$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/27B648124C9C11ECACB77370C4F9AE02.roa File: 27B648124C9C11ECACB77370C4F9AE02.roa (raw, json) Hash identifier: ZNMqu5n7q8yqgioaOoz8FWOCKn32okK52a+TXFMlmIM= Subject key identifier: 8F:C7:F4:EE:07:DF:F3:0D:A3:9B:9E:B5:C4:05:EA:BF:39:91:0D:4C Certificate issuer: /CN=A91BB5D3/serialNumber=05C32F5D6FD9567CB70005B1D74A41A85B5BE712 Certificate serial: 053F Authority key identifier: 05:C3:2F:5D:6F:D9:56:7C:B7:00:05:B1:D7:4A:41:A8:5B:5B:E7:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/27B648124C9C11ECACB77370C4F9AE02.roa Signing time: Sun 03 Mar 2024 00:52:39 +0000 ROA not before: Sun 03 Mar 2024 00:52:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 142052 IP address blocks: 103.165.192.0/23 maxlen: 24 2001:df6:7280::/48 maxlen: 48 2001:df6:7281::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.crl rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5D3/serialNumber=05C32F5D6FD9567CB70005B1D74A41A85B5BE712 Validity Not Before: Mar 3 00:52:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e3c9d6-626b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:87:0f:fb:3c:75:9f:43:87:b5:b3:36:fd:ec: 64:ea:2a:89:b9:c3:5f:ab:24:9a:91:9f:71:65:06: 29:24:2f:4a:29:64:4a:af:ca:9b:aa:97:04:d4:9f: 62:f7:42:4a:ef:08:d9:64:b8:5b:cc:f2:15:93:62: ab:aa:f4:eb:c7:18:b8:cb:a8:f6:a5:41:73:92:2e: 14:05:58:90:0b:c1:f5:28:3c:e5:7e:84:d0:67:bc: ad:fd:22:c3:73:4b:30:79:6f:e8:a1:66:32:09:d2: d9:11:7e:bf:30:cf:cd:6a:70:99:94:6d:67:42:04: 21:bd:23:41:26:92:86:be:94:4a:e2:e5:90:49:d9: 5b:05:99:64:83:d1:ec:cf:4b:1f:78:0b:78:a8:af: bc:78:57:0f:13:d3:15:1a:bf:a4:bc:c6:d3:23:1c: 60:48:d9:2b:38:2e:ac:82:8e:d2:af:a3:d1:b9:69: ff:6c:b0:37:f8:0b:fd:8d:f8:de:5f:3d:1b:cc:4d: ba:f1:c5:e1:bc:18:e2:78:72:93:38:9e:3b:57:2f: 6d:60:57:b3:9e:54:97:fd:39:85:4f:62:64:3d:f4: f9:1e:fc:92:55:cc:e0:68:81:92:cd:65:6b:cc:63: d6:f3:cd:0d:d7:29:1c:31:e5:be:2f:3f:94:3b:ed: 1d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C7:F4:EE:07:DF:F3:0D:A3:9B:9E:B5:C4:05:EA:BF:39:91:0D:4C X509v3 Authority Key Identifier: keyid:05:C3:2F:5D:6F:D9:56:7C:B7:00:05:B1:D7:4A:41:A8:5B:5B:E7:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/27B648124C9C11ECACB77370C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.192.0/23 IPv6: 2001:df6:7280::/47 Signature Algorithm: sha256WithRSAEncryption 