$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa File: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (raw, json) Hash identifier: S6igu3T/VXkwMIXc4NzqmMmye3tFXnVeyNhVv8UYcJw= Subject key identifier: E7:C4:A3:AD:9A:AD:DF:2A:AA:AF:68:DA:8D:0F:0D:11:28:75:B0:51 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: DC Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa Signing time: Tue 29 Aug 2023 03:43:33 +0000 ROA not before: Tue 29 Aug 2023 03:43:33 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140499 IP address blocks: 103.57.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Aug 29 03:43:33 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed6964-0dff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:4d:3f:20:07:a5:57:51:b7:f4:c2:f0:44: 15:ff:44:72:49:00:da:80:92:74:a7:0d:de:91:1a: 9c:95:53:6a:c3:7e:a6:c2:53:cf:ef:c2:26:7f:0c: 67:71:ae:3e:15:89:44:a0:25:ae:6c:55:8f:15:53: b8:c8:0f:15:54:96:9b:55:12:2c:cb:6e:b9:4c:f6: f1:b2:a3:b3:55:fd:e8:cf:2d:2a:2a:ba:9f:ed:a2: 17:85:dc:83:cc:ed:0d:6c:bc:14:05:35:7a:1f:9d: 6f:dc:b9:b6:69:7c:2c:e9:0b:69:ea:84:a3:b7:3b: 21:f0:23:f1:17:90:f8:1d:d5:aa:de:50:d9:95:7d: a2:1d:c6:90:90:f7:2f:f8:e0:f0:5b:3a:8f:e8:85: 48:e6:b7:5f:43:6d:7c:70:54:47:c0:9b:63:9d:f2: 04:89:a8:30:dd:e5:0a:50:b8:70:ea:e6:56:83:69: c0:62:65:58:d9:2e:9a:c7:e5:17:cc:13:66:c7:07: 74:ee:d7:d9:f1:49:e8:e3:db:d0:be:bd:2d:aa:62: f6:c0:3e:35:07:1d:13:8b:ba:1f:33:0d:07:8b:27: 66:0e:93:3d:9a:bf:3c:4e:fb:fb:e6:0f:65:7b:3d: c5:9c:09:20:df:d8:fd:23:e5:f2:cb:d4:ca:18:f3: 2e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C4:A3:AD:9A:AD:DF:2A:AA:AF:68:DA:8D:0F:0D:11:28:75:B0:51 X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.225.0/24 Signature Algorithm: sha256WithRSAEncryption 84:9e:f5:98:e3:6d:7f:66:08:1f:b0:1a:62:30:90:65:7e:90: 02:e3:d1:21:21:bc:c7:e8:1c:82:37:1d:29:b6:18:a9:b5:a0: 31:ec:3d:02:2e:92:dd:d9:d6:99:25:e1:6c:3d:39:09:7c:1b: 47:63:b9:f1:43:8f:42:e9:52:78:9c:10:1d:ac:bc:56:e1:e8: ec:5f:7c:cd:66:3d:00:47:b2:97:14:62:be:5f:32:0e:c6:e7: 77:30:74:71:29:04:a4:18:2e:3f:aa:fc:83:f6:e1:46:0d:f5: 82:fc:ed:33:eb:84:d3:75:ff:10:58:f5:27:c6:30:3c:6b:e3: e1:97:ec:2c:4c:07:1f:76:db:1f:ee:36:74:4f:fe:6a:83:d1: fa:61:db:5f:11:71:08:7d:0f:74:9f:9d:d3:a5:1d:ff:97:57: f3:0a:9e:6f:53:08:e5:e7:cf:76:f7:4f:49:16:5e:70:5d:31: cc:12:f7:71:c3:de:72:ef:b2:4d:29:40:8e:9a:79:81:8f:cb: 48:80:f1:86:90:08:dc:b9:2a:72:a3:c9:db:0b:2a:1c:68:a6: 91:73:db:a4:9b:c1:f5:04:26:b5:f6:74:72:0f:12:21:e4:35: 28:57:e0:82:9d:4f:0c:95:04:2a:bc:f5:37:1c:2a:49:22:de: ca:93:ee:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjMwODI5MDM0MzMzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkNjk2NC0wZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUJNPyAHpVdRt/TC8EQV/0RySQDagJJ0pw3ekRqclVNqw36mwlPP78Imfwxn ca4+FYlEoCWubFWPFVO4yA8VVJabVRIsy265TPbxsqOzVf3ozy0qKrqf7aIXhdyD zO0NbLwUBTV6H51v3Lm2aXws6Qtp6oSjtzsh8CPxF5D4HdWq3lDZlX2iHcaQkPcv +ODwWzqP6IVI5rdfQ218cFRHwJtjnfIEiagw3eUKULhw6uZWg2nAYmVY2S6ax+UX zBNmxwd07tfZ8Uno49vQvr0tqmL2wD41Bx0Ti7ofMw0HiydmDpM9mr88Tvv75g9l ez3FnAkg39j9I+Xyy9TKGPMuowIDAQABo4IClTCCApEwHQYDVR0OBBYEFOfEo62a rd8qqq9o2o0PDREodbBRMB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RDAvQjg5RkEzQzYzMDMyMTFFRDlCREMwQTgzQzRGOUFFMDIvMjhCRDFFRkMz QjQzMTFFREFCNUU2MzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOeEwDQYJKoZIhvcNAQELBQADggEBAISe9ZjjbX9mCB+w GmIwkGV+kALj0SEhvMfoHII3HSm2GKm1oDHsPQIukt3Z1pkl4Ww9OQl8G0djufFD j0LpUnicEB2svFbh6OxffM1mPQBHspcUYr5fMg7G53cwdHEpBKQYLj+q/IP24UYN 9YL87TPrhNN1/xBY9SfGMDxr4+GX7CxMBx922x/uNnRP/mqD0fph218RcQh9D3Sf ndOlHf+XV/MKnm9TCOXnz3b3T0kWXnBdMcwS93HD3nLvsk0pQI6aeYGPy0iA8YaQ CNy5KnKjydsLKhxoppFz26SbwfUEJrX2dHIPEiHkNShX4IKdTwyVBCq89TccKkki 3sqT7h0= -----END CERTIFICATE-----Generated at Fri Jun 7 06:10:05 2024 by rpki-client on console-ams.rpki-client.org