$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa File: F27C04B8779E11E997C0204AC4F9AE02.roa (raw, json) Hash identifier: I20RLGmkdmlwjd5bnF4wvgNMsnATdYZyRn+jpRdiZqA= Subject key identifier: 43:4C:1C:AD:E8:D1:7B:FA:AE:E3:40:3F:D1:AB:62:8E:89:D0:C7:4E Certificate issuer: /CN=A91CE392/serialNumber=5735AB6AAC327954424F9FE8CA85334299DD7BC2 Certificate serial: 0E2D Authority key identifier: 57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa Signing time: Tue 31 Oct 2023 18:45:51 +0000 ROA not before: Tue 31 Oct 2023 18:45:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134702 IP address blocks: 103.77.188.0/22 maxlen: 22 103.77.188.0/24 maxlen: 24 103.77.189.0/24 maxlen: 24 103.77.190.0/24 maxlen: 24 103.77.191.0/24 maxlen: 24 2407:9d80::/32 maxlen: 32 2407:9d80::/48 maxlen: 48 2407:9d80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.crl rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 18:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3629 (0xe2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE392/serialNumber=5735AB6AAC327954424F9FE8CA85334299DD7BC2 Validity Not Before: Oct 31 18:45:51 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65414b5f-9c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:c0:aa:04:db:02:dc:5a:c9:9f:57:07:7a: 41:f6:f7:0a:bb:35:5a:3f:c0:7c:e0:57:56:89:66: 85:84:08:cd:94:dd:1a:38:b6:0c:44:4c:b7:3b:3d: 15:7e:22:09:84:23:97:a1:16:62:b7:a7:fb:07:6a: 37:40:58:af:53:58:4f:59:61:a2:d3:60:f6:5a:d7: 18:9b:41:d1:e9:4d:88:16:6c:fa:5a:be:4e:84:b4: ff:6e:29:53:83:22:8d:25:d8:ad:fc:c4:bc:b3:7d: d4:97:40:9d:f1:2d:c8:51:35:84:fd:9a:7a:c2:30: e7:f4:57:f1:43:5e:80:73:1b:78:d0:ff:b9:53:93: 6a:87:bc:f5:86:a3:68:0d:78:87:00:ab:bd:83:2f: a1:89:62:05:d0:fc:e7:37:fb:27:cc:35:9c:77:de: 70:7f:11:42:33:02:a3:ec:5e:1c:57:a1:71:57:d3: e9:2a:2e:19:85:a7:74:1a:8a:de:0b:e9:3c:f4:15: 4a:91:fd:a9:31:4f:04:ee:9c:ba:7f:1a:f2:0e:3c: 77:d9:16:8e:73:1b:d0:9d:fc:9b:1f:94:3d:cf:18: 06:b1:5a:cb:e7:4f:62:22:87:d3:45:e8:d6:24:bd: 1d:1c:6d:a0:70:03:52:36:9d:c0:f4:e1:92:a0:a6: b8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4C:1C:AD:E8:D1:7B:FA:AE:E3:40:3F:D1:AB:62:8E:89:D0:C7:4E X509v3 Authority Key Identifier: keyid:57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/F27C04B8779E11E997C0204AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.188.0/22 IPv6: 2407:9d80::/32 Signature Algorithm: sha256WithRSAEncryption 