$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa File: 27E42824621B11ECB96F443FC4F9AE02.roa (raw, json) Hash identifier: 0VIXrT5lkbzWq5yzVw+gOO/11yudXxUHr9urUbsKFX0= Subject key identifier: BC:1D:0E:13:E4:1C:B1:FB:F2:D6:01:9E:F3:5B:91:5C:6F:BA:57:D1 Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 040C Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa Signing time: Sun 05 Jan 2025 00:14:52 +0000 ROA not before: Sun 05 Jan 2025 00:14:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136788 IP address blocks: 103.96.24.0/22 maxlen: 22 103.96.24.0/23 maxlen: 23 103.96.26.0/24 maxlen: 24 123.253.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F Validity Not Before: Jan 5 00:14:52 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6779cefc-b515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6b:25:3d:6b:b3:50:7d:1a:74:25:fb:1c:fd: e2:50:d6:36:57:73:88:7a:8f:8e:ef:82:54:86:f1: 61:46:94:e9:28:41:1f:4e:bd:5a:1c:4d:43:7d:b0: 6b:fd:2e:d5:ce:bd:26:b6:e7:f3:b9:26:90:5a:4c: 3b:6f:86:e1:bf:58:01:9e:e2:47:df:69:e2:53:85: d4:f1:da:8f:af:2e:18:be:02:13:d2:c5:1c:ab:4e: 5a:11:ed:0d:51:c7:1e:19:14:87:e7:f1:88:cc:1b: 67:fb:2e:76:de:b6:ef:db:1f:cb:56:41:c0:22:02: 4f:03:f8:7b:83:5c:d3:46:51:ca:8b:13:f8:de:9b: 38:c2:f7:16:c9:ed:19:52:09:b4:fd:4b:5f:10:d7: 94:49:42:94:cc:0f:38:90:27:48:c4:c5:ac:08:0d: 5b:21:96:45:1e:2a:7b:2d:c1:62:54:23:b9:b7:0a: 66:9e:41:68:08:35:38:09:d2:a5:de:bd:64:76:74: 4d:09:ab:ef:8e:56:bf:c3:f8:fa:69:59:01:fa:8f: f2:fe:7d:14:04:1b:a4:92:43:00:3d:0a:f6:ba:b7: af:58:6a:61:e7:62:53:11:cf:98:56:94:4f:00:4e: d5:72:2e:74:bd:a5:53:57:b5:1d:a3:e2:2b:21:06: c9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1D:0E:13:E4:1C:B1:FB:F2:D6:01:9E:F3:5B:91:5C:6F:BA:57:D1 X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.24.0/22 123.253.192.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:18:c9:ec:9f:6d:ba:1b:3c:15:42:de:f0:2c:e7:04:4c:3d: f6:73:04:cf:71:35:68:89:79:68:90:c0:22:57:48:f0:e6:37: 55:ab:00:36:3f:af:bc:66:71:6e:84:c1:9d:7a:f2:ef:75:16: 68:02:f1:af:b4:8a:4e:a4:1d:7d:4f:4f:86:75:0b:4e:45:9d: 27:ae:c8:24:39:62:72:47:28:3a:b5:dc:d5:32:d1:6a:b9:8e: 9a:d3:c9:d9:d1:0c:4d:43:5c:8a:40:cf:31:f9:6b:be:dc:36: b0:54:f8:c3:a9:c8:96:0b:24:2b:42:10:8a:36:65:e8:f3:c6: 38:23:18:71:a2:f3:22:f2:d4:7d:d3:28:13:e5:e6:e7:e0:e0: ee:cf:a4:69:33:38:53:de:aa:75:a0:0b:81:02:6a:7a:e1:25: 1e:87:39:db:a4:30:07:b8:9c:f6:9c:aa:75:34:af:5e:98:be: f0:f4:d7:89:bc:67:6f:0b:70:7b:fb:f2:0e:a2:36:90:c3:8b: 85:a6:f0:b4:09:5d:f5:3c:79:2d:91:4e:a6:62:f1:00:e3:3f: 86:f7:06:a7:0f:b5:d5:54:22:9b:8d:c4:68:10:f8:65:f8:9b: 65:7b:e9:cf:a5:f0:e8:b1:50:58:0f:43:b6:4e:de:30:3c:51: b0:9e:ed:ff -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjUwMTA1MDAxNDUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5Y2VmYy1iNTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mslPWuzUH0adCX7HP3iUNY2V3OIeo+O74JUhvFhRpTpKEEfTr1aHE1DfbBr /S7Vzr0mtufzuSaQWkw7b4bhv1gBnuJH32niU4XU8dqPry4YvgIT0sUcq05aEe0N UcceGRSH5/GIzBtn+y523rbv2x/LVkHAIgJPA/h7g1zTRlHKixP43ps4wvcWye0Z Ugm0/UtfENeUSUKUzA84kCdIxMWsCA1bIZZFHip7LcFiVCO5twpmnkFoCDU4CdKl 3r1kdnRNCavvjla/w/j6aVkB+o/y/n0UBBukkkMAPQr2urevWGph52JTEc+YVpRP AE7Vci50vaVTV7Udo+IrIQbJFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLwdDhPk HLH78tYBnvNbkVxvulfRMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMjdFNDI4MjQ2 MjFCMTFFQ0I5NkY0NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnYBgDBAJ7/cAwDQYJKoZIhvcNAQELBQADggEBAGoYyeyf bbobPBVC3vAs5wRMPfZzBM9xNWiJeWiQwCJXSPDmN1WrADY/r7xmcW6EwZ168u91 FmgC8a+0ik6kHX1PT4Z1C05FnSeuyCQ5YnJHKDq13NUy0Wq5jprTydnRDE1DXIpA zzH5a77cNrBU+MOpyJYLJCtCEIo2ZejzxjgjGHGi8yLy1H3TKBPl5ufg4O7PpGkz OFPeqnWgC4ECanrhJR6HOdukMAe4nPacqnU0r16YvvD014m8Z28LcHv78g6iNpDD i4Wm8LQJXfU8eS2RTqZi8QDjP4b3BqcPtdVUIpuNxGgQ+GX4m2V76c+l8OixUFgP Q7ZO3jA8UbCe7f8= -----END CERTIFICATE-----Generated at Sun Apr 6 14:06:21 2025 by rpki-client