4b:18:f3:64:da:a7:7d:a9:ca:1d:f5:55:e4:94: 3e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4D:C2:93:67:58:2F:28:EA:89:0E:6C:6E:2B:35:20:90:3D:CC:BB X509v3 Authority Key Identifier: keyid:98:02:27:A5:D7:75:A0:34:DA:77:8D:33:F8:8C:5C:C0:20:D1:C3:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/mAInpdd1oDTad40z-IxcwCDRw5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mAInpdd1oDTad40z-IxcwCDRw5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E7B/478FA6D6708D11ED94E32D22C4F9AE02/8CFF3572708F11ED88DF8322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.0.0/22 Signature Algorithm: sha256WithRSAEncryption 12:b2:fa:7c:a7:c5:25:0c:85:97:31:22:76:2a:9d:2d:c6:a9: 5b:b7:5a:35:ad:89:ee:79:ec:16:3c:ae:92:b0:1d:a7:7b:cb: b7:4e:c3:be:b0:ab:6b:77:39:2b:1b:e4:11:81:20:9c:dd:50: a4:67:8e:eb:16:e6:ef:49:03:37:22:d6:67:ba:cd:b9:f4:15: ad:97:04:31:74:86:5b:0f:07:07:90:42:f6:02:41:84:99:d5: 9b:7b:8c:0e:f2:35:2e:d9:45:ba:47:1d:94:54:2c:9b:e0:b7: 79:1d:a3:48:42:85:93:1e:88:df:fe:fe:a0:74:59:2d:b3:dd: 49:3f:98:2b:89:4d:a9:5c:3f:cd:0e:6b:37:c1:ef:b4:8c:c9: 79:0c:19:35:f4:68:37:46:30:0f:85:1f:fc:ac:06:26:c7:ef: d2:d0:55:e7:13:73:40:61:2d:f9:f4:24:29:31:13:32:fd:62: 49:9d:1a:af:30:0d:89:8e:d0:97:90:f7:bb:ff:fe:39:63:9d: 22:d5:ae:97:23:ea:99:69:3a:62:1b:fb:2c:97:21:08:54:77: b5:07:0c:e2:2f:27:4f:41:8e:1e:ba:71:95:f7:a1:65:b0:d5: ec:a4:4f:d5:80:5b:35:1a:79:50:4d:c9:72:e1:bf:64:de:40: 37:74:44:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFN0IxMTAvBgNVBAUTKDk4MDIyN0E1RDc3NUEwMzREQTc3OEQzM0Y4OEM1Q0Mw MjBEMUMzOUMwHhcNMjQwMjAzMDQ1NjE1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkYzc2Zi04NzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ViWT0uk8ulTsZxz4fCk3z54SIFvY2pW70mLy7xUC3uzHhE7LXkJNsPGrYqV TcrAsPzdhDPX62iIijFqtcnwyqafEmVHDKy+KbDA6IS8kTGJJYzZhna+kSzOAosp 8sPi8hTvBhVINhaJe9I5M/+o6Tod+Vuzn1imvG2gdnV//VfvwPBGumPdPk+Gf0tI HGyWUgh0qrPzZRXg/O8qsBEJgxgUsSch34jOY0blnwEbdQw5KSyL1TxQRb00UDHZ K1qewgWACKZT/Vs6LOHwwwOp8vcAlDmZxVg8aONHUiTwj0URixxFTqCJpQNFJwtJ EUyKSxjzZNqnfanKHfVV5JQ+jwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP1NwpNn WC8o6okObG4rNSCQPcy7MB8GA1UdIwQYMBaAFJgCJ6XXdaA02neNM/iMXMAg0cOc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEU3Qi80NzhGQTZENjcw OEQxMUVEOTRFMzJEMjJDNEY5QUUwMi9tQUlucGRkMW9EVGFkNDB6LUl4Y3dDRFJ3 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21BSW5wZGQxb0RUYWQ0MHotSXhjd0NEUnc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhFN0IvNDc4RkE2RDY3MDhEMTFFRDk0RTMyRDIyQzRGOUFFMDIvOENGRjM1NzI3 MDhGMTFFRDg4REY4MzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHAAwDQYJKoZIhvcNAQELBQADggEBABKy+nynxSUMhZcx InYqnS3GqVu3WjWtie557BY8rpKwHad7y7dOw76wq2t3OSsb5BGBIJzdUKRnjusW 5u9JAzci1me6zbn0Fa2XBDF0hlsPBweQQvYCQYSZ1Zt7jA7yNS7ZRbpHHZRULJvg t3kdo0hChZMeiN/+/qB0WS2z3Uk/mCuJTalcP80OazfB77SMyXkMGTX0aDdGMA+F H/ysBibH79LQVecTc0BhLfn0JCkxEzL9YkmdGq8wDYmO0JeQ97v//jljnSLVrpcj 6plpOmIb+yyXIQhUd7UHDOIvJ09Bjh66cZX3oWWw1eykT9WAWzUaeVBNyXLhv2Te QDd0RAc= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org