$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa File: 27C8A978636311EEB35FEF77C4F9AE02.roa (raw, json) Hash identifier: zyAqIIfcpv83uWQ4jFZ2M2MaGysUl1nSjQWCiuVFbe4= Subject key identifier: 0A:94:DD:52:83:80:FC:C8:17:74:64:B5:16:78:0E:42:58:EF:22:80 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 37A9 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa Signing time: Thu 05 Oct 2023 09:42:09 +0000 ROA not before: Thu 05 Oct 2023 09:42:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151825 IP address blocks: 171.102.216.0/24 maxlen: 24 171.102.217.0/24 maxlen: 24 2001:fb0:10bb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14249 (0x37a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Oct 5 09:42:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=651e84f0-e97b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:87:90:45:d0:c9:6f:9b:d0:f3:6f:e0:cb:85: aa:10:32:46:a7:1c:7a:83:36:90:6c:ad:51:1a:cc: b6:a7:8a:fa:8b:1e:36:69:8e:67:2f:44:1a:76:d8: 27:65:fd:4d:56:43:33:7f:2e:98:1e:54:3d:e2:2c: d2:c5:f5:7e:35:3a:c6:55:90:c8:6c:b9:b4:72:19: a5:10:8f:2e:12:47:b1:c9:83:54:4f:1a:bb:dc:2f: 9d:91:6e:5e:83:bd:e8:fb:f9:cf:c7:f6:b4:d7:c2: 0c:c8:1e:b9:6d:1c:44:55:86:90:71:af:26:91:4e: 79:3e:fa:8f:17:ec:63:a0:7b:8c:80:41:24:3a:72: db:99:2c:47:c8:36:f7:98:c1:1f:21:dc:aa:8c:63: 28:a5:a7:73:7c:26:0d:76:de:85:60:ce:71:5c:28: b3:d6:59:e6:39:b1:3b:9c:1a:3b:80:83:60:1c:0f: b1:85:58:1c:d1:ad:82:c2:31:f1:1f:09:79:c6:44: 47:6e:c1:d5:2e:3b:65:81:e4:28:6d:45:81:43:6e: 12:77:bf:07:4a:df:08:aa:a0:7b:bc:04:36:8a:e5: 0d:3a:71:20:3b:20:42:ee:e4:8d:71:30:ec:80:99: b3:0a:81:f0:46:1c:b4:6e:6d:ab:9f:ae:18:1b:3f: 70:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:94:DD:52:83:80:FC:C8:17:74:64:B5:16:78:0E:42:58:EF:22:80 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.216.0/23 IPv6: 2001:fb0:10bb::/48 Signature Algorithm: sha256WithRSAEncryption 4c:cf:b9:28:b6:63:23:ce:7f:64:3b:c5:01:8a:d3:34:a9:b7: 86:24:ad:2b:d3:5e:e9:39:04:c3:0f:bf:ba:63:53:90:c3:c4: aa:57:ad:38:10:c1:01:92:46:10:53:8b:72:34:1d:a8:7c:98: 38:06:aa:e2:04:5c:49:24:33:35:64:71:2a:78:70:b0:cf:49: 97:19:ad:96:af:0e:f4:a9:b4:1b:ea:bf:53:89:5b:f5:35:2b: d8:9a:62:53:8f:66:e5:e3:56:42:a0:81:63:ce:17:b3:c7:83: 2c:33:16:55:fe:76:74:85:0f:6c:70:fb:dd:83:c9:59:65:03: 8b:f3:f3:56:8d:e7:74:45:5e:48:2b:49:30:50:64:95:a4:90: 3f:3e:3b:8f:9d:fc:46:3d:5c:93:fb:95:c1:24:e1:1e:e9:b6: 41:2c:2d:bf:9c:2a:5e:63:ef:65:90:1d:04:c0:c7:3b:eb:af: 69:7b:00:e1:a5:ed:45:8d:39:c2:fc:81:88:6d:76:55:66:bd: 52:b2:dc:94:44:20:59:26:99:f7:3c:56:e1:19:09:6f:3f:c3: 2b:4c:3f:15:2d:13:b2:63:be:fb:4f:9f:29:16:ba:20:42:04: a4:41:1e:a2:58:1a:55:0f:d0:4d:2f:5c:a1:cc:55:fe:57:a2: 11:77:fb:97 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICN6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjMxMDA1MDk0MjA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlODRmMC1lOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44eQRdDJb5vQ82/gy4WqEDJGpxx6gzaQbK1RGsy2p4r6ix42aY5nL0Qadtgn Zf1NVkMzfy6YHlQ94izSxfV+NTrGVZDIbLm0chmlEI8uEkexyYNUTxq73C+dkW5e g73o+/nPx/a018IMyB65bRxEVYaQca8mkU55PvqPF+xjoHuMgEEkOnLbmSxHyDb3 mMEfIdyqjGMopadzfCYNdt6FYM5xXCiz1lnmObE7nBo7gINgHA+xhVgc0a2CwjHx Hwl5xkRHbsHVLjtlgeQobUWBQ24Sd78HSt8IqqB7vAQ2iuUNOnEgOyBC7uSNcTDs gJmzCoHwRhy0bm2rn64YGz9wewIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAqU3VKD gPzIF3RktRZ4DkJY7yKAMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMjdDOEE5Nzg2 MzYzMTFFRUIzNUZFRjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAGrZtgwDwQCAAIwCQMHACABD7AQuzANBgkqhkiG9w0BAQsF AAOCAQEATM+5KLZjI85/ZDvFAYrTNKm3hiStK9Ne6TkEww+/umNTkMPEqletOBDB AZJGEFOLcjQdqHyYOAaq4gRcSSQzNWRxKnhwsM9Jlxmtlq8O9Km0G+q/U4lb9TUr 2JpiU49m5eNWQqCBY84Xs8eDLDMWVf52dIUPbHD73YPJWWUDi/PzVo3ndEVeSCtJ MFBklaSQPz47j538Rj1ck/uVwSThHum2QSwtv5wqXmPvZZAdBMDHO+uvaXsA4aXt RY05wvyBiG12VWa9UrLclEQgWSaZ9zxW4RkJbz/DK0w/FS0TsmO++0+fKRa6IEIE pEEeolgaVQ/QTS9cocxV/leiEXf7lw== -----END CERTIFICATE-----Generated at Fri May 31 15:08:08 2024 by rpki-client on console-fra.rpki-client.org