$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa File: 28543AA0BABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: jULCcckoGIuX4HbplqjfS3/Ak++6mwnpdyIZXSfv3VM= Subject key identifier: B7:87:BD:41:F3:88:D5:6B:FB:DE:B3:3D:60:F4:06:90:AD:0D:2D:68 Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 067A Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa Signing time: Thu 14 Mar 2024 23:12:45 +0000 ROA not before: Thu 14 Mar 2024 23:12:45 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 51318 IP address blocks: 103.68.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Validity Not Before: Mar 14 23:12:45 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3846d-b242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:f9:20:ab:f0:54:e5:d3:21:79:b8:4c:ec: 83:ac:4f:66:03:c2:03:40:3d:26:79:39:f4:fb:0c: 24:b6:2f:f4:8b:d3:ae:81:b6:15:7e:ec:de:25:21: 86:bf:67:34:7b:9c:b1:04:16:04:26:a8:71:0b:15: aa:d5:4a:33:59:9d:45:bc:d1:5a:7e:c4:09:b4:1a: d5:bd:cb:3f:b3:0f:5f:fe:60:89:d0:02:42:72:e6: f2:b6:6e:2e:14:5e:ff:00:6f:f9:c0:d4:86:b5:bd: 4b:7c:41:55:9a:76:4c:09:12:18:1b:0f:af:ce:67: ba:c1:a8:bd:25:84:7a:07:91:bf:3b:be:c1:c7:4a: 94:6d:fb:48:0d:c8:3c:c7:5c:22:12:b9:f7:72:ca: 37:ec:80:65:0f:ee:75:b4:33:e1:6d:b7:26:cd:9f: cd:a0:59:82:4f:8d:35:a8:df:e6:c6:ef:ba:aa:89: f6:39:45:fe:49:72:1f:36:4d:5f:b4:44:bf:fe:1a: 53:9e:3e:b3:d8:27:2c:e8:a3:10:d9:d6:59:a9:50: d7:9b:5c:7c:23:dc:63:ac:ea:ca:95:eb:61:9a:bd: 9a:b0:34:b8:73:21:51:2f:ca:2f:0f:60:0b:b1:70: 80:84:b2:84:64:af:b4:06:1a:19:1f:93:f4:c3:65: 06:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:87:BD:41:F3:88:D5:6B:FB:DE:B3:3D:60:F4:06:90:AD:0D:2D:68 X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.125.0/24 Signature Algorithm: sha256WithRSAEncryption 83:6e:24:6b:27:09:6a:9d:3b:53:aa:f8:7d:88:c9:af:fc:53: c0:ce:92:b5:38:b8:28:6f:bf:65:19:c2:13:e7:9e:cb:ff:99: a4:35:32:ee:50:fb:19:92:60:f0:85:98:ca:4f:03:b7:1b:db: cf:b2:f9:a9:1d:47:9b:a7:72:95:b9:5b:73:46:77:63:49:ad: 18:2c:67:2b:c4:1c:19:bd:7c:e8:b2:24:05:46:4f:8e:23:1a: ff:e6:75:60:8d:d1:50:1b:5c:8b:b1:2d:d6:19:55:5e:4a:20: 8f:c8:55:d9:ea:a4:b3:2a:69:1d:a0:73:8c:0c:42:c7:7d:9e: 79:1b:70:cc:98:30:c8:0a:31:28:16:f5:fd:37:d4:8b:7c:0e: 50:48:12:21:33:68:25:81:93:06:fa:59:61:5f:c3:f2:e8:73: 07:4f:b8:03:f7:17:15:d2:ce:cd:1b:01:fe:0b:f6:6e:0f:e9: 5f:99:55:5c:72:3e:23:cc:5a:b9:44:3f:d0:d2:54:27:60:43: 3d:64:67:4d:63:ff:cc:a7:3f:eb:5e:aa:3a:ec:5d:8e:4a:2c: c5:10:e9:40:10:1f:ea:fa:c2:55:43:36:84:ee:96:c9:02:12: 2d:4e:3a:d4:bc:4a:63:b3:71:5c:71:54:6c:a6:2a:e0:12:b9: 56:5b:c9:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjQwMzE0MjMxMjQ1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzODQ2ZC1iMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuH5IKvwVOXTIXm4TOyDrE9mA8IDQD0meTn0+wwkti/0i9OugbYVfuzeJSGG v2c0e5yxBBYEJqhxCxWq1UozWZ1FvNFafsQJtBrVvcs/sw9f/mCJ0AJCcubytm4u FF7/AG/5wNSGtb1LfEFVmnZMCRIYGw+vzme6wai9JYR6B5G/O77Bx0qUbftIDcg8 x1wiErn3cso37IBlD+51tDPhbbcmzZ/NoFmCT401qN/mxu+6qon2OUX+SXIfNk1f tES//hpTnj6z2Ccs6KMQ2dZZqVDXm1x8I9xjrOrKlethmr2asDS4cyFRL8ovD2AL sXCAhLKEZK+0BhoZH5P0w2UGZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLeHvUHz iNVr+96zPWD0BpCtDS1oMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQwQkYvMjdCN0EyODQyNEMwMTFFQkI2MkI0Mzg3QzRGOUFFMDIvMjg1NDNBQTBC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRH0wDQYJKoZIhvcNAQELBQADggEBAINuJGsnCWqdO1Oq +H2Iya/8U8DOkrU4uChvv2UZwhPnnsv/maQ1Mu5Q+xmSYPCFmMpPA7cb28+y+akd R5uncpW5W3NGd2NJrRgsZyvEHBm9fOiyJAVGT44jGv/mdWCN0VAbXIuxLdYZVV5K II/IVdnqpLMqaR2gc4wMQsd9nnkbcMyYMMgKMSgW9f031It8DlBIEiEzaCWBkwb6 WWFfw/LocwdPuAP3FxXSzs0bAf4L9m4P6V+ZVVxyPiPMWrlEP9DSVCdgQz1kZ01j /8ynP+teqjrsXY5KLMUQ6UAQH+r6wlVDNoTulskCEi1OOtS8SmOzcVxxVGymKuAS uVZbyVM= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:59 2024 by rpki-client on console-ams.rpki-client.org