$ rpki-client -vvf rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/27EECF18EDF811ECBCAF5567C4F9AE02.roa File: 27EECF18EDF811ECBCAF5567C4F9AE02.roa (raw, json) Hash identifier: qXRgCfqpmS5YPx0WgYTdYL/Q4Pr+cX6tJxmAtbbAn58= Subject key identifier: FF:96:C3:10:BA:83:F3:0B:D4:DC:E8:C1:E7:B8:FE:7D:C9:C8:B2:82 Certificate issuer: /CN=A915280B/serialNumber=1465DC2CB70253EDF514CD43772662FF3BB8F6E0 Certificate serial: 01E6 Authority key identifier: 14:65:DC:2C:B7:02:53:ED:F5:14:CD:43:77:26:62:FF:3B:B8:F6:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGXcLLcCU-31FM1DdyZi_zu49uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/27EECF18EDF811ECBCAF5567C4F9AE02.roa Signing time: Fri 09 Feb 2024 03:45:08 +0000 ROA not before: Fri 09 Feb 2024 03:45:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135405 IP address blocks: 103.135.216.0/24 maxlen: 24 103.135.217.0/24 maxlen: 24 103.135.218.0/24 maxlen: 24 103.135.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/FGXcLLcCU-31FM1DdyZi_zu49uA.crl rsync://rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/FGXcLLcCU-31FM1DdyZi_zu49uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGXcLLcCU-31FM1DdyZi_zu49uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915280B/serialNumber=1465DC2CB70253EDF514CD43772662FF3BB8F6E0 Validity Not Before: Feb 9 03:45:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c59fc4-2ff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:70:ec:74:db:d7:d8:57:c3:c9:a7:b6:15: b1:5a:b5:6b:d2:39:b6:25:76:7e:46:d4:c3:bc:e3: b1:7d:00:df:e6:20:7e:36:27:b6:0a:0d:67:cd:ad: 8c:44:99:95:3b:62:c8:f3:0a:70:97:5a:40:d3:c6: c0:30:b9:4b:fc:38:22:f6:14:da:16:03:28:d3:67: d9:d5:4c:3f:ce:58:06:bf:4d:d6:a1:6e:5b:b7:59: 66:00:77:c5:1c:ba:46:05:e6:2c:e0:90:52:63:6b: 44:f8:f1:51:1f:14:c9:41:ea:fa:9d:b1:bf:74:95: ca:b3:a4:32:c0:d6:8b:9a:9f:0c:b7:26:2b:8e:cc: db:11:7a:86:b8:15:67:e9:5b:33:37:3c:00:c3:89: c2:05:be:ec:9f:81:a0:69:28:b2:c0:f7:e7:36:89: e9:ed:df:2c:bd:ce:77:c7:60:9e:33:36:48:01:4d: 3f:d7:45:0b:ee:15:d1:9a:7a:a6:ae:96:c9:46:f4: 7e:a5:86:5e:7e:27:35:27:ee:e9:c5:51:4a:db:e0: d6:21:86:70:2f:6b:02:dd:fd:96:c6:8e:c8:78:07: a0:f4:ae:cd:90:1b:51:ed:9c:37:ae:50:35:2b:70: bf:be:b5:e2:68:da:5a:8b:34:91:91:b0:87:df:d4: ef:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:96:C3:10:BA:83:F3:0B:D4:DC:E8:C1:E7:B8:FE:7D:C9:C8:B2:82 X509v3 Authority Key Identifier: keyid:14:65:DC:2C:B7:02:53:ED:F5:14:CD:43:77:26:62:FF:3B:B8:F6:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/FGXcLLcCU-31FM1DdyZi_zu49uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGXcLLcCU-31FM1DdyZi_zu49uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915280B/97BC1DB8EDEF11EC896AE740C4F9AE02/27EECF18EDF811ECBCAF5567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.216.