$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/B94BEEA036D811ECB5BD1470C4F9AE02.roa File: B94BEEA036D811ECB5BD1470C4F9AE02.roa (raw, json) Hash identifier: xK6g/9ZrCrAbUvohYXyIWOCZe254sdAZJJD2NWP+2ec= Subject key identifier: 8A:36:95:4F:03:F7:E8:4D:DA:75:49:2A:2B:FB:42:84:59:09:7A:5A Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 06F1 Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/B94BEEA036D811ECB5BD1470C4F9AE02.roa Signing time: Fri 08 Dec 2023 22:09:27 +0000 ROA not before: Fri 08 Dec 2023 22:09:27 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38325 IP address blocks: 27.106.216.0/21 maxlen: 22 27.106.216.0/24 maxlen: 24 27.106.217.0/24 maxlen: 24 27.106.218.0/24 maxlen: 24 27.106.219.0/24 maxlen: 24 27.106.220.0/24 maxlen: 24 27.106.221.0/24 maxlen: 24 27.106.222.0/24 maxlen: 24 27.106.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Dec 8 22:09:27 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65739416-28a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:a8:8c:bd:2f:af:76:a6:32:1a:80:f2:ef: 8b:db:d3:06:74:91:67:3a:85:10:b7:d4:99:fd:b0: 6a:62:ee:48:94:e6:9b:d1:70:05:a2:28:54:fa:12: ef:81:05:fa:51:9c:a8:39:8d:6c:93:f7:54:72:6c: b5:fc:6e:4b:e2:06:64:55:05:d6:0f:06:da:8f:b3: 7f:2e:a2:cd:0b:7b:b6:14:69:fa:51:6f:44:bb:28: 21:45:f2:f4:10:07:5c:cb:a7:87:ea:86:9e:1a:fd: 02:13:e6:65:8c:f6:59:11:ff:85:1e:74:ab:d3:5e: 3d:51:42:da:7a:1d:23:c4:ee:34:37:8a:69:71:b9: 07:4d:72:89:74:55:2e:33:8d:cb:08:84:f4:b3:7d: ae:a2:b8:8e:97:a6:96:50:d7:22:ff:fa:81:28:c8: 46:98:fd:04:e9:88:71:a0:56:2a:09:be:71:a6:88: c8:1b:3d:34:de:be:67:e0:cc:db:4a:27:09:59:cf: 2b:95:02:e8:53:12:02:e9:27:d6:3a:1b:44:d3:fc: 02:0f:74:ec:53:93:b3:53:ae:c6:cd:12:36:4d:de: d3:23:17:46:59:d0:fe:dd:d4:5c:bf:2a:d3:90:0a: e0:4d:90:68:18:3c:57:e2:6f:00:e2:18:a8:3f:ee: d2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:36:95:4F:03:F7:E8:4D:DA:75:49:2A:2B:FB:42:84:59:09:7A:5A X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/B94BEEA036D811ECB5BD1470C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.106.216.0/21 Signature Algorithm: sha256WithRSAEncryption 46:b5:63:1a:bd:7e:6f:25:78:15:90:af:0e:4d:a5:96:75:62: 0e:91:d4:6c:36:1b:e1:f4:ad:7e:95:f3:e2:5e:3f:33:08:ad: 49:b3:a3:59:0e:bc:b4:74:15:d4:87:1b:e8:74:ed:a2:22:8e: 75:7b:0d:56:48:a4:97:cc:eb:69:51:b5:05:3b:02:25:cc:52: 1f:86:03:ee:45:6f:e5:ff:ce:3c:bb:bf:4d:85:32:8b:9f:4a: af:7e:ef:67:25:af:c3:4e:31:73:71:bb:45:86:8f:05:de:0f: f2:43:62:4e:b4:c9:dd:da:c7:ae:4f:b8:f2:d2:3a:14:7d:28: 73:73:fb:9e:2e:1b:2e:35:5d:00:2a:1d:72:73:b3:0f:71:6d: 3c:37:3e:d7:61:6b:8f:5f:08:96:8e:cf:40:ed:59:9b:87:44: 72:0f:b8:3b:02:86:b6:8b:31:29:82:27:de:0d:64:63:a7:1c: 92:b2:ee:e2:c7:9c:35:98:e6:46:d5:4c:09:f7:a3:ef:7e:47: fa:80:29:03:e4:c2:67:cb:4a:d6:b2:85:4e:e6:e5:1f:90:b1: b6:b3:8a:c5:fd:1e:5b:33:0d:f4:1c:92:c9:20:12:7f:d7:ed: 12:1c:d9:50:f2:e4:e5:c4:96:83:6d:b9:84:3d:13:e1:33:0d: 3c:7e:fd:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjMxMjA4MjIwOTI3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczOTQxNi0yOGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2GojL0vr3amMhqA8u+L29MGdJFnOoUQt9SZ/bBqYu5IlOab0XAFoihU+hLv gQX6UZyoOY1sk/dUcmy1/G5L4gZkVQXWDwbaj7N/LqLNC3u2FGn6UW9EuyghRfL0 EAdcy6eH6oaeGv0CE+ZljPZZEf+FHnSr0149UULaeh0jxO40N4ppcbkHTXKJdFUu M43LCIT0s32uoriOl6aWUNci//qBKMhGmP0E6YhxoFYqCb5xpojIGz003r5n4Mzb SicJWc8rlQLoUxIC6SfWOhtE0/wCD3TsU5OzU67GzRI2Td7TIxdGWdD+3dRcvyrT kArgTZBoGDxX4m8A4hioP+7SsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIo2lU8D 9+hN2nVJKiv7QoRZCXpaMB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ1MzkvQzEyNjVEQzBFMzg5MTFFQUI3M0EzNjU5QzRGOUFFMDIvQjk0QkVFQTAz NkQ4MTFFQ0I1QkQxNDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAMbatgwDQYJKoZIhvcNAQELBQADggEBAEa1Yxq9fm8leBWQ rw5NpZZ1Yg6R1Gw2G+H0rX6V8+JePzMIrUmzo1kOvLR0FdSHG+h07aIijnV7DVZI pJfM62lRtQU7AiXMUh+GA+5Fb+X/zjy7v02FMoufSq9+72clr8NOMXNxu0WGjwXe D/JDYk60yd3ax65PuPLSOhR9KHNz+54uGy41XQAqHXJzsw9xbTw3Ptdha49fCJaO z0DtWZuHRHIPuDsChraLMSmCJ94NZGOnHJKy7uLHnDWY5kbVTAn3o+9+R/qAKQPk wmfLStayhU7m5R+QsbazisX9HlszDfQckskgEn/X7RIc2VDy5OXEloNtuYQ9E+Ez DTx+/co= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:24 2024 by rpki-client on console-ams.rpki-client.org