$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/02FC3E3C82A511EEA1F2710DC4F9AE02.roa File: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (raw, json) Hash identifier: 6W6Gywd7YHiIdjjDyCFNskNZyB3wgY++Ir7hfO/X2TY= Subject key identifier: 7C:A3:B3:7F:DC:03:36:F3:BF:7B:B8:9A:12:BC:45:4D:CD:A3:16:A9 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: C2 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/02FC3E3C82A511EEA1F2710DC4F9AE02.roa Signing time: Sat 23 Nov 2024 04:07:40 +0000 ROA not before: Sat 23 Nov 2024 04:07:40 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152110 IP address blocks: 27.124.70.0/23 maxlen: 24 2001:df3:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Nov 23 04:07:40 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6741550c-03ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:90:92:bb:04:a4:db:56:02:22:f9:ba:cb:80: 9b:e9:38:5a:5c:16:ae:16:40:c2:03:7e:58:82:73: d2:8f:c1:a8:25:f0:4f:ca:10:d2:0f:21:4f:13:11: 11:ac:bc:50:2e:41:55:17:20:61:a4:4f:5b:79:a3: 89:b1:51:f6:a0:43:4b:25:d1:04:54:9d:c5:e9:64: 47:12:ce:a7:ef:72:5e:67:d9:ab:23:38:3d:51:fa: f7:ba:d5:5c:83:8e:d4:e3:4c:7b:a0:19:15:33:e0: 83:04:f6:77:07:14:64:1e:d0:f2:00:c5:b9:31:90: 71:1a:e2:82:56:d9:21:48:cd:7e:58:fe:c6:88:04: fe:f2:fd:b8:3d:e0:7b:67:94:bd:c2:91:f6:b2:b5: ed:62:48:fd:80:e7:06:78:8e:9f:25:97:c9:80:d4: e4:81:09:0e:8a:45:e3:52:d4:30:6c:90:aa:f0:62: 55:25:06:02:8d:4f:93:3a:7b:e2:1a:01:4f:b7:53: 53:c8:cf:bc:02:04:29:cd:54:bc:03:67:81:c8:02: 56:ef:39:b2:cf:72:be:a6:0d:9b:1b:41:80:8d:77: 77:c9:c3:b7:79:38:9c:ff:82:5a:1d:33:b5:c5:79: 2b:1f:78:89:c7:fc:c0:03:74:43:b4:10:00:f5:5e: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A3:B3:7F:DC:03:36:F3:BF:7B:B8:9A:12:BC:45:4D:CD:A3:16:A9 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/02FC3E3C82A511EEA1F2710DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.70.0/23 IPv6: 2001:df3:23c0::/48 Signature Algorithm: sha256WithRSAEncryption ad:d3:ed:94:16:64:aa:56:ec:51:fe:15:9a:78:5a:7e:86:6d: 58:a1:a2:7d:33:29:1d:e0:9f:35:fe:10:62:b1:17:db:f7:db: 06:12:3d:da:a4:b3:7d:b0:48:0d:2e:2f:e6:64:aa:20:16:da: 8f:26:9e:7e:b4:3a:f6:a5:8c:28:37:88:ad:49:67:cc:ec:48: 3b:b2:a7:32:e9:37:c9:71:69:1d:ee:d0:ea:f8:fe:6f:d2:3e: f8:ef:d5:ed:69:98:85:3b:c0:fe:e2:9d:7c:eb:bd:af:13:a0: 6e:8b:cb:bf:eb:30:1d:4b:78:00:75:ee:99:cf:ce:17:df:7c: b3:96:2e:7d:05:97:e3:b8:81:7d:21:6a:a6:7a:2c:12:8b:53: 1e:21:e8:2d:e1:fc:7e:ed:fd:bb:da:1b:14:3f:bb:64:63:b5: 65:86:95:24:5b:b4:f1:00:13:f7:41:25:d1:5b:e8:7b:05:86: 25:16:72:4c:af:84:ac:e4:d5:5e:5b:b0:20:6f:53:2b:3f:69: e3:07:73:4b:91:1a:b3:2f:73:06:b1:56:63:e8:7f:e0:25:09: a2:ec:60:7f:85:63:d8:17:99:09:de:e4:25:98:79:0c:35:57: 9d:45:82:37:55:fe:32:ed:e7:91:86:ab:9b:0c:f9:a2:2c:7e: 2d:3a:2b:98 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjQxMTIzMDQwNzQwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxNTUwYy0wM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pCSuwSk21YCIvm6y4Cb6ThaXBauFkDCA35YgnPSj8GoJfBPyhDSDyFPExER rLxQLkFVFyBhpE9beaOJsVH2oENLJdEEVJ3F6WRHEs6n73JeZ9mrIzg9Ufr3utVc g47U40x7oBkVM+CDBPZ3BxRkHtDyAMW5MZBxGuKCVtkhSM1+WP7GiAT+8v24PeB7 Z5S9wpH2srXtYkj9gOcGeI6fJZfJgNTkgQkOikXjUtQwbJCq8GJVJQYCjU+TOnvi GgFPt1NTyM+8AgQpzVS8A2eByAJW7zmyz3K+pg2bG0GAjXd3ycO3eTic/4JaHTO1 xXkrH3iJx/zAA3RDtBAA9V4ICwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHyjs3/c Azbzv3u4mhK8RU3NoxapMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFQzcvRTYzRjJGOEE4MkEzMTFFRTlCMTE3MzU3QzRGOUFFMDIvMDJGQzNFM0M4 MkE1MTFFRUExRjI3MTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAEbfEYwDwQCAAIwCQMHACABDfMjwDANBgkqhkiG9w0BAQsF AAOCAQEArdPtlBZkqlbsUf4VmnhafoZtWKGifTMpHeCfNf4QYrEX2/fbBhI92qSz fbBIDS4v5mSqIBbajyaefrQ69qWMKDeIrUlnzOxIO7KnMuk3yXFpHe7Q6vj+b9I+ +O/V7WmYhTvA/uKdfOu9rxOgbovLv+swHUt4AHXumc/OF998s5YufQWX47iBfSFq pnosEotTHiHoLeH8fu39u9obFD+7ZGO1ZYaVJFu08QAT90El0VvoewWGJRZyTK+E rOTVXluwIG9TKz9p4wdzS5Easy9zBrFWY+h/4CUJouxgf4Vj2BeZCd7kJZh5DDVX nUWCN1X+Mu3nkYarmwz5oix+LTormA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org