$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa File: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (raw, json) Hash identifier: CzIfDi1evZoMUynT4uI9PBfLSN/5SoHurhEB1kJAMBA= Subject key identifier: F0:F1:2D:A3:DA:54:7B:0F:86:A9:7C:42:3F:C2:AD:8B:7C:96:2A:02 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0E55 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa Signing time: Tue 26 Sep 2023 18:15:51 +0000 ROA not before: Tue 26 Sep 2023 18:15:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138324 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3669 (0xe55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 26 18:15:51 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65131fd7-9882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:ad:5b:4a:95:a4:b2:b3:f1:f5:a1:39:25: a7:82:48:75:fc:54:3f:6c:d8:78:76:ed:6b:62:75: 22:36:a8:ce:36:8e:d1:3a:0a:2b:49:ec:bc:b9:71: f3:74:51:99:ce:92:eb:5c:cc:3d:ce:3c:f4:92:b6: eb:9d:f9:65:52:57:ef:17:a9:fd:1d:bf:ea:d8:20: c3:fd:96:ad:ca:a9:b3:59:05:ac:3f:71:9e:b3:e8: 38:b4:e9:9b:2f:70:11:b6:7d:84:11:f8:f8:7d:09: 95:88:58:5d:d3:c5:a2:cc:6b:44:4e:f2:66:d9:cb: 08:0f:0f:34:f9:e2:e5:58:bc:f8:59:41:35:40:36: 0c:b6:20:f3:42:09:ce:63:18:af:91:e2:96:cb:f0: e2:d4:81:e2:39:ed:9f:3a:55:47:ca:e9:a9:88:b5: e1:65:19:0f:fa:54:e0:4a:d6:d2:a2:07:35:62:6d: b2:d8:cf:9d:84:aa:cc:c4:2f:f7:77:97:e1:62:4b: 63:2f:42:71:dd:48:c8:35:3c:ee:aa:69:26:ea:1b: 9e:f2:ed:d0:00:fc:52:dc:01:81:de:18:2e:d2:36: 57:e4:dd:e3:4b:3c:26:2f:03:cd:d2:9e:40:c1:22: b8:49:bc:1a:67:ac:3a:93:93:48:39:5a:bf:7f:8e: 62:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F1:2D:A3:DA:54:7B:0F:86:A9:7C:42:3F:C2:AD:8B:7C:96:2A:02 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 61:2c:e0:ec:36:24:83:41:be:7f:c8:cb:7b:38:fa:aa:b2:c0: c2:8a:60:0c:d9:d7:70:fd:f9:45:1f:6b:34:f8:a0:2f:01:57: 62:44:54:88:72:04:69:1f:10:07:81:c2:ef:b0:0f:df:cf:e3: 42:87:a9:35:15:e4:fa:62:d4:f6:c4:64:98:8b:65:28:7d:0d: 33:66:ea:22:d7:31:9d:68:44:14:e4:c3:6b:18:c8:c7:43:9f: 1c:d9:fa:3f:9d:af:49:b8:e9:85:ca:44:1d:bb:a9:a0:e6:41: 3d:f4:91:5b:34:c0:77:de:11:37:75:4c:4e:6c:27:64:f8:88: 2f:3a:9a:14:9b:69:f9:a0:4b:7a:3d:fc:f3:79:b6:d1:66:50: f5:67:86:34:3f:b2:b0:38:96:83:d4:0c:41:e7:0a:7c:32:20: d6:08:05:40:ca:5f:a3:26:42:48:85:61:62:14:2d:8e:19:de: 89:0a:d9:f3:7a:3a:37:fb:9d:c0:48:33:53:de:66:dc:14:ed: 30:e1:10:01:d3:44:a0:9c:5b:fc:69:c2:10:3c:52:03:83:a6: 47:e3:20:90:7a:15:85:2c:e8:6b:ab:d3:e7:32:29:a7:ce:f0: 4b:b1:9e:0a:2a:48:33:3f:2a:15:5b:3d:e2:e9:54:e2:35:b0: e2:65:5c:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjMwOTI2MTgxNTUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzMWZkNy05ODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEutW0qVpLKz8fWhOSWngkh1/FQ/bNh4du1rYnUiNqjONo7ROgorSey8uXHz dFGZzpLrXMw9zjz0krbrnfllUlfvF6n9Hb/q2CDD/ZatyqmzWQWsP3Ges+g4tOmb L3ARtn2EEfj4fQmViFhd08WizGtETvJm2csIDw80+eLlWLz4WUE1QDYMtiDzQgnO YxivkeKWy/Di1IHiOe2fOlVHyumpiLXhZRkP+lTgStbSogc1Ym2y2M+dhKrMxC/3 d5fhYktjL0Jx3UjINTzuqmkm6hue8u3QAPxS3AGB3hgu0jZX5N3jSzwmLwPN0p5A wSK4SbwaZ6w6k5NIOVq/f45iJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPDxLaPa VHsPhql8Qj/CrYt8lioCMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMjhEQTQ0N0My ODlCMTFFQUExRUE5QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAGEs4Ow2 JINBvn/Iy3s4+qqywMKKYAzZ13D9+UUfazT4oC8BV2JEVIhyBGkfEAeBwu+wD9/P 40KHqTUV5Ppi1PbEZJiLZSh9DTNm6iLXMZ1oRBTkw2sYyMdDnxzZ+j+dr0m46YXK RB27qaDmQT30kVs0wHfeETd1TE5sJ2T4iC86mhSbafmgS3o9/PN5ttFmUPVnhjQ/ srA4loPUDEHnCnwyINYIBUDKX6MmQkiFYWIULY4Z3okK2fN6Ojf7ncBIM1PeZtwU 7TDhEAHTRKCcW/xpwhA8UgODpkfjIJB6FYUs6Gur0+cyKafO8EuxngoqSDM/KhVb PeLpVOI1sOJlXEA= -----END CERTIFICATE-----Generated at Wed May 22 20:09:01 2024 by rpki-client on console-ams.rpki-client.org