$ rpki-client -vvf rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa File: 28D209A6A95211EE9BFC9A6DC4F9AE02.roa (raw, json) Hash identifier: ZWyzhiQOteLpaOTi3gJd1ySklfpqKa0sAokhE6qwQiw= Subject key identifier: FA:AE:B1:AC:13:21:69:A2:21:6B:2D:12:29:D2:8D:8E:48:A4:B9:5D Certificate issuer: /CN=A9140C62/serialNumber=48B1E8E3F2BC5429F8C679955D64D2249445E365 Certificate serial: 9A Authority key identifier: 48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa Signing time: Tue 02 Jan 2024 09:34:43 +0000 ROA not before: Tue 02 Jan 2024 09:34:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140683 IP address blocks: 103.209.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140C62/serialNumber=48B1E8E3F2BC5429F8C679955D64D2249445E365 Validity Not Before: Jan 2 09:34:43 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6593d8b3-2b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:77:8c:1a:4f:53:76:02:49:d1:b3:e8:bd:43: 12:2a:9d:eb:c9:70:2d:16:24:89:76:f4:33:9c:9e: f9:92:ec:b6:cf:3f:fb:1e:11:eb:c2:e0:f0:10:60: 20:60:2a:b5:ed:c6:8a:47:5f:d4:8f:9a:98:88:d4: 30:a8:05:98:de:0a:12:77:c7:7f:e5:b3:36:45:1f: 65:cb:00:95:a1:47:71:45:08:5e:f8:63:bc:80:6c: a6:6f:30:c5:09:d2:96:ba:6a:e4:3a:0b:20:ab:24: 04:13:43:3d:b3:3d:9a:09:e5:b7:18:81:42:53:2f: 5e:dc:ff:1c:a3:66:d8:f4:eb:21:5c:ae:6b:a5:71: db:67:a1:de:56:d1:71:30:59:02:bb:df:c1:bd:84: 1d:87:20:1a:0e:37:74:65:b9:1d:60:35:23:7f:de: d9:b8:83:74:d3:c3:f0:1a:da:d6:74:87:08:82:db: d1:c8:36:76:eb:94:9e:52:6a:43:34:3e:ba:d5:f4: 19:d5:58:ae:9a:b3:1d:8d:62:28:3a:6c:47:a7:a1: eb:d9:8c:be:73:69:b9:34:7a:78:fb:10:51:c0:92: 2f:e4:2a:1e:00:0d:b7:68:db:68:c6:c9:d1:5f:78: e7:f3:6d:24:16:bc:8a:1e:49:8d:1f:a6:bf:65:ea: 1c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AE:B1:AC:13:21:69:A2:21:6B:2D:12:29:D2:8D:8E:48:A4:B9:5D X509v3 Authority Key Identifier: keyid:48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.129.0/24 Signature Algorithm: sha256WithRSAEncryption 24:8a:e5:4f:50:8c:f5:15:fb:2f:30:ec:6d:e6:26:98:52:f2: 5b:3c:b2:7b:a1:54:ab:0d:f2:27:9c:24:7f:bc:43:c4:a8:83: 31:5c:13:b3:e0:39:e8:42:f9:10:bb:c0:be:a2:56:eb:6d:62: e7:14:60:f6:5b:4f:03:c1:a0:1d:bc:61:eb:46:48:a4:72:74: a8:f5:ed:fe:82:ac:5d:55:3e:03:87:84:bb:ed:b9:b8:74:7e: 11:5e:5f:b0:20:a3:3b:b4:27:af:58:39:73:0c:7c:f6:01:48: ba:66:aa:95:79:94:4a:7a:3c:92:cf:5f:e5:a2:42:41:13:3d: 6d:35:42:a9:d6:d6:bc:1d:70:b7:ee:1b:ac:eb:b1:45:21:42: 1d:82:cb:71:6e:4d:df:40:28:73:0f:e3:f7:2c:67:31:f7:f7: 70:5a:52:56:dd:82:6c:03:46:ba:13:ae:fa:d2:66:1b:7e:bb: b6:5b:57:d0:2c:2d:a8:58:70:03:d7:9d:3f:7f:33:d1:59:68: 78:ee:55:eb:36:b8:43:82:06:14:a2:2f:3d:40:79:1f:12:d0: 54:68:d4:86:fa:19:ee:9b:27:c5:3c:33:e0:45:23:aa:29:27: 1a:de:f4:80:31:d4:92:49:a0:0b:d7:ec:fb:68:0e:73:ec:4a: 91:8a:e2:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBDNjIxMTAvBgNVBAUTKDQ4QjFFOEUzRjJCQzU0MjlGOEM2Nzk5NTVENjREMjI0 OTQ0NUUzNjUwHhcNMjQwMTAyMDkzNDQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkzZDhiMy0yYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApneMGk9TdgJJ0bPovUMSKp3ryXAtFiSJdvQznJ75kuy2zz/7HhHrwuDwEGAg YCq17caKR1/Uj5qYiNQwqAWY3goSd8d/5bM2RR9lywCVoUdxRQhe+GO8gGymbzDF CdKWumrkOgsgqyQEE0M9sz2aCeW3GIFCUy9e3P8co2bY9OshXK5rpXHbZ6HeVtFx MFkCu9/BvYQdhyAaDjd0ZbkdYDUjf97ZuIN008PwGtrWdIcIgtvRyDZ265SeUmpD ND661fQZ1ViumrMdjWIoOmxHp6Hr2Yy+c2m5NHp4+xBRwJIv5CoeAA23aNtoxsnR X3jn820kFryKHkmNH6a/Zeoc8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPqusawT IWmiIWstEinSjY5IpLldMB8GA1UdIwQYMBaAFEix6OPyvFQp+MZ5lV1k0iSUReNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEM2Mi82NDgyQzM3MEQ0 MkIxMUVEODQ3QTE5MzhDNEY5QUUwMi9TTEhvNF9LOFZDbjR4bm1WWFdUU0pKUkY0 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NMSG80X0s4VkNuNHhubVZYV1RTSkpSRjQyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBDNjIvNjQ4MkMzNzBENDJCMTFFRDg0N0ExOTM4QzRGOUFFMDIvMjhEMjA5QTZB OTUyMTFFRTlCRkM5QTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0YEwDQYJKoZIhvcNAQELBQADggEBACSK5U9QjPUV+y8w 7G3mJphS8ls8snuhVKsN8iecJH+8Q8SogzFcE7PgOehC+RC7wL6iVuttYucUYPZb TwPBoB28YetGSKRydKj17f6CrF1VPgOHhLvtubh0fhFeX7Agozu0J69YOXMMfPYB SLpmqpV5lEp6PJLPX+WiQkETPW01QqnW1rwdcLfuG6zrsUUhQh2Cy3FuTd9AKHMP 4/csZzH393BaUlbdgmwDRroTrvrSZht+u7ZbV9AsLahYcAPXnT9/M9FZaHjuVes2 uEOCBhSiLz1AeR8S0FRo1Ib6Ge6bJ8U8M+BFI6opJxre9IAx1JJJoAvX7PtoDnPs SpGK4pE= -----END CERTIFICATE-----Generated at Fri May 17 06:46:22 2024 by rpki-client on console-ams.rpki-client.org