$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa File: F27C04B8779E11E997C0204AC4F9AE02.roa (raw, json) Hash identifier: DZGyjsonfYGjBw4hHPzT7rTakbn4N6VzJZPth34e8Gc= Subject key identifier: C1:E2:49:5F:B2:E6:40:82:BD:D2:6C:D8:43:27:60:BC:55:22:56:7C Certificate issuer: /CN=A91CE392/serialNumber=5735AB6AAC327954424F9FE8CA85334299DD7BC2 Certificate serial: 0EEA Authority key identifier: 57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa Signing time: Thu 24 Oct 2024 17:55:59 +0000 ROA not before: Thu 24 Oct 2024 17:55:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134702 IP address blocks: 103.77.188.0/22 maxlen: 22 103.77.188.0/23 maxlen: 23 103.77.188.0/24 maxlen: 24 103.77.189.0/24 maxlen: 24 103.77.190.0/23 maxlen: 23 103.77.190.0/24 maxlen: 24 103.77.191.0/24 maxlen: 24 2407:9d80::/32 maxlen: 32 2407:9d80::/48 maxlen: 48 2407:9d80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.crl rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE392/serialNumber=5735AB6AAC327954424F9FE8CA85334299DD7BC2 Validity Not Before: Oct 24 17:55:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a8a2f-c244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:55:e2:b3:50:be:0e:fc:d9:65:ff:c3:02:4c: 30:55:7a:90:65:2c:f9:bc:86:6c:29:5a:68:1c:e4: 54:35:5f:fa:a6:2a:55:03:46:34:1c:0d:23:85:0c: aa:bd:af:09:21:1c:bf:2f:9b:f1:23:9b:5b:44:b8: b9:c7:fa:27:c9:4a:ef:9f:e5:49:54:8c:db:56:a2: 4f:5b:c6:7e:ad:5a:e3:8e:17:68:de:6d:23:42:7d: 26:8c:52:90:84:15:4b:27:19:af:23:ad:b0:2e:a2: 32:02:92:0f:83:ea:9f:0c:8d:d7:8f:95:41:a7:81: be:ec:4f:d0:d5:56:33:1e:6d:5d:1a:82:db:07:9b: ce:a8:86:df:c9:04:7c:5b:c9:36:20:b6:1e:4f:c5: 40:84:ae:eb:64:37:76:0e:0a:29:6b:b1:fb:cc:74: d5:e1:1e:d8:b7:2d:d2:29:e0:ac:d4:b2:83:c1:8f: 8a:fd:7f:da:d9:ad:06:41:0c:d6:f3:e6:74:e9:74: 82:96:51:fa:bb:26:0f:e7:d8:ac:e8:53:05:97:ec: 78:e6:20:07:2e:28:7d:a5:bc:96:2a:e1:66:27:3c: cc:59:26:17:98:d0:6f:4a:22:6a:ca:f9:e9:b6:8e: f8:1a:da:a3:35:52:05:e1:df:07:b6:51:7c:47:da: 5a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E2:49:5F:B2:E6:40:82:BD:D2:6C:D8:43:27:60:BC:55:22:56:7C X509v3 Authority Key Identifier: keyid:57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.188.0/22 IPv6: 2407:9d80::/32 Signature Algorithm: sha256WithRSAEncryption c0:b9:dc:b6:db:7b:5b:ee:ed:49:8b:5c:d1:29:99:55:e2:7d: e6:dd:33:19:00:dd:3e:7e:59:21:36:8e:aa:6b:63:50:60:a0: c6:ee:03:ee:23:01:83:91:7c:5b:79:35:3b:77:9e:2a:a1:8d: 71:39:d2:fa:23:e6:90:3a:72:08:7b:38:64:8c:ef:8d:c0:55: 14:d4:32:e7:6f:96:f3:20:81:23:68:b2:a8:70:9d:21:5d:ea: 5a:eb:fa:40:dd:a6:78:c4:c7:0f:1a:7a:e5:92:9c:01:2b:4b: a8:67:c9:1b:a1:0e:b2:43:2e:51:28:60:83:00:f2:5d:39:d8: 43:96:42:17:f5:0f:be:58:4f:91:4b:5f:7d:6d:4a:bf:95:79: 93:f9:7e:32:ac:68:27:8e:7e:20:0d:87:c8:1f:d4:27:0a:da: cc:47:7f:32:38:3b:1b:bc:42:7c:b6:63:a5:22:c0:ab:39:5d: 03:ff:f0:72:be:26:e5:a7:a3:71:e7:ec:9f:e0:35:d8:84:1e: c3:72:04:ca:89:16:a3:c2:5c:0c:5a:85:77:98:38:e5:76:3d: a1:6c:cc:b7:3e:cf:1d:43:95:c5:5d:3d:7b:1f:d5:83:82:6e: 11:88:cf:72:db:de:8d:40:89:cf:6f:f0:ee:ea:09:e8:dd:94: 1d:2f:25:0d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzOTIxMTAvBgNVBAUTKDU3MzVBQjZBQUMzMjc5NTQ0MjRGOUZFOENBODUzMzQy OTlERDdCQzIwHhcNMjQxMDI0MTc1NTU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhOGEyZi1jMjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41Xis1C+DvzZZf/DAkwwVXqQZSz5vIZsKVpoHORUNV/6pipVA0Y0HA0jhQyq va8JIRy/L5vxI5tbRLi5x/onyUrvn+VJVIzbVqJPW8Z+rVrjjhdo3m0jQn0mjFKQ hBVLJxmvI62wLqIyApIPg+qfDI3Xj5VBp4G+7E/Q1VYzHm1dGoLbB5vOqIbfyQR8 W8k2ILYeT8VAhK7rZDd2Dgopa7H7zHTV4R7Yty3SKeCs1LKDwY+K/X/a2a0GQQzW 8+Z06XSCllH6uyYP59is6FMFl+x45iAHLih9pbyWKuFmJzzMWSYXmNBvSiJqyvnp to74GtqjNVIF4d8HtlF8R9padwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMHiSV+y 5kCCvdJs2EMnYLxVIlZ8MB8GA1UdIwQYMBaAFFc1q2qsMnlUQk+f6MqFM0KZ3XvC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM5Mi82RDZBMkEyODZD RDgxMUU5Qjk5RkUzMjlDNEY5QUUwMi9WeldyYXF3eWVWUkNUNV9veW9VelFwbmRl OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z6V3JhcXd5ZVZSQ1Q1X295b1V6UXBuZGU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzOTIvNkQ2QTJBMjg2Q0Q4MTFFOUI5OUZFMzI5QzRGOUFFMDIvRjI3QzA0Qjg3 NzlFMTFFOTk3QzAyMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnTbwwDQQCAAIwBwMFACQHnYAwDQYJKoZIhvcNAQELBQAD ggEBAMC53Lbbe1vu7UmLXNEpmVXifebdMxkA3T5+WSE2jqprY1BgoMbuA+4jAYOR fFt5NTt3niqhjXE50voj5pA6cgh7OGSM743AVRTUMudvlvMggSNosqhwnSFd6lrr +kDdpnjExw8aeuWSnAErS6hnyRuhDrJDLlEoYIMA8l052EOWQhf1D75YT5FLX31t Sr+VeZP5fjKsaCeOfiANh8gf1CcK2sxHfzI4Oxu8Qny2Y6UiwKs5XQP/8HK+JuWn o3Hn7J/gNdiEHsNyBMqJFqPCXAxahXeYOOV2PaFszLc+zx1DlcVdPXsf1YOCbhGI z3Lb3o1Aic9v8O7qCejdlB0vJQ0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org