$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/28C454FCB41211EF8D2EC946C4F9AE02.roa File: 28C454FCB41211EF8D2EC946C4F9AE02.roa (raw, json) Hash identifier: C0N61U0YEOhXRTQRllW2NuUOi6qXdqTI0gAe9H3eVh4= Subject key identifier: B4:CC:19:41:2E:FC:E0:CD:C4:8C:EF:DC:96:1A:51:FD:F8:8D:E5:24 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 02 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/28C454FCB41211EF8D2EC946C4F9AE02.roa Signing time: Fri 06 Dec 2024 20:39:16 +0000 ROA not before: Fri 06 Dec 2024 20:39:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140712 IP address blocks: 103.152.26.0/23 maxlen: 23 103.152.26.0/24 maxlen: 24 103.152.27.0/24 maxlen: 24 2001:df3:f280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Jan 2025 20:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: Dec 6 20:39:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=675360f4-83c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:6c:89:36:99:d8:d1:f4:99:f1:80:c8:76: 23:12:cd:43:ce:44:2c:69:2b:d6:b8:23:42:6e:ad: 81:14:40:88:7c:ef:64:af:7e:91:fb:81:68:69:1f: df:2c:14:55:5d:e9:f2:81:0e:47:30:d1:9d:35:ab: 2e:ab:9c:06:f1:89:7d:88:0c:9e:dc:2e:58:4f:21: f1:d4:bf:70:ec:1f:4a:6d:12:a0:bd:75:dc:d9:75: c3:db:62:de:fc:80:f4:06:92:bc:1f:74:9d:06:2b: a6:b2:4a:70:1b:f9:1b:7f:74:1d:ef:8b:6d:30:32: 4e:0d:fd:6a:41:d7:c1:c1:f0:21:79:fc:fc:39:db: a4:b6:11:e4:1e:2d:ec:f6:f8:4a:00:12:23:3f:6b: ad:2a:c8:74:37:f3:d1:3c:02:3b:ce:62:93:1d:5d: 51:9d:54:50:cc:57:38:bc:51:10:bf:d1:ea:39:6a: 24:11:5f:53:b1:e3:c3:7e:83:d1:c4:6a:b5:b4:70: 3e:37:3c:08:8e:23:1d:99:5d:6b:82:3d:a2:f1:31: 4d:12:8c:10:4b:86:c8:ec:9b:bb:e9:7c:7d:5a:c0: 25:fe:f3:3e:6a:b6:dd:5d:a0:d2:ec:a8:27:4c:27: b4:9b:35:24:b1:01:13:1e:97:b4:11:b0:b2:81:53: ec:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CC:19:41:2E:FC:E0:CD:C4:8C:EF:DC:96:1A:51:FD:F8:8D:E5:24 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/28C454FCB41211EF8D2EC946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.26.0/23 IPv6: 2001:df3:f280::/48 Signature Algorithm: sha256WithRSAEncryption b6:1e:97:d7:ad:2c:d8:64:82:dd:e0:a9:2e:1f:e3:03:40:b7: 6f:ba:9d:46:c3:1a:b1:07:cc:56:8d:5e:c2:fb:ce:43:73:e7: df:f3:10:9e:9e:e2:67:f9:bd:71:19:97:b8:61:38:b2:a9:23: 4b:ed:79:d4:a5:02:e7:a9:4a:3b:53:d0:5d:0c:fa:13:62:83: 21:b2:b1:32:3d:48:d6:bc:8a:c2:60:32:79:28:b8:d2:df:a5: 93:7a:25:1d:8d:30:a8:23:16:91:e6:a2:37:85:11:70:cd:5c: 5b:19:50:1c:27:e7:20:21:5b:b3:53:e6:61:81:36:90:02:6c: e2:32:5e:65:de:65:ee:ea:13:a3:fe:8e:15:6c:33:e7:38:4d: 00:57:b7:e7:2d:e6:90:4e:b4:5a:7e:18:c6:df:be:3e:9f:0b: 29:71:69:90:f9:7c:dc:7d:cd:e4:11:1d:1e:88:52:89:d4:61: 9c:1a:5a:c9:cf:c5:1e:e4:b1:8e:0c:58:b8:17:65:ff:87:8b: ab:3c:c6:eb:74:8f:12:6a:aa:72:7a:f4:a5:9d:06:33:b9:00: f2:46:50:e4:a0:53:6c:4b:c7:41:7f:6a:d5:b2:35:f9:a4:bd: a9:2d:b5:b4:79:b0:a7:55:89:f1:bd:94:de:28:7d:04:f7:e1: 28:38:26:eb -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTdFNjExMC8GA1UEBRMoQkQzN0YxRDQwNzQ3QkU2QzVGNUM2QkEzMzA3REY2NTYw QUI2ODFBMzAeFw0yNDEyMDYyMDM5MTZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTM2MGY0LTgzYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF3GyJNpnY0fSZ8YDIdiMSzUPORCxpK9a4I0JurYEUQIh872SvfpH7gWhpH98s FFVd6fKBDkcw0Z01qy6rnAbxiX2IDJ7cLlhPIfHUv3DsH0ptEqC9ddzZdcPbYt78 gPQGkrwfdJ0GK6aySnAb+Rt/dB3vi20wMk4N/WpB18HB8CF5/Pw526S2EeQeLez2 +EoAEiM/a60qyHQ389E8AjvOYpMdXVGdVFDMVzi8URC/0eo5aiQRX1Ox48N+g9HE arW0cD43PAiOIx2ZXWuCPaLxMU0SjBBLhsjsm7vpfH1awCX+8z5qtt1doNLsqCdM J7SbNSSxARMel7QRsLKBU+x5AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUtMwZQS78 4M3EjO/clhpR/fiN5SQwHwYDVR0jBBgwFoAUvTfx1AdHvmxfXGujMH32Vgq2gaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxN0U2LzU1NzQwRTcwQjNC MzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlRmeDFBZEh2bXhmWEd1ak1IMzJWZ3EyZ2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTdFNi81NTc0MEU3MEIzQjMxMUVBQjE5OENFMERDNEY5QUUwMi8yOEM0NTRGQ0I0 MTIxMUVGOEQyRUM5NDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeYGjAPBAIAAjAJAwcAIAEN8/KAMA0GCSqGSIb3DQEBCwUA A4IBAQC2HpfXrSzYZILd4KkuH+MDQLdvup1GwxqxB8xWjV7C+85Dc+ff8xCenuJn +b1xGZe4YTiyqSNL7XnUpQLnqUo7U9BdDPoTYoMhsrEyPUjWvIrCYDJ5KLjS36WT eiUdjTCoIxaR5qI3hRFwzVxbGVAcJ+cgIVuzU+ZhgTaQAmziMl5l3mXu6hOj/o4V bDPnOE0AV7fnLeaQTrRafhjG374+nwspcWmQ+Xzcfc3kER0eiFKJ1GGcGlrJz8Ue 5LGODFi4F2X/h4urPMbrdI8SaqpyevSlnQYzuQDyRlDkoFNsS8dBf2rVsjX5pL2p LbW0ebCnVYnxvZTeKH0E9+EoOCbr -----END CERTIFICATE-----Generated at Thu Dec 26 22:30:57 2024 by rpki-client on console-fra.rpki-client.org