$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/6458CE6420F711EC896F8D43C4F9AE02.roa File: 6458CE6420F711EC896F8D43C4F9AE02.roa (raw, json) Hash identifier: zo/+qmy2jk+AEg81LNIAMqSUawhw2XH+KNnnn5Sp1YU= Subject key identifier: 9F:E6:B9:B9:E0:E7:0F:2C:A9:D4:E5:77:93:C7:88:9B:DD:16:28:33 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 03CE Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/6458CE6420F711EC896F8D43C4F9AE02.roa Signing time: Sun 07 Jan 2024 01:43:50 +0000 ROA not before: Sun 07 Jan 2024 01:43:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132819 IP address blocks: 103.28.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Jan 7 01:43:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659a01d5-e26e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ee:64:a3:ac:1c:0b:64:5d:ad:94:2e:7f:ef: 24:9f:cc:e4:f1:c2:9c:5e:30:77:ab:fb:b9:24:4d: e8:df:b7:ad:d5:73:16:07:16:4c:be:8f:b7:56:ba: cf:74:16:f0:06:87:29:ad:c5:a6:d1:d0:9b:ab:5c: bb:13:20:ca:3c:4e:6a:01:f7:17:7b:79:71:1c:ef: fc:0d:b0:61:02:b4:b8:e0:56:d3:70:55:7d:d0:9b: ef:95:42:52:a5:9f:48:58:49:e5:86:d4:31:93:41: 9d:3b:6a:73:ff:fd:d9:c3:fa:6b:c8:db:62:a6:d1: 8a:8e:e9:65:1d:f5:72:d3:7e:c6:8d:c2:17:91:9b: 24:64:b4:b2:43:6b:68:85:e6:6b:a4:a3:f5:6b:2c: 78:32:b5:a7:ab:e5:46:f5:f2:07:cb:05:08:6f:2d: 4c:33:22:87:93:7f:77:29:9c:fd:7c:dd:64:65:49: 64:ed:98:cf:fb:36:8b:0a:bb:5e:21:2f:0d:81:e6: e2:ec:7e:4e:a5:b9:33:f4:90:96:dd:47:32:2b:2a: f0:13:23:53:1c:f0:9f:22:f3:3c:08:5f:0c:31:82: 9a:47:3c:da:be:2c:2f:88:15:36:69:60:3f:cd:9b: fe:c7:38:35:c8:48:c4:2b:bc:9a:9b:9f:05:49:39: 84:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E6:B9:B9:E0:E7:0F:2C:A9:D4:E5:77:93:C7:88:9B:DD:16:28:33 X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/6458CE6420F711EC896F8D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.201.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:6e:27:0d:c3:76:67:72:d2:d5:77:ac:d0:6e:56:47:b8:27: 27:ca:f3:14:2e:d6:21:a1:94:91:e2:ee:81:59:95:61:69:0d: 2c:43:ee:c8:51:46:34:72:45:65:d8:02:5f:8c:c0:a5:72:d4: 79:0f:50:f2:60:74:9a:73:a3:79:67:63:20:a0:34:04:a9:ae: db:d4:69:29:79:16:b2:a5:02:c7:7d:58:de:17:93:cb:29:5f: 2f:90:42:cf:a1:09:10:5e:99:4c:7c:ac:44:3e:94:e6:3d:9f: d1:da:81:55:30:3d:77:04:a4:86:8b:ba:28:ff:d1:a4:9c:cf: 8d:ff:a5:2c:ba:ab:22:72:fc:1e:60:a7:27:87:31:2b:11:df: 93:9e:54:af:1b:9e:c6:77:de:8a:5f:b0:04:32:5a:10:03:16: 58:c2:78:e9:75:9a:ad:6b:f2:47:e0:02:34:6c:4c:eb:13:5a: 98:32:7f:37:09:09:f1:b9:02:44:cb:47:3d:13:bf:bd:ca:74: 42:87:c1:a2:88:44:c9:e8:58:4e:0b:33:8b:3c:cc:65:f0:28: 99:50:62:0a:07:08:c4:8b:04:eb:b2:aa:ff:3f:7f:ff:e4:ff: 60:ca:09:72:00:66:a1:2e:fd:b6:e3:8e:ae:56:6c:da:ff:19: 21:66:99:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjQwMTA3MDE0MzUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlhMDFkNS1lMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru5ko6wcC2RdrZQuf+8kn8zk8cKcXjB3q/u5JE3o37et1XMWBxZMvo+3VrrP dBbwBocprcWm0dCbq1y7EyDKPE5qAfcXe3lxHO/8DbBhArS44FbTcFV90JvvlUJS pZ9IWEnlhtQxk0GdO2pz//3Zw/pryNtiptGKjullHfVy037GjcIXkZskZLSyQ2to heZrpKP1ayx4MrWnq+VG9fIHywUIby1MMyKHk393KZz9fN1kZUlk7ZjP+zaLCrte IS8Ngebi7H5Opbkz9JCW3UcyKyrwEyNTHPCfIvM8CF8MMYKaRzzaviwviBU2aWA/ zZv+xzg1yEjEK7yam58FSTmEcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ/mubng 5w8sqdTld5PHiJvdFigzMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ0RjgvNjU0ODYxRDgyMEY1MTFFQ0E2NzVDNDQyQzRGOUFFMDIvNjQ1OENFNjQy MEY3MTFFQzg5NkY4RDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHMkwDQYJKoZIhvcNAQELBQADggEBAF9uJw3Ddmdy0tV3 rNBuVke4JyfK8xQu1iGhlJHi7oFZlWFpDSxD7shRRjRyRWXYAl+MwKVy1HkPUPJg dJpzo3lnYyCgNASprtvUaSl5FrKlAsd9WN4Xk8spXy+QQs+hCRBemUx8rEQ+lOY9 n9HagVUwPXcEpIaLuij/0aScz43/pSy6qyJy/B5gpyeHMSsR35OeVK8bnsZ33opf sAQyWhADFljCeOl1mq1r8kfgAjRsTOsTWpgyfzcJCfG5AkTLRz0Tv73KdEKHwaKI RMnoWE4LM4s8zGXwKJlQYgoHCMSLBOuyqv8/f//k/2DKCXIAZqEu/bbjjq5WbNr/ GSFmmfE= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:30 2024 by rpki-client on console-fra.rpki-client.org