$ rpki-client -vvf rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa File: 28D209A6A95211EE9BFC9A6DC4F9AE02.roa (raw, json) Hash identifier: ihIIzkLgwRBuaN6q+FldpOVtr7xd4B47IHJc+6l7s9c= Subject key identifier: 37:F7:BD:EA:82:AB:64:7D:0B:3F:D0:A4:68:9F:2A:C0:55:2A:0C:3A Certificate issuer: /CN=A9140C62/serialNumber=48B1E8E3F2BC5429F8C679955D64D2249445E365 Certificate serial: 011C Authority key identifier: 48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa Signing time: Tue 03 Sep 2024 05:18:13 +0000 ROA not before: Tue 03 Sep 2024 05:18:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140683 IP address blocks: 103.209.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140C62/serialNumber=48B1E8E3F2BC5429F8C679955D64D2249445E365 Validity Not Before: Sep 3 05:18:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d69c15-aceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:7c:d2:ae:ad:fd:9e:90:7b:28:ed:25:a3: 0d:1e:26:96:28:4f:54:2e:99:18:76:12:fc:14:09: 17:56:8a:81:7c:60:4f:4b:24:5c:b5:88:2a:09:4a: bc:77:e2:d2:d9:7d:4d:b4:28:30:03:31:7a:44:11: f8:b1:f2:c0:3a:71:43:d6:ce:4a:e3:c7:bc:66:96: e2:ec:a6:25:73:ed:8f:34:bd:f2:8f:cf:11:49:d2: b3:43:7d:a1:ef:1c:1c:69:a6:56:b2:ca:a5:99:d0: 3f:c6:58:17:e0:17:d9:07:e4:28:c5:b6:27:52:11: 10:0a:a7:a4:5c:77:3b:0f:79:49:21:33:99:ed:dc: 8a:01:83:4c:20:27:e9:ef:38:bc:e1:7f:ab:bd:e4: d4:9c:e0:ae:f9:0f:92:8e:95:3b:2c:98:61:b7:1d: 07:55:84:73:a6:66:4a:cb:11:5f:9f:8e:2a:32:38: 38:b3:5d:a7:be:50:b6:08:43:25:9a:8e:5d:ed:8f: f9:85:20:43:0a:d2:14:34:af:e1:83:47:75:53:1c: 86:56:bb:3a:ba:41:ff:9c:a4:f6:23:fb:34:07:f3: d3:96:b3:77:0e:e0:94:2d:ba:24:75:45:8b:c1:f1: c4:40:d4:51:a9:9f:50:1e:3e:77:73:d9:7f:08:56: 1a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F7:BD:EA:82:AB:64:7D:0B:3F:D0:A4:68:9F:2A:C0:55:2A:0C:3A X509v3 Authority Key Identifier: keyid:48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/28D209A6A95211EE9BFC9A6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.129.0/24 Signature Algorithm: sha256WithRSAEncryption 02:a4:8b:ae:ac:10:39:82:64:b2:04:ec:aa:96:4e:75:54:a0: 72:46:8b:0d:9e:99:19:b7:c8:49:4f:f2:52:eb:b7:de:7f:e0: 0d:e6:36:11:6d:61:d3:2a:b4:a8:ea:df:f8:e6:3b:b7:7c:16: 40:76:63:69:da:a3:6b:5d:32:f0:dc:89:69:95:55:49:c3:02: ae:39:3e:ea:c8:6f:5c:a9:56:77:fe:52:3e:eb:ee:40:3d:04: 47:80:5f:05:aa:07:bb:0d:68:fc:f3:2b:27:0b:55:da:65:7c: 74:0d:f5:fb:42:4c:25:bf:1e:14:85:6d:98:dc:5e:35:cd:9b: 66:ec:cf:d6:a7:04:5f:eb:b8:ed:9a:21:02:a7:d5:c1:03:fc: 81:1f:b5:29:72:f6:ec:ce:5f:3b:e9:d1:15:da:a4:c2:da:74: 76:dd:3a:e9:90:bc:dc:31:c9:16:f8:1c:b4:df:1a:fe:0d:bd: a1:56:2d:64:45:a9:e8:c1:e3:67:49:cb:e1:ce:39:9c:38:7c: 74:81:82:4b:ba:31:a3:4e:97:d4:bd:77:71:0f:10:bd:8c:a8: a2:4d:8b:0d:10:69:0a:a0:de:1d:9e:72:12:ba:d8:71:ce:18: 5b:b1:57:50:42:c5:59:ff:20:ed:e0:9f:ad:36:79:ee:9f:bb: a4:67:1f:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBDNjIxMTAvBgNVBAUTKDQ4QjFFOEUzRjJCQzU0MjlGOEM2Nzk5NTVENjREMjI0 OTQ0NUUzNjUwHhcNMjQwOTAzMDUxODEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2OWMxNS1hY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6B80q6t/Z6QeyjtJaMNHiaWKE9ULpkYdhL8FAkXVoqBfGBPSyRctYgqCUq8 d+LS2X1NtCgwAzF6RBH4sfLAOnFD1s5K48e8Zpbi7KYlc+2PNL3yj88RSdKzQ32h 7xwcaaZWssqlmdA/xlgX4BfZB+QoxbYnUhEQCqekXHc7D3lJITOZ7dyKAYNMICfp 7zi84X+rveTUnOCu+Q+SjpU7LJhhtx0HVYRzpmZKyxFfn44qMjg4s12nvlC2CEMl mo5d7Y/5hSBDCtIUNK/hg0d1UxyGVrs6ukH/nKT2I/s0B/PTlrN3DuCULbokdUWL wfHEQNRRqZ9QHj53c9l/CFYaNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDf3veqC q2R9Cz/QpGifKsBVKgw6MB8GA1UdIwQYMBaAFEix6OPyvFQp+MZ5lV1k0iSUReNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEM2Mi82NDgyQzM3MEQ0 MkIxMUVEODQ3QTE5MzhDNEY5QUUwMi9TTEhvNF9LOFZDbjR4bm1WWFdUU0pKUkY0 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NMSG80X0s4VkNuNHhubVZYV1RTSkpSRjQyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBDNjIvNjQ4MkMzNzBENDJCMTFFRDg0N0ExOTM4QzRGOUFFMDIvMjhEMjA5QTZB OTUyMTFFRTlCRkM5QTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0YEwDQYJKoZIhvcNAQELBQADggEBAAKki66sEDmCZLIE 7KqWTnVUoHJGiw2emRm3yElP8lLrt95/4A3mNhFtYdMqtKjq3/jmO7d8FkB2Y2na o2tdMvDciWmVVUnDAq45PurIb1ypVnf+Uj7r7kA9BEeAXwWqB7sNaPzzKycLVdpl fHQN9ftCTCW/HhSFbZjcXjXNm2bsz9anBF/ruO2aIQKn1cED/IEftSly9uzOXzvp 0RXapMLadHbdOumQvNwxyRb4HLTfGv4NvaFWLWRFqejB42dJy+HOOZw4fHSBgku6 MaNOl9S9d3EPEL2MqKJNiw0QaQqg3h2echK62HHOGFuxV1BCxVn/IO3gn602ee6f u6RnH10= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:30 2024 by rpki-client on console-fra.rpki-client.org