$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa File: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (raw, json) Hash identifier: iDeeY7cczGJlVpoNqxYKwzcP0iNYTGCgB6+Xi39HWPg= Subject key identifier: 34:CA:A2:5A:CB:95:9E:96:00:0D:CE:BE:DE:12:38:4A:C4:2D:E8:B8 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: 01A4 Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa Signing time: Wed 11 Sep 2024 05:36:25 +0000 ROA not before: Wed 11 Sep 2024 05:36:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140499 IP address blocks: 103.57.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Sep 11 05:36:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e12c59-92df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d9:9f:fc:42:a4:f0:1f:dc:80:29:75:f6:b6: 68:df:9f:02:d7:63:9f:ef:7c:c7:54:61:c8:6d:b8: a4:4d:fc:f6:db:28:4f:75:53:11:4e:cf:9f:aa:3c: 16:16:eb:b3:00:a2:6b:2e:db:5d:48:bd:5b:e3:77: 10:1a:4e:94:a6:7b:35:62:66:57:21:94:1d:4b:ab: ca:0e:2b:b5:b4:72:f2:02:28:32:ba:c2:0b:c6:8b: d8:f8:56:86:eb:bf:b1:71:aa:40:22:64:e0:9d:b1: 15:dc:b9:c5:31:b2:c1:48:73:66:60:6d:f9:2a:c5: 43:c9:68:bf:d3:11:55:2f:30:9b:8b:ff:ce:c8:4d: c9:ff:17:42:57:f9:93:23:09:31:7e:12:fc:6f:43: c7:25:1e:8b:77:0a:04:ec:0c:cc:35:59:8a:53:b7: e6:27:14:a9:d0:18:14:48:cc:9b:f8:1e:5b:3c:ea: 75:03:c1:fc:3b:4a:55:2b:2d:db:62:e4:0f:96:b1: 49:f8:dd:29:d5:be:21:65:19:24:00:ab:d5:b0:71: 34:e7:82:4c:72:03:1a:3c:e4:3f:c0:fe:51:93:fb: 44:66:84:d6:69:cc:1b:9e:bb:5c:f7:58:e5:b8:e8: fb:5b:54:46:a7:3e:a1:e2:40:7d:78:2d:2e:49:18: a1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CA:A2:5A:CB:95:9E:96:00:0D:CE:BE:DE:12:38:4A:C4:2D:E8:B8 X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.225.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:26:c7:a3:55:da:1d:63:11:e6:f9:0f:95:db:a8:72:1b:85: 7b:04:bc:de:64:16:ff:00:2e:d5:97:48:a3:0a:f8:6f:af:e1: 77:54:55:60:06:7d:f3:b2:c7:c8:65:58:3d:31:36:57:8a:94: 7b:14:10:06:41:1e:4e:c5:ab:9e:bd:42:96:d8:c7:03:65:3f: 46:c4:bb:4f:e3:34:83:e3:36:d8:4e:77:11:e9:15:64:4f:72: 0a:fb:56:85:66:31:01:1b:17:33:2d:22:7e:08:00:03:57:c7: 5f:e8:c2:4a:3d:f1:8a:74:76:7a:ae:21:78:78:a6:30:5a:29: 22:08:db:2a:b1:5b:45:a7:f0:a2:72:6a:da:ba:11:9a:e7:2a: 9d:8f:28:56:f2:a4:cb:57:1c:61:ad:e4:c5:fa:42:1b:3a:0a: 76:90:c5:3b:ca:ee:22:04:ba:48:b4:32:97:be:3b:06:a5:cb: 0b:7c:cb:a2:ab:4a:6f:42:61:09:5c:4d:c5:5d:fd:b3:99:ff: a4:6c:5b:af:44:97:a9:66:c2:19:84:90:1f:00:df:33:16:ec: 2a:6d:f8:fe:d5:b4:87:e2:14:f0:28:8e:c1:55:a5:88:bc:92: 9c:b6:d8:be:0a:3d:c7:5c:ab:88:80:80:81:09:68:38:00:52: ef:c1:de:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjQwOTExMDUzNjI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxMmM1OS05MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNmf/EKk8B/cgCl19rZo358C12Of73zHVGHIbbikTfz22yhPdVMRTs+fqjwW FuuzAKJrLttdSL1b43cQGk6Upns1YmZXIZQdS6vKDiu1tHLyAigyusILxovY+FaG 67+xcapAImTgnbEV3LnFMbLBSHNmYG35KsVDyWi/0xFVLzCbi//OyE3J/xdCV/mT IwkxfhL8b0PHJR6LdwoE7AzMNVmKU7fmJxSp0BgUSMyb+B5bPOp1A8H8O0pVKy3b YuQPlrFJ+N0p1b4hZRkkAKvVsHE054JMcgMaPOQ/wP5Rk/tEZoTWacwbnrtc91jl uOj7W1RGpz6h4kB9eC0uSRihowIDAQABo4IClTCCApEwHQYDVR0OBBYEFDTKolrL lZ6WAA3Ovt4SOErELei4MB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RDAvQjg5RkEzQzYzMDMyMTFFRDlCREMwQTgzQzRGOUFFMDIvMjhCRDFFRkMz QjQzMTFFREFCNUU2MzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOeEwDQYJKoZIhvcNAQELBQADggEBAGsmx6NV2h1jEeb5 D5XbqHIbhXsEvN5kFv8ALtWXSKMK+G+v4XdUVWAGffOyx8hlWD0xNleKlHsUEAZB Hk7Fq569QpbYxwNlP0bEu0/jNIPjNthOdxHpFWRPcgr7VoVmMQEbFzMtIn4IAANX x1/owko98Yp0dnquIXh4pjBaKSII2yqxW0Wn8KJyatq6EZrnKp2PKFbypMtXHGGt 5MX6Qhs6CnaQxTvK7iIEuki0Mpe+Owalywt8y6KrSm9CYQlcTcVd/bOZ/6RsW69E l6lmwhmEkB8A3zMW7Cpt+P7VtIfiFPAojsFVpYi8kpy22L4KPcdcq4iAgIEJaDgA Uu/B3rs= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org