9a:2d:50:e1:65:fc:41:02:18:e4:9f:03:4a:98:f2:33:3f:f3: 78:a8:92:af:78:88:35:32:0b:11:6f:f4:1f:ca:b3:f1:8d:30: d6:de:cc:b5:cf:24:18:44:f8:c2:c1:2d:ea:49:e4:ef:2a:2f: 48:fc:50:e5:0c:0d:3c:68:0b:76:c2:47:eb:96:b0:9b:02:7d: 23:7f:14:5b:97:97:39:22:25:a7:c8:6e:38:a4:33:ae:0d:55: ca:be:d1:df:73:89:62:5b:ca:28:f7:82:3e:a3:fa:29:bd:b5: 2c:4c:7b:24:57:46:61:65:d4:f9:67:34:d2:69:e7:9d:a7:87: d4:ca:00:b9:c0:db:59:51:d7:52:0f:f9:4c:b9:6e:44:5d:f5: c1:cc:f6:89:05:f2:2a:48:5d:b9:a2:ab:8d:c8:c7:6e:3b:e3: e4:24:19:13:b9:67:71:8c:b4:e0:29:0d:6a:87:17:42:47:7c: a1:ba:51:ba:6f:2b:2a:52:e4:28:9f:fa:47:9d:e9:d6:9e:4e: 7d:52:50:3c:0a:cb:0a:1f:96:6b:ab:17:89:8a:3c:68:63:33: 93:3a:6e:35:e1:9d:0d:a3:1a:03:59:e8:cc:08:36:95:1a:ea: 5e:94:81:df:e8:a4:ae:8e:4f:b0:6f:22:22:90:12:f6:59:e4: ed:0f:6c:99 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzOTIxMTAvBgNVBAUTKDU3MzVBQjZBQUMzMjc5NTQ0MjRGOUZFOENBODUzMzQy OTlERDdCQzIwHhcNMjMxMDMxMTg0NTUxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxNGI1Zi05YzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7HAqgTbAtxayZ9XB3pB9vcKuzVaP8B84FdWiWaFhAjNlN0aOLYMREy3Oz0V fiIJhCOXoRZit6f7B2o3QFivU1hPWWGi02D2WtcYm0HR6U2IFmz6Wr5OhLT/bilT gyKNJdit/MS8s33Ul0Cd8S3IUTWE/Zp6wjDn9FfxQ16Acxt40P+5U5Nqh7z1hqNo DXiHAKu9gy+hiWIF0PznN/snzDWcd95wfxFCMwKj7F4cV6FxV9PpKi4Zhad0Gore C+k89BVKkf2pMU8E7py6fxryDjx32RaOcxvQnfybH5Q9zxgGsVrL509iIofTRejW JL0dHG2gcANSNp3A9OGSoKa40QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFENMHK3o 0Xv6ruNAP9GrYo6J0MdOMB8GA1UdIwQYMBaAFFc1q2qsMnlUQk+f6MqFM0KZ3XvC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM5Mi82RDZBMkEyODZD RDgxMUU5Qjk5RkUzMjlDNEY5QUUwMi9WeldyYXF3eWVWUkNUNV9veW9VelFwbmRl OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z6V3JhcXd5ZVZSQ1Q1X295b1V6UXBuZGU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzOTIvNkQ2QTJBMjg2Q0Q4MTFFOUI5OUZFMzI5QzRGOUFFMDIvRjI3QzA0Qjg3 NzlFMTFFOTk3QzAyMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnTbwwDQQCAAIwBwMFACQHnYAwDQYJKoZIhvcNAQELBQAD ggEBAJotUOFl/EECGOSfA0qY8jM/83iokq94iDUyCxFv9B/Ks/GNMNbezLXPJBhE +MLBLepJ5O8qL0j8UOUMDTxoC3bCR+uWsJsCfSN/FFuXlzkiJafIbjikM64NVcq+ 0d9ziWJbyij3gj6j+im9tSxMeyRXRmFl1PlnNNJp552nh9TKALnA21lR11IP+Uy5 bkRd9cHM9okF8ipIXbmiq43Ix2474+QkGRO5Z3GMtOApDWqHF0JHfKG6UbpvKypS 5Cif+ked6daeTn1SUDwKywoflmurF4mKPGhjM5M6bjXhnQ2jGgNZ6MwINpUa6l6U gd/opK6OT7BvIiKQEvZZ5O0PbJk= -----END CERTIFICATE-----Generated at Wed Jun 12 19:38:26 2024 by rpki-client on console-ams.rpki-client.org