$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa File: D5248EE456BE11EAA979861EC4F9AE02.roa (raw, json) Hash identifier: GEUerLfa8AbS7w95wtfzPXRDAwXXkP8/j2LX+qI6QYw= Subject key identifier: D8:0B:BC:E6:95:86:5B:3D:5A:16:55:2E:04:07:5F:F3:4E:DD:73:F1 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 09D8 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa Signing time: Thu 28 Mar 2024 20:59:22 +0000 ROA not before: Thu 28 Mar 2024 20:59:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45475 IP address blocks: 103.85.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 20:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Mar 28 20:59:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605da2a-b601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:57:e6:b8:b9:85:75:67:cf:39:be:7c:e5:12: 6d:68:71:f9:98:74:47:2b:74:11:71:ab:4d:02:f6: 0f:4c:1f:b8:2f:9b:2d:c8:b8:98:ad:fd:15:6a:c4: 91:51:ab:b6:dc:d9:d1:c1:2a:e4:30:5c:ee:80:c8: 26:da:18:4b:02:a2:12:e4:bf:12:8e:1d:bc:91:80: ce:ef:4c:c4:cc:c8:a3:a6:47:57:95:d2:a1:72:62: 6b:30:0a:4e:c4:fa:b5:b6:56:ac:78:5b:81:99:d8: 6c:89:80:3a:ff:c2:b8:fd:5b:60:90:01:2a:54:09: 16:20:54:f3:6d:bd:b7:01:e9:a7:37:a4:20:dc:84: 12:8c:a4:c8:48:47:84:02:b6:92:ed:16:ff:97:35: d7:bd:e8:4a:e5:a1:7e:11:43:30:e7:b8:ce:07:8a: 2a:6e:ff:d4:f6:9d:87:2d:50:ee:ec:bf:6d:bf:e1: c0:bc:3d:0a:70:d0:25:e2:cf:ea:b7:a9:b9:17:5b: 2f:58:81:d0:6c:6d:03:5f:e9:49:34:0d:4d:74:65: 07:ef:1a:ce:96:d9:50:72:bc:61:5a:bb:24:04:0a: 43:b2:83:86:09:59:95:ee:dd:75:b1:88:56:6c:ca: 5b:c5:a9:1f:04:09:e2:66:61:83:f2:4e:88:79:67: d2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0B:BC:E6:95:86:5B:3D:5A:16:55:2E:04:07:5F:F3:4E:DD:73:F1 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.28.0/24 Signature Algorithm: sha256WithRSAEncryption 62:fe:44:e1:79:6a:e7:fa:46:51:aa:a3:43:17:ba:73:87:7b: 56:18:83:9f:12:dc:86:9e:d6:b4:29:84:d5:b1:66:b5:eb:f1: c8:55:7c:37:45:5a:4b:65:54:e3:d3:6c:bc:68:da:05:c5:de: 84:69:4b:9a:50:74:49:40:3f:cb:da:d5:67:ad:bc:98:51:48: a5:05:1f:37:4b:58:c9:e0:eb:51:3c:18:ec:21:0d:62:b7:30: c7:c0:7e:64:0e:e5:b2:2f:1d:13:68:7e:44:f5:02:50:7b:a8: 68:74:35:51:b9:e9:33:e9:d1:ab:c5:47:5a:7a:d2:fa:db:dc: ff:71:67:31:34:72:c1:d5:20:35:ed:69:f3:45:ec:b8:02:b9: d7:a9:c0:d4:69:fd:16:ec:12:84:ba:46:99:5b:a6:da:2e:51: ab:50:c8:79:40:fa:d7:bd:03:1f:c2:2f:1b:4e:a9:2f:f9:15: 77:cc:8c:bb:c6:6a:f6:d8:c8:77:94:84:27:5e:fe:e4:69:01: 1c:eb:34:68:0b:10:28:24:cc:e1:1b:cf:63:ce:5f:98:23:78: 30:16:a1:09:cd:a8:ae:91:0d:3e:b2:98:57:53:3e:d8:44:b5: c8:ea:fa:39:e4:18:08:0b:3f:ba:a1:ec:16:11:60:a6:28:36: 5d:eb:7f:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjQwMzI4MjA1OTIyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZGEyYS1iNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVfmuLmFdWfPOb585RJtaHH5mHRHK3QRcatNAvYPTB+4L5styLiYrf0VasSR Uau23NnRwSrkMFzugMgm2hhLAqIS5L8Sjh28kYDO70zEzMijpkdXldKhcmJrMApO xPq1tlaseFuBmdhsiYA6/8K4/VtgkAEqVAkWIFTzbb23AemnN6Qg3IQSjKTISEeE AraS7Rb/lzXXvehK5aF+EUMw57jOB4oqbv/U9p2HLVDu7L9tv+HAvD0KcNAl4s/q t6m5F1svWIHQbG0DX+lJNA1NdGUH7xrOltlQcrxhWrskBApDsoOGCVmV7t11sYhW bMpbxakfBAniZmGD8k6IeWfSgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNgLvOaV hls9WhZVLgQHX/NO3XPxMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzdCNjQvQUJGOTc5Njg1NkJEMTFFQUE1MDNENjFDQzRGOUFFMDIvRDUyNDhFRTQ1 NkJFMTFFQUE5Nzk4NjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVRwwDQYJKoZIhvcNAQELBQADggEBAGL+ROF5auf6RlGq o0MXunOHe1YYg58S3Iae1rQphNWxZrXr8chVfDdFWktlVOPTbLxo2gXF3oRpS5pQ dElAP8va1WetvJhRSKUFHzdLWMng61E8GOwhDWK3MMfAfmQO5bIvHRNofkT1AlB7 qGh0NVG56TPp0avFR1p60vrb3P9xZzE0csHVIDXtafNF7LgCudepwNRp/RbsEoS6 RplbptouUatQyHlA+te9Ax/CLxtOqS/5FXfMjLvGavbYyHeUhCde/uRpARzrNGgL ECgkzOEbz2POX5gjeDAWoQnNqK6RDT6ymFdTPthEtcjq+jnkGAgLP7qh7BYRYKYo Nl3rf4o= -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:01 2024 by rpki-client on console-fra.rpki-client.org