$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/27030ADA8EB211EA9D09090FC4F9AE02.roa File: 27030ADA8EB211EA9D09090FC4F9AE02.roa (raw, json) Hash identifier: KzsEqYZi4RymBpkz6QVCB3ieArM+VhARkW/2ksmdU8k= Subject key identifier: 75:D8:28:69:E6:0C:0E:F5:1C:E2:02:6D:77:EF:39:8C:1E:6F:62:03 Certificate issuer: /CN=A918BB7A/serialNumber=B9FEBBA09CF10B287EED2CE56722B3C9A0EF12FF Certificate serial: 092D Authority key identifier: B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uf67oJzxCyh-7SzlZyKzyaDvEv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/27030ADA8EB211EA9D09090FC4F9AE02.roa Signing time: Tue 10 Dec 2024 20:19:20 +0000 ROA not before: Tue 10 Dec 2024 20:19:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139919 IP address blocks: 103.147.24.0/24 maxlen: 24 103.147.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.crl rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uf67oJzxCyh-7SzlZyKzyaDvEv8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB7A Validity Not Before: Dec 10 20:19:20 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758a248-757b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:3f:77:32:c5:d2:70:92:db:43:cc:b4:e8: e6:e9:7c:03:ac:61:d3:5e:15:b3:a7:7f:8c:36:ca: 7c:23:29:81:7d:75:ab:21:70:06:9d:6d:63:df:bf: dc:34:94:b1:8c:4d:0f:7a:30:ef:e2:8a:b5:39:e0: 2f:41:5b:bb:b5:17:48:15:15:5f:88:64:22:a1:5d: fa:f4:68:c3:7f:73:6c:57:19:95:50:79:a4:2d:93: 31:d4:48:dc:c7:b6:ea:80:bb:8a:bb:55:40:76:13: 97:ef:a3:cd:4f:2f:55:90:99:50:67:2e:b4:4a:09: 86:c1:01:fb:ab:fa:d7:94:d2:d6:43:48:e7:e2:00: 8c:a5:2c:fd:71:42:11:14:80:8a:bd:45:cd:55:c6: 87:a1:18:3e:99:04:83:0a:77:e4:29:d6:c4:81:ca: c6:f5:d9:9a:14:8b:98:d8:47:c6:9f:b2:dd:5a:10: f4:ef:51:0d:7e:cd:a7:42:5f:30:e7:ff:e9:fe:0b: e8:21:5c:ca:ec:2d:c1:29:22:53:e3:55:9c:52:f1: 73:27:44:36:73:e1:88:d3:5d:c0:a0:14:7a:0f:a8: 6a:ca:62:ca:ea:35:ca:40:84:6d:21:df:95:ca:0a: 75:0d:64:54:0e:27:72:99:68:05:8a:b9:b4:ef:f6: 0c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D8:28:69:E6:0C:0E:F5:1C:E2:02:6D:77:EF:39:8C:1E:6F:62:03 X509v3 Authority Key Identifier: keyid:B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uf67oJzxCyh-7SzlZyKzyaDvEv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/27030ADA8EB211EA9D09090FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.24.0/23 Signature Algorithm: sha256WithRSAEncryption 30:6b:79:12:91:86:6f:23:1b:c5:8c:92:5b:72:f6:95:6b:92: a6:e2:a1:ea:76:f1:8b:bf:5e:0e:61:a1:3a:51:02:d0:5d:9a: 1f:23:55:aa:df:de:b1:c2:4f:68:44:6f:af:06:b7:ac:84:99: 13:da:96:08:fc:9a:4a:fc:40:8a:af:bb:7a:09:3b:b0:a2:70: 4d:cb:a8:74:bb:a8:58:59:b7:2b:bb:33:f3:8d:ba:13:59:40: fb:7f:da:24:c8:e1:84:a1:cc:d2:31:f7:7c:1c:2b:08:a4:db: 48:fc:66:33:31:3d:b7:59:7c:81:b3:33:74:c1:29:79:7a:ed: 4d:fc:49:24:0b:8f:ee:73:72:3d:05:92:9c:76:66:01:7d:17: 57:a3:ed:b6:4a:27:c1:a5:f1:9a:89:b3:6b:ce:85:3c:9f:32: b5:44:16:37:9f:21:a4:a7:cb:3e:19:48:a1:07:ca:2d:ca:52: 63:7e:db:9f:3d:4b:1a:b4:d4:67:39:d3:a2:18:91:9f:46:d7: 84:f5:78:25:10:55:20:8a:82:bc:a0:57:e4:2f:a7:06:09:6b: f8:93:c6:42:d2:64:1f:28:bb:3d:9d:3e:75:87:2a:2a:a8:c2: a6:f7:e2:31:85:e8:1d:fc:07:62:c0:b4:6d:8f:f9:f8:97:05: 4f:a5:16:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCN0ExMTAvBgNVBAUTKEI5RkVCQkEwOUNGMTBCMjg3RUVEMkNFNTY3MjJCM0M5 QTBFRjEyRkYwHhcNMjQxMjEwMjAxOTIwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YTI0OC03NTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB0/dzLF0nCS20PMtOjm6XwDrGHTXhWzp3+MNsp8IymBfXWrIXAGnW1j37/c NJSxjE0PejDv4oq1OeAvQVu7tRdIFRVfiGQioV369GjDf3NsVxmVUHmkLZMx1Ejc x7bqgLuKu1VAdhOX76PNTy9VkJlQZy60SgmGwQH7q/rXlNLWQ0jn4gCMpSz9cUIR FICKvUXNVcaHoRg+mQSDCnfkKdbEgcrG9dmaFIuY2EfGn7LdWhD071ENfs2nQl8w 5//p/gvoIVzK7C3BKSJT41WcUvFzJ0Q2c+GI013AoBR6D6hqymLK6jXKQIRtId+V ygp1DWRUDidymWgFirm07/YMGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHXYKGnm DA71HOICbXfvOYweb2IDMB8GA1UdIwQYMBaAFLn+u6Cc8Qsofu0s5Wcis8mg7xL/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI3QS81RDIxMTg0QzhF QjExMUVBQjAyQTU1MEVDNEY5QUUwMi91ZjY3b0p6eEN5aC03U3psWnlLenlhRHZF djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VmNjdvSnp4Q3loLTdTemxaeUt6eWFEdkV2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCN0EvNUQyMTE4NEM4RUIxMTFFQUIwMkE1NTBFQzRGOUFFMDIvMjcwMzBBREE4 RUIyMTFFQTlEMDkwOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkxgwDQYJKoZIhvcNAQELBQADggEBADBreRKRhm8jG8WM klty9pVrkqbioep28Yu/Xg5hoTpRAtBdmh8jVarf3rHCT2hEb68Gt6yEmRPalgj8 mkr8QIqvu3oJO7CicE3LqHS7qFhZtyu7M/ONuhNZQPt/2iTI4YShzNIx93wcKwik 20j8ZjMxPbdZfIGzM3TBKXl67U38SSQLj+5zcj0Fkpx2ZgF9F1ej7bZKJ8Gl8ZqJ s2vOhTyfMrVEFjefIaSnyz4ZSKEHyi3KUmN+2589Sxq01Gc506IYkZ9G14T1eCUQ VSCKgrygV+QvpwYJa/iTxkLSZB8ouz2dPnWHKiqowqb34jGF6B38B2LAtG2P+fiX BU+lFhI= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:39 2025 by rpki-client