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:8d:a6:be:a2:5f:ae:60:b8:d4:ee:3b:b8:60:a9:63:07:6f: 90:89:dd:e9:b1:0c:3a:c8:96:29:ca:31:40:43:a5:54:92:2d: b0:99:a6:8d:16:23:3f:31:42:5d:73:a7:61:7e:cf:c8:84:ec: 09:34:c1:86:cf:94:f2:1c:f1:2f:bf:94:43:e5:d4:eb:9e:f2: 94:37:d4:7d:fc:ae:5e:fc:88:b6:2a:6f:29:4d:55:c3:ca:31: f8:91:07:89:8b:95:f2:2d:86:2c:d0:f3:12:1e:ff:c7:ff:d7: 19:81:92:42:79:c9:f5:ab:3d:71:fd:e3:cc:2e:a5:56:53:ac: b3:bb:df:9a:20:08:a0:67:01:30:83:5d:d6:09:da:83:52:7f: 0a:82:8a:1a:e1:96:cf:ae:72:82:e8:42:36:10:87:49:42:16: 6d:b2:95:7c:48:dc:8e:06:92:fc:66:9a:12:05:f0:f9:62:ff: 20:bb:3a:ae:c6:c1:ac:e5:d0:fe:44:30:25:13:d1:3e:73:2f: a3:46:61:18:09:63:01:7f:d0:b6:b2:c7:cb:8d:e0:63:8b:97: 22:e1:07:ff:85:b5:49:44:bf:a7:e8:a8:20:c8:65:5c:69:6b: 8a:a2:2d:15:2c:6b:82:a5:88:20:72:1a:64:6b:0d:52:34:31: 25:bc:f9:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI4MEIxMTAvBgNVBAUTKDE0NjVEQzJDQjcwMjUzRURGNTE0Q0Q0Mzc3MjY2MkZG M0JCOEY2RTAwHhcNMjQwMjA5MDM0NTA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1OWZjNC0yZmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgxw7HTb19hXw8mnthWxWrVr0jm2JXZ+RtTDvOOxfQDf5iB+Nie2Cg1nza2M RJmVO2LI8wpwl1pA08bAMLlL/Dgi9hTaFgMo02fZ1Uw/zlgGv03WoW5bt1lmAHfF HLpGBeYs4JBSY2tE+PFRHxTJQer6nbG/dJXKs6QywNaLmp8MtyYrjszbEXqGuBVn 6VszNzwAw4nCBb7sn4GgaSiywPfnNonp7d8svc53x2CeMzZIAU0/10UL7hXRmnqm rpbJRvR+pYZefic1J+7pxVFK2+DWIYZwL2sC3f2Wxo7IeAeg9K7NkBtR7Zw3rlA1 K3C/vrXiaNpaizSRkbCH39Tv6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFP+WwxC6 g/ML1Nzowee4/n3JyLKCMB8GA1UdIwQYMBaAFBRl3Cy3AlPt9RTNQ3cmYv87uPbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjgwQi85N0JDMURCOEVE RUYxMUVDODk2QUU3NDBDNEY5QUUwMi9GR1hjTExjQ1UtMzFGTTFEZHlaaV96dTQ5 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZHWGNMTGNDVS0zMUZNMURkeVppX3p1NDl1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI4MEIvOTdCQzFEQjhFREVGMTFFQzg5NkFFNzQwQzRGOUFFMDIvMjdFRUNGMThF REY4MTFFQ0JDQUY1NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnh9gwDQYJKoZIhvcNAQELBQADggEBAI6Npr6iX65guNTu O7hgqWMHb5CJ3emxDDrIlinKMUBDpVSSLbCZpo0WIz8xQl1zp2F+z8iE7Ak0wYbP lPIc8S+/lEPl1Oue8pQ31H38rl78iLYqbylNVcPKMfiRB4mLlfIthizQ8xIe/8f/ 1xmBkkJ5yfWrPXH948wupVZTrLO735ogCKBnATCDXdYJ2oNSfwqCihrhls+ucoLo QjYQh0lCFm2ylXxI3I4GkvxmmhIF8Pli/yC7Oq7Gwazl0P5EMCUT0T5zL6NGYRgJ YwF/0Layx8uN4GOLlyLhB/+FtUlEv6foqCDIZVxpa4qiLRUsa4KliCByGmRrDVI0 MSW8+ao= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:16 2024 by rpki-client on console-ams.rpki-client.org