12:2b:69:66:11:72:3b:c2:b6:55:ed:37:51:ad:6b:50:99:a1: cd:eb:2e:8c:de:c5:76:15:3e:22:19:72:f1:32:ea:4c:7a:1c: f9:20:18:93:b1:e5:12:5e:ce:2f:d4:55:b4:46:c2:de:23:59: 90:3b:d8:fa:a3:77:2d:a7:21:37:d7:be:3b:c9:60:b7:38:6a: 16:81:3e:54:b1:d3:71:48:d1:34:22:a4:31:57:e4:15:e4:d2: 6a:d0:18:8f:a7:5a:db:a1:79:b6:c6:b5:ad:25:82:9b:c7:a7: 16:1b:66:04:a1:48:29:5b:b9:ce:03:ee:b9:71:28:91:79:2c: 72:97:ee:17:b8:d2:58:e5:93:c4:fe:00:70:7d:70:22:af:94: f1:37:08:12:7e:0e:6f:a0:dd:1e:50:99:55:c1:4d:6e:46:2b: 19:87:e2:bc:29:7a:2a:d7:e0:4d:70:db:51:73:f0:46:d7:1f: b6:08:18:1f:99:e6:5c:3a:e9:80:8f:73:3b:33:30:b3:42:d7: 30:66:10:1c:57:a0:29:3b:c5:1a:2a:25:3d:d3:38:24:ad:3a: ca:af:0c:38:f3:56:01:90:60:3b:ae:e1:48:b0:4c:5f:d0:34: 77:68:99:55:7b:5d:3a:b8:4e:0b:cf:40:6d:ef:60:90:26:18: 7d:ea:2d:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RDMxMTAvBgNVBAUTKDA1QzMyRjVENkZEOTU2N0NCNzAwMDVCMUQ3NEE0MUE4 NUI1QkU3MTIwHhcNMjQwMzAzMDA1MjM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzYzlkNi02MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYcP+zx1n0OHtbM2/exk6iqJucNfqySakZ9xZQYpJC9KKWRKr8qbqpcE1J9i 90JK7wjZZLhbzPIVk2KrqvTrxxi4y6j2pUFzki4UBViQC8H1KDzlfoTQZ7yt/SLD c0sweW/ooWYyCdLZEX6/MM/NanCZlG1nQgQhvSNBJpKGvpRK4uWQSdlbBZlkg9Hs z0sfeAt4qK+8eFcPE9MVGr+kvMbTIxxgSNkrOC6sgo7Sr6PRuWn/bLA3+Av9jfje Xz0bzE268cXhvBjieHKTOJ47Vy9tYFeznlSX/TmFT2JkPfT5HvySVczgaIGSzWVr zGPW880N1ykcMeW+Lz+UO+0d/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI/H9O4H 3/MNo5uetcQF6r85kQ1MMB8GA1UdIwQYMBaAFAXDL11v2VZ8twAFsddKQahbW+cS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVEMy82Q0E5RDY5MEEx QTgxMUVCODMyMTRDNzRDNEY5QUUwMi9CY012WFdfWlZueTNBQVd4MTBwQnFGdGI1 eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjTXZYV19aVm55M0FBV3gxMHBCcUZ0YjV4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1RDMvNkNBOUQ2OTBBMUE4MTFFQjgzMjE0Qzc0QzRGOUFFMDIvMjdCNjQ4MTI0 QzlDMTFFQ0FDQjc3MzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpcAwDwQCAAIwCQMHASABDfZygDANBgkqhkiG9w0BAQsF AAOCAQEAEitpZhFyO8K2Ve03Ua1rUJmhzesujN7FdhU+Ihly8TLqTHoc+SAYk7Hl El7OL9RVtEbC3iNZkDvY+qN3LachN9e+O8lgtzhqFoE+VLHTcUjRNCKkMVfkFeTS atAYj6da26F5tsa1rSWCm8enFhtmBKFIKVu5zgPuuXEokXkscpfuF7jSWOWTxP4A cH1wIq+U8TcIEn4Ob6DdHlCZVcFNbkYrGYfivCl6KtfgTXDbUXPwRtcftggYH5nm XDrpgI9zOzMws0LXMGYQHFegKTvFGiolPdM4JK06yq8MOPNWAZBgO67hSLBMX9A0 d2iZVXtdOrhOC89Abe9gkCYYfeottg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org