$ rpki-client -vvf rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/1A519CD615DD11EBAA7C4D52C4F9AE02.roa File: 1A519CD615DD11EBAA7C4D52C4F9AE02.roa (raw, json) Hash identifier: LvnN9fDKCVzFVLCsoE1cCwf8BQyVry4uoLmQQxu2nXs= Subject key identifier: 59:D8:BD:F5:74:2E:0E:24:4C:9C:1A:AC:59:10:A4:25:74:7E:59:20 Certificate issuer: /CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Certificate serial: 21F3 Authority key identifier: C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/1A519CD615DD11EBAA7C4D52C4F9AE02.roa Signing time: Sat 02 Dec 2023 16:23:05 +0000 ROA not before: Sat 02 Dec 2023 16:23:05 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 213122 IP address blocks: 103.27.76.0/24 maxlen: 24 103.27.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 16:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8691 (0x21f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Validity Not Before: Dec 2 16:23:05 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b59e9-c8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:8e:1c:c9:d4:e1:6a:5d:a1:55:e7:bc:5c: 25:2b:31:e3:d5:80:14:c4:14:7e:63:4a:26:6c:fb: 2f:61:48:68:57:fc:43:fd:c9:6e:22:3a:f3:6b:64: 7b:e6:d1:d3:f5:85:ec:93:9a:5a:8c:ba:e5:8f:d8: 4c:bf:44:9c:21:3c:43:81:df:96:07:f3:54:5d:cd: d8:54:7c:0c:07:7e:f6:c0:4a:43:13:98:71:7a:37: 61:04:04:9c:a9:3a:94:4c:48:ad:f5:b6:2b:d8:17: e7:bd:75:6b:1c:c8:d1:35:da:ec:56:16:a8:a5:b2: 03:fd:bd:03:6f:bf:8f:87:1c:c6:4d:48:3d:8e:a7: 55:39:e6:80:53:e7:cb:91:34:da:e4:9f:a2:d5:bd: e1:4b:72:a8:6f:ad:58:ae:da:bc:ad:ba:14:c0:68: 72:04:64:0a:0d:6d:be:22:31:b3:f5:74:24:15:03: 26:32:bf:50:d6:cc:da:ef:5d:5f:90:eb:5e:fd:6a: b9:c1:82:4e:03:70:df:54:e2:a4:5e:d7:93:50:73: 08:02:a5:1c:0a:46:eb:75:4a:2e:4c:1f:f5:f9:85: e4:d7:69:cf:c1:f5:0e:15:44:de:6c:4a:e2:2f:6e: 6e:9b:82:d1:7a:e2:5d:82:16:51:9c:11:26:ba:52: 7b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D8:BD:F5:74:2E:0E:24:4C:9C:1A:AC:59:10:A4:25:74:7E:59:20 X509v3 Authority Key Identifier: keyid:C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/1A519CD615DD11EBAA7C4D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.76.0/23 Signature Algorithm: sha256WithRSAEncryption 76:d1:e5:c1:ca:bb:88:3b:6f:d2:c1:35:97:fb:46:4f:d9:98: 26:7d:d2:9a:8f:36:d5:ab:ab:63:98:da:6f:6a:f4:a8:4b:35: f2:74:a5:01:d1:0d:22:97:5c:83:0d:4e:58:29:8b:25:73:0f: 2a:93:17:6e:09:eb:e0:6b:7f:b6:db:4a:b8:34:97:93:cf:35: 44:86:8d:3e:77:13:50:18:6e:29:a9:36:78:34:6c:b3:58:e4: 44:6d:9d:4d:8b:26:52:c9:c1:96:25:95:3d:f9:53:7c:00:1d: 2a:a6:73:88:66:83:32:5d:3d:f4:9c:70:6b:34:61:3b:2c:d1: 31:ca:91:61:03:9f:56:cf:51:9f:83:7a:5d:b8:16:a7:1e:d9: 18:3e:ee:67:53:7c:dc:11:3b:78:c0:32:6f:b5:6c:93:e7:20: a3:f6:34:ef:55:fd:d9:9b:8d:8a:6c:5b:5c:47:c8:5f:0e:e5: 81:b1:eb:cc:51:3e:66:76:1a:4b:04:c1:ea:ce:72:6a:82:65: 23:15:54:7b:c0:f8:87:cd:0b:87:16:a6:dc:46:0a:aa:cd:42: de:ad:9b:74:fb:cc:bc:ec:58:0d:51:11:cd:fb:95:f7:f0:c7: 0c:2c:eb:1e:c7:2d:4b:67:f6:f4:39:02:fd:99:a4:13:6c:1f: f1:f9:7d:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxQ0UxMTAvBgNVBAUTKEM2QkY4OTcwOThBRjQ0ODZBNTRFMjhCQTNFRkY1MzVE NDUyODk0MTEwHhcNMjMxMjAyMTYyMzA1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNTllOS1jOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/uOHMnU4WpdoVXnvFwlKzHj1YAUxBR+Y0ombPsvYUhoV/xD/cluIjrza2R7 5tHT9YXsk5pajLrlj9hMv0ScITxDgd+WB/NUXc3YVHwMB372wEpDE5hxejdhBASc qTqUTEit9bYr2BfnvXVrHMjRNdrsVhaopbID/b0Db7+PhxzGTUg9jqdVOeaAU+fL kTTa5J+i1b3hS3Kob61Yrtq8rboUwGhyBGQKDW2+IjGz9XQkFQMmMr9Q1sza711f kOte/Wq5wYJOA3DfVOKkXteTUHMIAqUcCkbrdUouTB/1+YXk12nPwfUOFUTebEri L25um4LReuJdghZRnBEmulJ79QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFnYvfV0 Lg4kTJwarFkQpCV0flkgMB8GA1UdIwQYMBaAFMa/iXCYr0SGpU4ouj7/U11FKJQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFDRS85M0JBODUzQTk3 RjAxMUU1QjkyMDEwNkFDNEY5QUUwMi94ci1KY0ppdlJJYWxUaWk2UHY5VFhVVW9s QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hyLUpjSml2UklhbFRpaTZQdjlUWFVVb2xCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAxQ0UvOTNCQTg1M0E5N0YwMTFFNUI5MjAxMDZBQzRGOUFFMDIvMUE1MTlDRDYx NUREMTFFQkFBN0M0RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnG0wwDQYJKoZIhvcNAQELBQADggEBAHbR5cHKu4g7b9LB NZf7Rk/ZmCZ90pqPNtWrq2OY2m9q9KhLNfJ0pQHRDSKXXIMNTlgpiyVzDyqTF24J 6+Brf7bbSrg0l5PPNUSGjT53E1AYbimpNng0bLNY5ERtnU2LJlLJwZYllT35U3wA HSqmc4hmgzJdPfSccGs0YTss0THKkWEDn1bPUZ+Del24Fqce2Rg+7mdTfNwRO3jA Mm+1bJPnIKP2NO9V/dmbjYpsW1xHyF8O5YGx68xRPmZ2GksEwerOcmqCZSMVVHvA +IfNC4cWptxGCqrNQt6tm3T7zLzsWA1REc37lffwxwws6x7HLUtn9vQ5Av2ZpBNs H/H5fSA= -----END CERTIFICATE-----Generated at Wed May 22 20:07:58 2024 by rpki-client on console-ams.rpki-client.org