$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/28BAFA640E5111E988F3C34BC4F9AE02.roa File: 28BAFA640E5111E988F3C34BC4F9AE02.roa (raw, json) Hash identifier: PO+isBmVd5T4K+XI+nXtEthQ2J8h+1HW/SVK9OYEioY= Subject key identifier: EC:D6:0D:C7:08:83:4A:C9:78:B9:55:25:64:E8:ED:09:46:FB:56:DD Certificate issuer: /CN=A91F67BB/serialNumber=1BF5A8D94CE06CE301FC35D869F70D740D709752 Certificate serial: 1038 Authority key identifier: 1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/28BAFA640E5111E988F3C34BC4F9AE02.roa Signing time: Tue 28 Nov 2023 18:05:41 +0000 ROA not before: Tue 28 Nov 2023 18:05:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132047 IP address blocks: 103.11.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4152 (0x1038) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=1BF5A8D94CE06CE301FC35D869F70D740D709752 Validity Not Before: Nov 28 18:05:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65662bf5-7a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:33:62:b3:32:33:1c:6b:15:ca:e5:29:06:46: 17:6e:3e:58:a7:7e:25:c8:e7:05:88:84:4e:05:4b: 7d:4e:e8:65:0b:65:4e:19:93:6d:fc:14:42:c5:aa: 8f:dc:59:3e:ad:ba:e2:43:e5:b4:ab:c0:1c:08:a1: ec:f8:66:af:ea:93:d6:42:c6:4d:86:42:51:8a:e3: a1:11:4b:00:11:4e:8a:25:96:4d:08:e1:a1:c0:4e: 3c:0d:9d:c8:6a:59:88:df:8a:0e:49:b7:82:cc:bd: d9:ad:07:6a:a5:ec:a4:97:f9:27:60:7a:56:47:8c: 7b:c8:cd:c1:ee:68:ee:db:47:9c:df:93:32:2e:dd: 11:67:a2:07:9a:12:cc:0c:b7:7d:9f:61:9f:ce:96: f6:5f:b3:97:02:82:20:90:d7:70:0e:e0:30:68:b4: 6a:cf:c5:81:27:66:6b:96:13:18:7c:63:56:81:72: d5:db:b0:91:a4:5b:ad:cb:f4:f7:f3:7b:4b:53:47: a2:62:69:b2:c7:40:45:50:37:0b:8c:e9:43:22:c3: f4:b9:99:d6:c1:d3:72:5a:33:93:53:4a:c0:8e:e9: f5:83:75:23:9d:75:d1:10:a4:75:82:01:07:e1:22: 07:0f:59:cd:53:c0:14:db:09:4f:ed:a4:f9:df:e7: 97:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D6:0D:C7:08:83:4A:C9:78:B9:55:25:64:E8:ED:09:46:FB:56:DD X509v3 Authority Key Identifier: keyid:1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/28BAFA640E5111E988F3C34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.49.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:23:c5:46:8a:7a:34:2e:78:02:9a:f9:4f:ac:be:bf:d7:22: dd:ca:d0:23:36:c1:45:d5:05:1f:c6:62:13:e1:12:65:e9:c6: 4c:1a:5d:86:c9:be:e2:c6:03:28:c0:a4:f0:c3:2b:9a:b7:84: 19:84:56:22:e1:89:21:af:00:f3:fb:d5:fc:23:4f:3b:e0:4a: 0d:17:c0:8e:ae:b3:1c:fb:27:ae:f9:14:bd:37:66:39:24:67: db:36:b1:4f:83:65:31:b5:29:b5:16:e2:6b:10:a1:4e:3c:73: 17:3b:4e:a2:0e:3a:87:5d:08:30:2e:82:ac:7c:a6:87:55:29: 51:2b:7e:a5:d0:6f:f6:b3:dc:93:d5:48:cc:13:7b:58:d2:be: 08:a2:be:6e:47:34:5c:7e:40:dd:45:4b:9a:ee:7d:cf:08:9f: 95:2e:ed:f8:50:44:91:32:b3:1d:4b:47:d0:82:d1:92:1f:03: 7a:37:74:c3:5f:a3:ff:7f:b5:e3:22:3e:5b:88:88:da:6a:2a: e7:aa:23:2e:b7:2d:31:0b:5a:c3:91:11:8a:22:38:b4:db:c2: 16:b8:fb:73:99:27:26:d7:b3:a1:c7:7d:15:28:6d:91:dc:5b: 6b:b1:28:47:fd:4b:36:d6:48:37:ee:16:15:1c:c9:32:45:64: 02:f6:8c:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKDFCRjVBOEQ5NENFMDZDRTMwMUZDMzVEODY5RjcwRDc0 MEQ3MDk3NTIwHhcNMjMxMTI4MTgwNTQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmJmNS03YTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTNiszIzHGsVyuUpBkYXbj5Yp34lyOcFiIROBUt9TuhlC2VOGZNt/BRCxaqP 3Fk+rbriQ+W0q8AcCKHs+Gav6pPWQsZNhkJRiuOhEUsAEU6KJZZNCOGhwE48DZ3I almI34oOSbeCzL3ZrQdqpeykl/knYHpWR4x7yM3B7mju20ec35MyLt0RZ6IHmhLM DLd9n2Gfzpb2X7OXAoIgkNdwDuAwaLRqz8WBJ2ZrlhMYfGNWgXLV27CRpFuty/T3 83tLU0eiYmmyx0BFUDcLjOlDIsP0uZnWwdNyWjOTU0rAjun1g3UjnXXREKR1ggEH 4SIHD1nNU8AU2wlP7aT53+eXpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOzWDccI g0rJeLlVJWTo7QlG+1bdMB8GA1UdIwQYMBaAFBv1qNlM4GzjAfw12Gn3DXQNcJdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9DOURCODlFRTBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi9HX1dvMlV6Z2JPTUJfRFhZYWZjTmRBMXds MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dfV28yVXpnYk9NQl9EWFlhZmNOZEExd2wxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQzlEQjg5RUUwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvMjhCQUZBNjQw RTUxMTFFOTg4RjNDMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCzEwDQYJKoZIhvcNAQELBQADggEBAH4jxUaKejQueAKa +U+svr/XIt3K0CM2wUXVBR/GYhPhEmXpxkwaXYbJvuLGAyjApPDDK5q3hBmEViLh iSGvAPP71fwjTzvgSg0XwI6usxz7J675FL03ZjkkZ9s2sU+DZTG1KbUW4msQoU48 cxc7TqIOOoddCDAugqx8podVKVErfqXQb/az3JPVSMwTe1jSvgiivm5HNFx+QN1F S5rufc8In5Uu7fhQRJEysx1LR9CC0ZIfA3o3dMNfo/9/teMiPluIiNpqKueqIy63 LTELWsOREYoiOLTbwha4+3OZJybXs6HHfRUobZHcW2uxKEf9SzbWSDfuFhUcyTJF ZAL2jEM= -----END CERTIFICATE-----Generated at Fri May 31 19:47:54 2024 by rpki-client on console-fra.rpki-client.org