$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa File: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (raw, json) Hash identifier: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk= Subject key identifier: 71:EB:B1:1C:16:EA:FF:E2:64:22:A1:35:1F:E3:AF:AD:D7:B4:E2:1B Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0F16 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa Signing time: Mon 30 Sep 2024 17:55:49 +0000 ROA not before: Mon 30 Sep 2024 17:55:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138324 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3862 (0xf16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 30 17:55:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66fae624-a001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:b0:c5:0f:20:f5:f6:b9:c6:64:5a:d0:9d: 0b:71:29:4f:51:ac:33:29:d6:a8:06:4c:3d:ce:a9: 16:41:8a:a4:d0:69:6c:c5:2c:c1:69:4a:46:8d:d3: 3e:fa:00:61:86:f5:e7:07:a4:a6:44:61:13:8c:d1: aa:91:30:64:a6:ae:1d:c4:5e:84:1b:c5:dc:ef:62: fe:a8:92:28:f0:30:98:35:58:c1:6b:dc:3a:4c:58: 30:6a:30:7a:7a:3f:fc:32:b2:e4:b2:c3:b3:cd:15: f5:a0:2d:1f:a9:29:3e:46:b1:9c:69:7a:3f:ce:e1: fc:8e:06:f3:b4:01:29:9b:73:7a:0b:19:e8:e1:b5: 13:52:3d:58:98:b1:f3:3d:01:89:04:ed:d5:17:98: 19:d9:0e:b6:49:5e:91:d5:6d:3b:ad:4f:23:a8:d7: 8d:4e:04:15:fb:4b:ef:7a:c9:89:7a:95:78:1a:20: bf:58:33:8d:a6:52:e5:41:a5:c5:35:7d:eb:e9:47: a9:a4:b1:ad:00:bb:ae:5b:b8:6c:fc:56:11:23:73: 9c:93:f0:c7:94:96:b6:2f:80:93:76:53:99:d3:45: cf:10:80:3f:26:6d:7b:ce:eb:4b:f0:95:a5:4b:b3: 9c:f8:2e:bd:97:13:dd:67:17:d9:dd:41:4a:68:b5: 8b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EB:B1:1C:16:EA:FF:E2:64:22:A1:35:1F:E3:AF:AD:D7:B4:E2:1B X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 58:60:10:5d:23:47:01:75:87:d0:fb:0c:83:08:ea:1f:d0:e6: 3f:5e:4f:52:44:76:75:06:70:4d:ab:31:df:f8:8e:49:20:1d: b5:f3:e6:24:31:5c:c3:3d:3c:2b:5f:1c:c6:9d:44:bb:7c:6e: 44:be:17:5d:a2:32:91:83:ac:44:6b:3d:28:a7:b7:97:00:44: 2d:1b:05:c7:7b:91:0c:1d:44:5a:96:a8:cc:b7:38:4b:56:8d: 63:68:13:c4:88:39:13:01:6a:8d:91:ef:29:df:9d:81:11:00: b2:b5:8c:96:db:93:5b:6c:94:35:34:b7:25:8d:a8:01:be:e4: 27:da:4d:a4:86:35:d0:20:d8:4f:24:de:0f:d1:42:e3:34:4b: 4f:4b:53:dc:b0:90:b2:fd:7b:40:83:1a:24:2e:e2:7e:f8:90: 0a:ac:46:06:4c:8b:b8:aa:1f:aa:0d:ac:bb:af:18:e5:fd:bc: 8e:ff:77:a2:97:d4:26:59:1f:76:76:80:d5:91:7a:01:53:c7: ed:ee:e8:b9:bc:ee:87:fb:88:e8:96:fe:62:78:9f:48:c6:1b: 0c:c9:8e:23:c1:f1:1d:1a:79:fb:68:7d:be:ce:da:58:ce:dd: 3e:db:9a:8a:3e:43:11:ab:56:06:40:68:ea:08:63:31:7c:37: 46:7b:52:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjQwOTMwMTc1NTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZTYyNC1hMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7GwxQ8g9fa5xmRa0J0LcSlPUawzKdaoBkw9zqkWQYqk0GlsxSzBaUpGjdM+ +gBhhvXnB6SmRGETjNGqkTBkpq4dxF6EG8Xc72L+qJIo8DCYNVjBa9w6TFgwajB6 ej/8MrLkssOzzRX1oC0fqSk+RrGcaXo/zuH8jgbztAEpm3N6Cxno4bUTUj1YmLHz PQGJBO3VF5gZ2Q62SV6R1W07rU8jqNeNTgQV+0vvesmJepV4GiC/WDONplLlQaXF NX3r6UeppLGtALuuW7hs/FYRI3Ock/DHlJa2L4CTdlOZ00XPEIA/Jm17zutL8JWl S7Oc+C69lxPdZxfZ3UFKaLWLCwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHHrsRwW 6v/iZCKhNR/jr63XtOIbMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMjhEQTQ0N0My ODlCMTFFQUExRUE5QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAFhgEF0j RwF1h9D7DIMI6h/Q5j9eT1JEdnUGcE2rMd/4jkkgHbXz5iQxXMM9PCtfHMadRLt8 bkS+F12iMpGDrERrPSint5cARC0bBcd7kQwdRFqWqMy3OEtWjWNoE8SIORMBao2R 7ynfnYERALK1jJbbk1tslDU0tyWNqAG+5CfaTaSGNdAg2E8k3g/RQuM0S09LU9yw kLL9e0CDGiQu4n74kAqsRgZMi7iqH6oNrLuvGOX9vI7/d6KX1CZZH3Z2gNWRegFT x+3u6Lm87of7iOiW/mJ4n0jGGwzJjiPB8R0aeftofb7O2ljO3T7bmoo+QxGrVgZA aOoIYzF8N0Z7Uio= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org