$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa File: 8A5FC86AECB511EE8DC7B937C4F9AE02.roa (raw, json) Hash identifier: owuYl2f9BSGVA0/70enqvT/0aH6Gh7FL60SNuEqExK8= Subject key identifier: B8:EC:A9:BA:4A:14:29:3D:A2:6B:83:B3:DF:10:D6:FF:F9:22:FD:CE Certificate issuer: /CN=A91D4A3A/serialNumber=83E4BCB763B8CED0365190E7280F0A6A34B35B51 Certificate serial: 06 Authority key identifier: 83:E4:BC:B7:63:B8:CE:D0:36:51:90:E7:28:0F:0A:6A:34:B3:5B:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa Signing time: Thu 28 Mar 2024 03:46:24 +0000 ROA not before: Thu 28 Mar 2024 03:46:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152665 IP address blocks: 203.28.134.0/23 maxlen: 23 203.28.134.0/24 maxlen: 24 203.28.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.crl rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A3A/serialNumber=83E4BCB763B8CED0365190E7280F0A6A34B35B51 Validity Not Before: Mar 28 03:46:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6604e80f-0ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:f6:14:8e:73:b9:e4:52:ed:41:1e:3e:c7: f7:90:a9:72:50:d3:11:ba:64:16:61:59:90:35:3c: 3c:f7:ac:8c:98:c2:e6:3c:bb:ac:55:39:f8:fd:d0: 4f:30:e5:47:76:08:cb:f8:b4:0a:53:e9:c5:34:13: 1c:45:a4:c1:b7:9c:a8:81:8f:1d:e4:8d:7a:46:d5: 5a:4f:98:01:77:f9:12:fc:1f:f7:c9:9b:d3:fa:36: 2c:64:6f:f6:11:15:cf:8a:11:ee:e6:de:a7:ba:23: a2:a0:45:26:3a:6a:c9:23:c4:88:fe:cf:07:e7:fa: 0c:2d:7c:64:88:ca:ba:db:72:0d:01:06:b8:39:fa: 35:be:f1:81:58:b3:40:6e:f0:73:5e:e7:2a:ed:65: 94:81:42:0c:c8:61:54:b7:67:8b:71:07:3c:58:d9: f0:10:14:3f:3d:7a:b7:c4:38:f5:40:6d:dd:3f:bd: 66:25:b1:83:6d:00:21:bd:9c:44:b3:68:27:1a:0d: 59:c3:0d:31:0d:d1:7c:95:30:d5:2e:46:63:a7:7c: c7:48:8f:93:69:46:15:9c:b0:f3:f7:98:09:30:7c: 8f:42:63:4b:85:2a:c5:28:93:66:6f:32:7b:9a:0a: c8:29:9b:09:71:e7:7d:3c:e7:ad:47:f9:ff:79:ac: de:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EC:A9:BA:4A:14:29:3D:A2:6B:83:B3:DF:10:D6:FF:F9:22:FD:CE X509v3 Authority Key Identifier: keyid:83:E4:BC:B7:63:B8:CE:D0:36:51:90:E7:28:0F:0A:6A:34:B3:5B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.134.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ff:56:e7:d5:a9:9c:10:04:dd:6f:3e:ab:a8:ab:b1:93:1e: 1e:73:f3:bc:72:0c:b4:d6:42:d3:43:c3:06:86:19:8a:f8:a0: fe:58:1a:b4:5a:a3:47:9d:9f:a5:c6:97:e2:8b:4f:39:ff:e0: d9:23:b6:c2:64:38:69:13:16:8c:65:55:9c:ce:f8:0d:3b:34: cd:8f:a4:63:67:7a:28:b9:3f:d0:0f:07:96:98:2b:0b:f7:9c: 6f:7e:21:a6:42:e1:64:6d:6f:9e:9d:57:a1:c2:c2:5a:84:e9: b6:86:c1:41:9b:7d:8e:16:2c:2f:21:82:d8:6c:b3:28:65:a9: a6:72:61:58:ec:b0:8e:77:e2:42:8f:6a:0a:64:ff:b4:07:83: af:56:fa:51:64:84:d6:60:25:23:1e:0d:2c:63:66:bb:08:92: 41:16:e5:6a:40:6a:15:26:54:91:45:ef:25:cc:4d:78:8e:18: ad:02:ef:1c:68:d6:28:ed:cc:45:02:1a:7d:87:b1:fd:b3:86: b6:dd:58:0d:e7:dd:92:fc:01:85:e4:95:c3:73:ca:fa:84:e2: f6:db:09:04:07:66:fc:cc:51:91:46:72:01:1a:e5:d3:37:a5: d0:db:50:d0:f8:62:38:f1:2d:c9:64:8f:21:33:4c:2d:da:84: 62:f3:46:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEEzQTExMC8GA1UEBRMoODNFNEJDQjc2M0I4Q0VEMDM2NTE5MEU3MjgwRjBBNkEz NEIzNUI1MTAeFw0yNDAzMjgwMzQ2MjRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDRlODBmLTBhZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/uPYUjnO55FLtQR4+x/eQqXJQ0xG6ZBZhWZA1PDz3rIyYwuY8u6xVOfj90E8w 5Ud2CMv4tApT6cU0ExxFpMG3nKiBjx3kjXpG1VpPmAF3+RL8H/fJm9P6Nixkb/YR Fc+KEe7m3qe6I6KgRSY6askjxIj+zwfn+gwtfGSIyrrbcg0BBrg5+jW+8YFYs0Bu 8HNe5yrtZZSBQgzIYVS3Z4txBzxY2fAQFD89erfEOPVAbd0/vWYlsYNtACG9nESz aCcaDVnDDTEN0XyVMNUuRmOnfMdIj5NpRhWcsPP3mAkwfI9CY0uFKsUok2ZvMnua Csgpmwlx5308561H+f95rN7ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuOypukoU KT2ia4Oz3xDW//ki/c4wHwYDVR0jBBgwFoAUg+S8t2O4ztA2UZDnKA8KajSzW1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QTNBLzE4MTRGMzY2RUNC NTExRUVBNDY1MDMzN0M0RjlBRTAyL2ctUzh0Mk80enRBMlVaRG5LQThLYWpTelcx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZy1TOHQyTzR6dEEyVVpEbktBOEthalN6VzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEEzQS8xODE0RjM2NkVDQjUxMUVFQTQ2NTAzMzdDNEY5QUUwMi84QTVGQzg2QUVD QjUxMUVFOERDN0I5MzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcschjANBgkqhkiG9w0BAQsFAAOCAQEAYP9W59WpnBAE3W8+ q6irsZMeHnPzvHIMtNZC00PDBoYZivig/lgatFqjR52fpcaX4otPOf/g2SO2wmQ4 aRMWjGVVnM74DTs0zY+kY2d6KLk/0A8HlpgrC/ecb34hpkLhZG1vnp1XocLCWoTp tobBQZt9jhYsLyGC2GyzKGWppnJhWOywjnfiQo9qCmT/tAeDr1b6UWSE1mAlIx4N LGNmuwiSQRblakBqFSZUkUXvJcxNeI4YrQLvHGjWKO3MRQIafYex/bOGtt1YDefd kvwBheSVw3PK+oTi9tsJBAdm/MxRkUZyARrl0zel0NtQ0PhiOPEtyWSPITNMLdqE YvNGxQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org