$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CB46AC50509111EF9E40402FC4F9AE02.roa File: CB46AC50509111EF9E40402FC4F9AE02.roa (raw, json) Hash identifier: K8DXfa2KpJIWwXMiWiou4JA6kdULo74eDG10kFAOey4= Subject key identifier: CC:93:36:30:75:48:94:BC:CD:FF:33:06:AE:8B:C2:E0:CD:CD:38:59 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0B50 Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CB46AC50509111EF9E40402FC4F9AE02.roa Signing time: Fri 02 Aug 2024 05:40:58 +0000 ROA not before: Fri 02 Aug 2024 05:40:58 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4613 IP address blocks: 27.111.16.0/22 maxlen: 24 27.111.20.0/24 maxlen: 24 27.111.21.0/24 maxlen: 24 27.111.22.0/24 maxlen: 24 27.111.23.0/24 maxlen: 24 27.111.24.0/22 maxlen: 22 27.111.24.0/24 maxlen: 24 27.111.25.0/24 maxlen: 24 27.111.26.0/23 maxlen: 24 27.111.28.0/23 maxlen: 24 27.111.30.0/23 maxlen: 24 117.121.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Aug 2 05:40:58 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66ac716a-eb7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:20:f0:2b:f0:8e:a4:69:fd:f6:60:ae:dd:ac: 8e:f6:8a:e7:24:89:5f:20:9a:27:eb:9b:cc:36:60: d3:4e:1e:f3:a2:f4:8c:f3:e3:c2:00:3a:88:67:c2: 7e:94:96:d7:16:56:22:17:4a:96:7b:ed:12:e0:78: 92:7d:d3:aa:bb:82:50:e4:35:14:15:61:3e:76:76: b4:f0:95:a9:26:54:dc:af:13:88:28:85:07:ea:a9: 1a:82:eb:46:79:5f:d9:14:0e:b4:c6:f4:79:2e:0a: 94:8b:3f:ec:6a:05:d8:9c:59:d5:11:4c:43:ad:ab: 8b:54:fe:f4:d3:85:60:4e:ee:cb:73:49:fb:9f:b8: d5:90:f6:d7:82:e5:5f:64:46:16:90:94:05:4c:c5: 56:21:21:79:2d:22:ba:2c:b7:30:6b:73:88:4e:5e: 6a:62:af:16:07:a0:7d:f5:ba:34:79:42:a7:24:97: fc:25:c9:96:c2:0c:63:56:20:75:11:20:56:6d:19: 3b:ab:e9:0e:bc:5b:e5:8b:60:a5:f0:32:8d:cb:dc: 9c:b1:c8:ad:1e:f4:5e:da:01:1e:c5:26:99:2e:6a: 37:68:a1:b8:4b:9a:1b:9c:ff:cc:dc:7b:a6:d8:f2: d9:89:30:a8:f8:35:c1:16:45:2c:ef:00:c9:b7:a2: fb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:93:36:30:75:48:94:BC:CD:FF:33:06:AE:8B:C2:E0:CD:CD:38:59 X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CB46AC50509111EF9E40402FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.16.0/20 117.121.224.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:b0:54:3b:98:b4:34:a9:87:79:a6:1f:6b:a2:93:58:d3:8c: 04:56:d5:28:c1:cf:3f:31:c6:94:94:85:78:ab:c7:03:f9:aa: c3:ab:8b:27:b9:79:08:ee:c4:9e:68:d4:41:20:b5:ee:77:58: 77:f3:49:fa:43:d6:06:76:1b:26:c0:e8:03:4b:72:89:47:52: a4:53:17:01:47:7b:b1:53:c8:46:61:02:da:4e:f5:0c:7c:9b: a7:dc:0e:4e:33:bb:45:ba:f7:1f:b9:a7:e8:98:5a:cb:c9:5e: d9:77:78:e2:9b:90:ec:41:e3:67:da:47:c2:70:bd:11:6e:fe: 9f:53:2b:f3:bd:c0:de:b1:b0:d0:b5:99:f7:06:6a:ac:76:6a: 2a:8b:6a:eb:52:3c:95:d1:f1:b9:3c:f4:44:64:4a:9a:2d:fa: 88:de:48:4e:a9:bc:fe:38:11:28:41:49:88:b2:bf:2e:09:28: 4b:0e:ab:a9:d8:a5:ea:b0:98:cc:50:92:5e:b3:0f:a2:f1:fb: 98:c1:36:ee:37:6e:30:6c:7d:ad:f2:b9:ba:bb:44:ba:96:14: ce:5d:57:71:56:d6:24:a4:f0:f5:03:33:7f:d1:d1:3a:58:4d: f9:d6:ba:64:4f:6c:52:26:14:d6:73:99:b1:b8:60:17:9e:e3: c6:ef:ca:b7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjQwODAyMDU0MDU4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFjNzE2YS1lYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSDwK/COpGn99mCu3ayO9ornJIlfIJon65vMNmDTTh7zovSM8+PCADqIZ8J+ lJbXFlYiF0qWe+0S4HiSfdOqu4JQ5DUUFWE+dna08JWpJlTcrxOIKIUH6qkagutG eV/ZFA60xvR5LgqUiz/sagXYnFnVEUxDrauLVP7004VgTu7Lc0n7n7jVkPbXguVf ZEYWkJQFTMVWISF5LSK6LLcwa3OITl5qYq8WB6B99bo0eUKnJJf8JcmWwgxjViB1 ESBWbRk7q+kOvFvli2Cl8DKNy9ycscitHvRe2gEexSaZLmo3aKG4S5obnP/M3Hum 2PLZiTCo+DXBFkUs7wDJt6L7lQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMyTNjB1 SJS8zf8zBq6LwuDNzThZMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M3MUUvQzc4RTRBNzIxQ0E4MTFFQThDQkI0NTQzQzRGOUFFMDIvQ0I0NkFDNTA1 MDkxMTFFRjlFNDA0MDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQbbxADBAR1eeAwDQYJKoZIhvcNAQELBQADggEBAD+wVDuY tDSph3mmH2uik1jTjARW1SjBzz8xxpSUhXirxwP5qsOriye5eQjuxJ5o1EEgte53 WHfzSfpD1gZ2GybA6ANLcolHUqRTFwFHe7FTyEZhAtpO9Qx8m6fcDk4zu0W69x+5 p+iYWsvJXtl3eOKbkOxB42faR8JwvRFu/p9TK/O9wN6xsNC1mfcGaqx2aiqLautS PJXR8bk89ERkSpot+ojeSE6pvP44EShBSYiyvy4JKEsOq6nYpeqwmMxQkl6zD6Lx +5jBNu43bjBsfa3yubq7RLqWFM5dV3FW1iSk8PUDM3/R0TpYTfnWumRPbFImFNZz mbG4YBee48bvyrc= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org