$ rpki-client -vvf rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa File: 28D36892B09411EAA964465EC4F9AE02.roa (raw, json) Hash identifier: UfAX/Fj0JrJleqfsMcMBvDOpsY+oWvOczsjEMDPs474= Subject key identifier: AF:0C:37:4C:38:E7:D1:C0:B2:B7:B9:C1:EC:61:A8:A8:C4:18:7D:A9 Certificate issuer: /CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Certificate serial: 088C Authority key identifier: 1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa Signing time: Tue 10 Dec 2024 20:49:15 +0000 ROA not before: Tue 10 Dec 2024 20:49:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137269 IP address blocks: 103.106.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C20AB Validity Not Before: Dec 10 20:49:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758a94a-64ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:6f:3b:c6:b9:83:4e:7a:d8:14:af:d1:f8:fe: 25:f6:4f:21:77:74:10:8d:b4:7a:35:8e:52:54:1c: 16:3b:76:ec:6d:54:89:48:4b:54:1f:6b:66:1d:0e: 8e:34:26:cb:93:67:6e:a8:79:18:3e:63:dd:66:e8: e7:df:e3:d6:6e:cf:f3:bd:1b:53:51:3a:6a:6e:3c: c8:ab:a3:d7:b6:9a:35:e1:82:4e:c3:fb:c3:84:4a: c8:bd:7e:09:85:48:04:f2:30:3c:56:81:91:2a:5b: 9f:d3:30:ce:95:56:d5:4f:ec:b4:f2:f5:05:bf:87: 5c:4f:58:65:98:0c:76:c7:a2:42:b9:cb:40:8f:2f: 34:e5:80:33:f5:95:d0:43:60:6b:b8:4b:83:a8:70: af:ce:71:14:a0:ff:11:35:fe:f3:11:14:85:44:3e: 29:81:73:50:af:41:65:fe:f5:bc:36:64:8e:8f:af: dc:f6:92:92:b9:98:35:cf:e2:51:26:2b:ec:c5:97: 77:a7:6b:9c:ee:89:e1:f9:03:d6:c2:64:54:04:21: e5:14:2f:36:be:2c:59:52:32:45:82:fa:81:27:57: b7:5d:b2:2f:18:e0:8b:f3:ce:bc:db:4a:76:91:cd: da:ca:06:b5:eb:43:47:de:13:4c:f3:86:09:96:0a: dd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0C:37:4C:38:E7:D1:C0:B2:B7:B9:C1:EC:61:A8:A8:C4:18:7D:A9 X509v3 Authority Key Identifier: keyid:1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.117.0/24 Signature Algorithm: sha256WithRSAEncryption 83:57:c9:03:98:1a:e0:f0:f0:c9:73:2a:0c:2d:d0:47:13:3d: 8a:58:17:cb:24:08:28:51:79:fe:ed:dd:55:ea:36:b3:20:dd: ed:c4:e5:7d:0e:bd:25:79:0c:ec:e8:52:f5:03:83:e8:b1:41: 88:28:71:63:67:1a:f4:e2:77:24:e5:bf:cd:cc:ee:39:7b:11: a3:a2:31:3f:7e:19:f3:18:6b:7b:c6:3a:c1:87:47:18:f4:c8: 1c:01:10:df:9e:17:c0:ce:d0:31:24:82:67:98:bb:1e:ee:68: 35:44:62:29:11:8e:09:8a:7f:fc:7c:2d:f1:08:04:c8:a0:80: cf:6c:b8:90:8e:e5:77:2c:95:e7:b4:0b:53:ad:c8:2d:ef:22: 0d:ae:9d:f0:de:91:03:58:c1:bc:53:a5:6b:d5:e1:b8:30:1f: 7a:b4:94:1d:67:a2:bd:87:a7:9f:82:af:3e:d4:ca:54:7f:76: 28:8d:88:69:0a:49:fe:6b:68:1d:96:63:c3:a0:7b:47:9a:69: df:d4:3b:0d:a1:06:aa:21:3a:d6:2e:83:c2:c1:fc:74:31:25: 8c:f0:cd:f4:79:d0:48:05:fa:83:6b:49:c8:f3:44:0f:21:a8: 0a:00:ab:a8:c9:da:19:c8:18:b4:6f:df:bc:88:87:e6:0c:68: d9:9b:77:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIwQUIxMTAvBgNVBAUTKDFCNTY2REVGNUY3OEUzMTlCRkMwRDE0MDBERTc1NUUy NjRBODJCQkMwHhcNMjQxMjEwMjA0OTE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YTk0YS02NGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9287xrmDTnrYFK/R+P4l9k8hd3QQjbR6NY5SVBwWO3bsbVSJSEtUH2tmHQ6O NCbLk2duqHkYPmPdZujn3+PWbs/zvRtTUTpqbjzIq6PXtpo14YJOw/vDhErIvX4J hUgE8jA8VoGRKluf0zDOlVbVT+y08vUFv4dcT1hlmAx2x6JCuctAjy805YAz9ZXQ Q2BruEuDqHCvznEUoP8RNf7zERSFRD4pgXNQr0Fl/vW8NmSOj6/c9pKSuZg1z+JR JivsxZd3p2uc7onh+QPWwmRUBCHlFC82vixZUjJFgvqBJ1e3XbIvGOCL886820p2 kc3ayga160NH3hNM84YJlgrd5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK8MN0w4 59HAsre5wexhqKjEGH2pMB8GA1UdIwQYMBaAFBtWbe9feOMZv8DRQA3nVeJkqCu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjBBQi82QkU1NTBCMEIw OTMxMUVBOEFGMzE3NUVDNEY5QUUwMi9HMVp0NzE5NDR4bV93TkZBRGVkVjRtU29L N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cxWnQ3MTk0NHhtX3dORkFEZWRWNG1Tb0s3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIwQUIvNkJFNTUwQjBCMDkzMTFFQThBRjMxNzVFQzRGOUFFMDIvMjhEMzY4OTJC MDk0MTFFQUE5NjQ0NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnanUwDQYJKoZIhvcNAQELBQADggEBAINXyQOYGuDw8Mlz Kgwt0EcTPYpYF8skCChRef7t3VXqNrMg3e3E5X0OvSV5DOzoUvUDg+ixQYgocWNn GvTidyTlv83M7jl7EaOiMT9+GfMYa3vGOsGHRxj0yBwBEN+eF8DO0DEkgmeYux7u aDVEYikRjgmKf/x8LfEIBMiggM9suJCO5Xcslee0C1OtyC3vIg2unfDekQNYwbxT pWvV4bgwH3q0lB1nor2Hp5+Crz7UylR/diiNiGkKSf5raB2WY8Oge0eaad/UOw2h BqohOtYug8LB/HQxJYzwzfR50EgF+oNrScjzRA8hqAoAq6jJ2hnIGLRv37yIh+YM aNmbdzk= -----END CERTIFICATE-----Generated at Sun Apr 6 01:47:00 2025 by rpki-client