$ rpki-client -vvf rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa File: 28D28DD0F1B511EE83596382C4F9AE02.roa (raw, json) Hash identifier: 7qOaYOkc+cJibdAkW9Mq+aeVB2hFaZI/6GtBkIZWFMc= Subject key identifier: B0:62:34:A5:7E:61:7E:57:84:77:66:CD:05:DE:9F:A9:B8:8F:AF:47 Certificate issuer: /CN=A918BBEF/serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Certificate serial: 0556 Authority key identifier: 24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa Signing time: Wed 03 Apr 2024 12:24:47 +0000 ROA not before: Wed 03 Apr 2024 12:24:47 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 5065 IP address blocks: 103.97.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BBEF/serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Validity Not Before: Apr 3 12:24:47 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=660d4a8f-8123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:2e:9d:82:9e:7c:c2:a8:5d:3c:89:28:89: 4a:d5:c1:f9:b0:8f:b2:27:d3:96:2d:a7:5e:6b:f1: 73:96:55:06:58:a4:f6:68:83:43:e9:07:1f:00:cf: bc:f0:e3:bc:d6:73:25:7b:f6:d0:2c:4d:f6:de:26: 41:52:2f:b2:7e:ea:62:6e:47:81:78:85:db:41:7e: 53:e0:74:09:44:fc:7a:9d:b0:ef:c9:e3:66:c1:15: f9:f0:c2:dd:af:bf:55:14:19:28:c9:fe:26:10:da: 20:4f:68:a4:34:5f:a2:18:7e:7c:a9:4d:b4:60:77: fa:9a:92:ca:26:9a:7c:fe:f5:26:14:f5:4e:14:e5: 9a:b1:ff:2d:00:62:a0:81:12:9d:81:95:ad:52:ba: f7:41:90:0c:d4:ef:c8:67:af:89:be:7c:4c:9a:67: cd:20:b5:39:3a:1b:8f:d9:14:c0:dd:48:8b:9d:81: b3:f2:34:c3:e2:a4:f1:0f:c7:a5:00:4a:19:f2:a2: 47:73:c1:b0:49:c4:09:0b:5b:e5:31:5a:03:6a:94: 9b:85:cb:1f:34:ed:8a:78:b2:f9:bf:7c:19:fb:4f: 4a:5f:26:6d:44:46:53:00:73:8a:f8:64:ad:51:8c: 48:72:19:ae:5c:0e:84:88:0a:a2:86:f4:45:d6:2f: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:62:34:A5:7E:61:7E:57:84:77:66:CD:05:DE:9F:A9:B8:8F:AF:47 X509v3 Authority Key Identifier: keyid:24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.34.0/23 Signature Algorithm: sha256WithRSAEncryption 33:ae:42:42:65:3f:dc:0a:82:c2:fc:fa:b2:c9:6a:01:98:f2: f7:88:67:30:23:35:13:fb:2f:eb:22:02:b5:7a:b5:a1:1a:49: c2:53:f7:38:b4:ef:21:cc:cd:82:c5:fb:8c:e2:75:c1:95:9f: 02:61:42:c8:81:b4:5b:6d:a9:cd:75:a0:7a:0a:50:92:55:b7: 83:04:42:3b:84:59:03:19:05:76:b8:38:80:26:da:61:86:d4: bf:35:37:b1:98:f4:40:f5:a3:56:e1:6a:a2:bc:03:7b:f3:4d: 1c:90:c2:6d:ab:d9:39:e9:15:8b:ef:fe:a6:8d:ee:13:1b:97: 19:fa:04:50:ef:91:de:50:51:f4:92:9f:02:ed:2e:41:dd:6c: bb:73:c4:cb:da:30:70:6d:5b:d0:c3:58:7e:2d:18:fe:ae:8b: eb:01:6c:e5:06:6a:57:80:dd:ee:3d:a2:47:c5:ac:b2:63:69: de:9b:45:ae:5b:3d:17:5e:80:2a:09:17:2c:23:9c:f8:8e:3a: a0:70:3a:13:36:f5:32:05:21:6e:f6:25:32:4a:44:7a:cd:1c: 81:84:c4:51:25:7c:0d:aa:7e:53:f7:f7:2b:ce:08:e0:60:34: 12:7c:ed:84:f4:25:45:b2:aa:52:ce:f3:15:d1:6c:94:92:9a: e2:93:6b:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCRUYxMTAvBgNVBAUTKDI0MTI4NzY0MzBFMkFDRjRBMUE4M0U1QTU3NUM3Rjk3 QUIyQjNCMkUwHhcNMjQwNDAzMTIyNDQ3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkNGE4Zi04MTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEQunYKefMKoXTyJKIlK1cH5sI+yJ9OWLadea/FzllUGWKT2aIND6QcfAM+8 8OO81nMle/bQLE323iZBUi+yfupibkeBeIXbQX5T4HQJRPx6nbDvyeNmwRX58MLd r79VFBkoyf4mENogT2ikNF+iGH58qU20YHf6mpLKJpp8/vUmFPVOFOWasf8tAGKg gRKdgZWtUrr3QZAM1O/IZ6+JvnxMmmfNILU5OhuP2RTA3UiLnYGz8jTD4qTxD8el AEoZ8qJHc8GwScQJC1vlMVoDapSbhcsfNO2KeLL5v3wZ+09KXyZtREZTAHOK+GSt UYxIchmuXA6EiAqihvRF1i9ZsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBiNKV+ YX5XhHdmzQXen6m4j69HMB8GA1UdIwQYMBaAFCQSh2Qw4qz0oag+Wldcf5erKzsu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkJFRi9GNzkxQzM3RUEw NDIxMUVCODU2OTlFMjFDNEY5QUUwMi9KQktIWkREaXJQU2hxRDVhVjF4X2w2c3JP eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pCS0haRERpclBTaHFENWFWMXhfbDZzck95NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCRUYvRjc5MUMzN0VBMDQyMTFFQjg1Njk5RTIxQzRGOUFFMDIvMjhEMjhERDBG MUI1MTFFRTgzNTk2MzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYSIwDQYJKoZIhvcNAQELBQADggEBADOuQkJlP9wKgsL8 +rLJagGY8veIZzAjNRP7L+siArV6taEaScJT9zi07yHMzYLF+4zidcGVnwJhQsiB tFttqc11oHoKUJJVt4MEQjuEWQMZBXa4OIAm2mGG1L81N7GY9ED1o1bhaqK8A3vz TRyQwm2r2TnpFYvv/qaN7hMblxn6BFDvkd5QUfSSnwLtLkHdbLtzxMvaMHBtW9DD WH4tGP6ui+sBbOUGaleA3e49okfFrLJjad6bRa5bPRdegCoJFywjnPiOOqBwOhM2 9TIFIW72JTJKRHrNHIGExFElfA2qflP39yvOCOBgNBJ87YT0JUWyqlLO8xXRbJSS muKTa5U= -----END CERTIFICATE-----Generated at Sun May 5 02:13:03 2024 by rpki-client on console-ams.rpki-client.org