$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa File: EB00A028B61011EC98F3F920C4F9AE02.roa (raw, json) Hash identifier: aAvAiMdgcZ2vtVr76yf/YxQlXKzOL6h81KwmY9Tp8vs= Subject key identifier: 7F:02:F2:E3:78:25:E8:C0:D0:52:CD:0E:DF:87:CF:A0:1D:27:AE:17 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E3D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:40:43 +0000 ROA not before: Tue 12 Sep 2023 02:40:43 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131351 IP address blocks: 103.28.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15933 (0x3e3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:40:43 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfab-a443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f7:e6:32:d8:da:9a:d3:0a:e7:95:45:8b:2b: 4b:3f:85:aa:98:87:ad:02:ba:90:97:bd:45:9b:27: 1d:0a:b7:75:a1:f4:f4:85:5b:05:95:e1:90:07:54: e1:33:7f:74:d4:c8:27:12:33:59:43:6c:bb:2a:3c: 99:c3:8b:b3:4e:d3:25:47:38:c8:17:f1:40:28:32: 66:fb:c4:bc:f0:c3:ba:f4:08:a4:f3:09:48:26:df: c4:65:04:66:e7:6c:e1:4e:3d:a6:dc:9a:8e:b5:bd: 76:e7:50:75:3b:b7:f6:d7:97:b2:c7:24:20:2f:68: a4:1f:5e:be:f4:09:fe:1c:14:26:66:a2:73:83:b9: 5f:e8:f2:59:6b:74:0e:6b:65:7b:a4:cb:9d:51:c8: cc:3b:52:9d:d3:1e:cc:44:b4:37:86:cd:42:04:5b: 6e:db:e1:18:57:3f:bb:f1:4a:12:25:05:05:e9:04: b7:12:04:75:d8:a4:37:a9:90:ba:13:76:76:bc:76: 94:02:d0:9a:f8:01:90:41:c2:8a:48:61:18:cb:12: 26:0c:75:56:ab:6c:89:94:20:a2:cc:be:e3:06:6d: 74:09:8f:05:02:1b:f2:39:bc:f7:4a:2b:0c:72:8d: a4:19:87:5b:39:9f:99:ee:11:f3:9e:32:5d:4b:f6: 17:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:02:F2:E3:78:25:E8:C0:D0:52:CD:0E:DF:87:CF:A0:1D:27:AE:17 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.136.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:37:79:de:4f:52:35:bf:68:f3:9c:c9:5f:6f:0e:dc:31:d8: 65:f6:ba:f1:78:23:e7:7a:f2:5d:f5:cf:e7:79:a3:4a:0c:14: 7c:37:b8:27:5e:93:db:9a:72:95:2c:de:80:0c:c9:1d:a1:db: 43:a1:9e:ce:af:fb:71:79:5c:74:8a:c7:c1:8c:d0:a7:f3:07: 86:3d:f9:c0:1e:d7:67:7b:bc:ea:d5:ab:f7:b1:b0:55:ae:5a: 4f:36:43:a4:3f:bd:29:d6:1d:1d:7e:de:fc:6b:a4:95:f4:57: a6:61:04:53:c8:ad:e5:c4:1e:05:45:f3:d6:3b:0e:7c:64:58: 43:37:b6:27:ab:e0:b3:77:c1:fc:41:73:02:41:c4:86:c2:d1: 8f:29:9d:66:af:06:ec:97:ed:88:03:2f:47:e7:b0:cf:b5:31: 1d:65:5e:2e:3d:26:91:09:83:97:aa:19:c5:50:6b:21:e7:c2: c8:ef:43:f8:01:85:9c:fd:1a:3d:96:8e:6f:84:df:b1:1b:e6: 75:c2:19:fe:c9:0c:0b:a6:50:73:97:1d:f6:67:79:39:70:9e: 2d:0a:1d:a5:f2:d6:ec:1c:42:ad:2e:05:de:7c:9a:4c:67:3c: f0:b4:62:43:74:1d:b8:65:87:21:a1:b5:c1:2a:c6:cb:76:96: 62:1b:a1:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICPj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MDQzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZhYi1hNDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyffmMtjamtMK55VFiytLP4WqmIetArqQl71FmycdCrd1ofT0hVsFleGQB1Th M3901MgnEjNZQ2y7KjyZw4uzTtMlRzjIF/FAKDJm+8S88MO69Aik8wlIJt/EZQRm 52zhTj2m3JqOtb1251B1O7f215eyxyQgL2ikH16+9An+HBQmZqJzg7lf6PJZa3QO a2V7pMudUcjMO1Kd0x7MRLQ3hs1CBFtu2+EYVz+78UoSJQUF6QS3EgR12KQ3qZC6 E3Z2vHaUAtCa+AGQQcKKSGEYyxImDHVWq2yJlCCizL7jBm10CY8FAhvyObz3SisM co2kGYdbOZ+Z7hHznjJdS/YXFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8C8uN4 JejA0FLNDt+Hz6AdJ64XMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRUIwMEEwMjhC NjEwMTFFQzk4RjNGOTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHIgwDQYJKoZIhvcNAQELBQADggEBAHw3ed5PUjW/aPOc yV9vDtwx2GX2uvF4I+d68l31z+d5o0oMFHw3uCdek9uacpUs3oAMyR2h20Ohns6v +3F5XHSKx8GM0KfzB4Y9+cAe12d7vOrVq/exsFWuWk82Q6Q/vSnWHR1+3vxrpJX0 V6ZhBFPIreXEHgVF89Y7DnxkWEM3tier4LN3wfxBcwJBxIbC0Y8pnWavBuyX7YgD L0fnsM+1MR1lXi49JpEJg5eqGcVQayHnwsjvQ/gBhZz9Gj2Wjm+E37Eb5nXCGf7J DAumUHOXHfZneTlwni0KHaXy1uwcQq0uBd58mkxnPPC0YkN0HbhlhyGhtcEqxst2 lmIboVE= -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org