$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa File: 28FA530EB3D411ECA9ECEB2DC4F9AE02.roa (raw, json) Hash identifier: +E7wMd47igAqBSqsF3EIIkrIo5ZarfIwD9x1vMBVZZA= Subject key identifier: 6C:C7:7A:28:5F:7C:30:83:60:92:25:28:9B:24:2A:B1:62:8A:5F:53 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 452F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:43 +0000 ROA not before: Thu 05 Sep 2024 03:31:43 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131357 IP address blocks: 103.7.177.0/24 maxlen: 24 103.115.166.0/24 maxlen: 24 103.213.122.0/23 maxlen: 24 2001:df6:3400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 03:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17711 (0x452f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:43 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9261f-b509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:71:d2:c2:70:89:3a:d2:9b:05:46:35:81: c2:b9:3f:b0:81:a9:64:a6:ef:2c:e8:11:df:7d:2c: 82:e2:1d:ac:82:9f:b1:4a:c5:bb:1d:5e:4d:ee:9e: 89:df:fa:c2:55:4a:ea:d7:73:e0:b0:5f:9f:63:78: 75:3c:cb:8f:36:60:3b:16:27:fa:a3:99:d1:49:d5: 57:4b:19:ca:9a:18:a7:99:67:bb:ad:76:b8:8f:31: 79:04:67:5d:d4:d8:fb:33:f2:31:d0:6a:9e:c5:fb: 53:c9:f9:86:e0:ec:34:ef:d0:36:de:e3:bb:82:32: 01:61:aa:8c:9c:36:ae:c0:85:af:f2:02:a7:36:f7: a6:d9:d5:8e:22:6b:1b:de:41:97:c6:e0:26:c5:e8: 3d:52:62:54:48:da:8f:83:11:b1:62:2a:39:03:5e: 7c:a5:73:00:75:f7:e9:a8:00:fc:65:22:42:e2:ab: 4c:96:ec:86:f5:19:e7:fc:9a:3f:fb:df:0d:36:2a: 37:17:78:b1:7e:7e:13:57:33:8f:bb:d4:cc:af:94: e3:cb:98:9e:15:75:39:39:67:0a:7f:47:e6:29:66: 61:df:1f:ae:b3:c3:71:cf:81:b1:1f:8c:01:50:99: cf:27:0e:f7:15:40:40:03:e6:bb:ae:a9:c4:b4:9c: 9f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C7:7A:28:5F:7C:30:83:60:92:25:28:9B:24:2A:B1:62:8A:5F:53 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.177.0/24 103.115.166.0/24 103.213.122.0/23 IPv6: 2001:df6:3400::/48 Signature Algorithm: sha256WithRSAEncryption 10:8b:67:2d:9e:15:92:82:44:6a:de:01:59:26:24:c9:fe:48: a3:84:9f:96:28:e0:65:08:64:93:46:d3:bb:fd:6c:5d:e5:62: 8f:cb:e0:2d:27:c9:97:57:1b:a4:2b:ec:b5:e4:0b:59:07:3b: 22:29:ea:10:d7:a3:1f:69:67:4b:5e:72:b1:94:1d:ad:58:b0: a2:27:af:33:8c:d2:9c:a8:6e:ae:f3:93:83:e7:ff:99:e6:ed: ad:7d:90:cc:27:98:42:93:5e:7b:c6:92:fc:b1:7d:74:4d:23: 54:57:82:db:2b:b1:e9:c6:0c:86:4e:0e:a8:f7:89:bb:c4:cb: 4e:4a:ac:9a:e5:1a:ab:2d:7a:d8:02:cf:32:05:bf:a1:cb:49: 78:e8:5c:cc:98:a7:6b:63:ec:b9:73:20:2d:0d:04:a3:22:df: 75:75:8e:38:88:a5:39:a7:a7:1b:e3:67:a7:a6:4b:79:99:98: 7e:8f:41:81:ea:f6:cd:64:03:d6:1d:84:a7:0f:5b:f6:3d:fa: a8:1c:26:28:e0:8c:9d:05:c6:47:e5:9f:f7:1e:e6:66:bc:68: b9:79:1b:2e:96:56:c9:31:ed:d4:17:80:4d:9e:ce:df:14:a5: 60:c8:6d:b6:17:c1:1a:24:1b:01:fc:4d:30:e0:31:b7:e8:32: 7b:69:64:27 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICRS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTQzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxZi1iNTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFRx0sJwiTrSmwVGNYHCuT+wgalkpu8s6BHffSyC4h2sgp+xSsW7HV5N7p6J 3/rCVUrq13PgsF+fY3h1PMuPNmA7Fif6o5nRSdVXSxnKmhinmWe7rXa4jzF5BGdd 1Nj7M/Ix0GqexftTyfmG4Ow079A23uO7gjIBYaqMnDauwIWv8gKnNvem2dWOImsb 3kGXxuAmxeg9UmJUSNqPgxGxYio5A158pXMAdffpqAD8ZSJC4qtMluyG9Rnn/Jo/ +98NNio3F3ixfn4TVzOPu9TMr5Tjy5ieFXU5OWcKf0fmKWZh3x+us8Nxz4GxH4wB UJnPJw73FUBAA+a7rqnEtJyfewIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFGzHeihf fDCDYJIlKJskKrFiil9TMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjhGQTUzMEVC M0Q0MTFFQ0E5RUNFQjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnB7EDBABnc6YDBAFn1XowDwQCAAIwCQMHACABDfY0ADAN BgkqhkiG9w0BAQsFAAOCAQEAEItnLZ4VkoJEat4BWSYkyf5Io4SflijgZQhkk0bT u/1sXeVij8vgLSfJl1cbpCvsteQLWQc7IinqENejH2lnS15ysZQdrViwoievM4zS nKhurvOTg+f/mebtrX2QzCeYQpNee8aS/LF9dE0jVFeC2yux6cYMhk4OqPeJu8TL TkqsmuUaqy162ALPMgW/octJeOhczJina2PsuXMgLQ0EoyLfdXWOOIilOaenG+Nn p6ZLeZmYfo9Bger2zWQD1h2Epw9b9j36qBwmKOCMnQXGR+Wf9x7mZrxouXkbLpZW yTHt1BeATZ7O3xSlYMhtthfBGiQbAfxNMOAxt+gye2lkJw== -----END CERTIFICATE-----Generated at Fri Nov 29 05:35:51 2024 by rpki-client on console-ams.rpki-client.org