$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa File: 27DB37683BD211EE8094355FC4F9AE02.roa (raw, json) Hash identifier: zGK0q5txS96FydXJDIEXpJYa3Lt/UXyszOqHKnQJIS0= Subject key identifier: FB:E0:02:7F:08:0B:58:8D:DE:BD:69:3E:EC:73:32:9D:2C:DC:0E:D1 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 33 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa Signing time: Thu 19 Oct 2023 05:58:37 +0000 ROA not before: Thu 19 Oct 2023 05:58:37 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133093 IP address blocks: 103.126.80.0/24 maxlen: 24 103.126.81.0/24 maxlen: 24 103.243.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Oct 19 05:58:37 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6530c58c-e0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6b:fd:11:f9:5d:e5:5b:7c:56:c2:ed:16:15: fb:93:9d:ca:ec:3e:d7:d3:3a:fd:a9:09:a4:57:bb: 63:7a:a7:5a:c9:a0:10:81:9c:ba:bc:83:bc:db:71: 66:39:05:10:bc:ba:c7:af:ab:fd:76:90:5d:bd:5b: 6a:0a:33:96:08:b8:2e:85:8f:d4:4b:58:99:e8:bf: 5a:49:b2:54:88:fd:0a:d7:53:ee:4e:6f:26:c2:45: 8e:1d:c6:60:b6:dc:ee:ec:e5:67:4e:cf:88:8c:be: 81:b4:b8:ad:e1:d9:fa:67:b5:99:04:a3:26:e6:8e: 04:7c:13:b2:60:31:d2:16:cd:b3:ea:15:92:6f:9b: 01:4f:41:7e:11:06:b8:49:1a:8a:6c:75:c0:96:95: 82:e7:9f:c2:ab:18:b0:23:c0:41:1b:79:6c:ce:ab: b2:be:b6:66:bf:ac:8f:d1:d0:5e:bf:01:2f:1c:5e: 63:61:9e:f8:02:ba:21:02:00:de:90:e2:4f:a1:23: 24:d6:75:e3:8e:0a:f8:ce:3d:a0:74:8c:ef:47:4c: d6:61:b1:47:d9:76:ee:4c:05:eb:c7:06:53:2f:ad: bf:f4:bc:3f:45:61:be:d3:b3:4b:7f:0f:24:33:b5: 03:db:8d:c2:22:74:18:04:8c:19:f0:67:b5:eb:04: 4c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E0:02:7F:08:0B:58:8D:DE:BD:69:3E:EC:73:32:9D:2C:DC:0E:D1 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.80.0/23 103.243.17.0/24 Signature Algorithm: sha256WithRSAEncryption 89:69:e8:5f:1b:b7:b9:9b:35:e4:af:88:c7:42:bc:33:89:96: a0:d5:95:d6:28:85:ed:2e:17:c1:7c:e8:3a:94:f7:bb:c0:62: 85:40:63:4f:c8:63:56:73:16:ef:24:aa:9f:de:97:05:b3:f8: 4b:73:2f:a7:89:bf:ea:21:49:68:34:0e:66:b6:30:fa:45:f0: 58:86:5f:91:5f:92:80:57:f1:01:a4:2e:2c:94:0e:52:fa:30: 63:9a:cc:e1:85:05:3f:ce:00:24:8b:fd:4b:d1:48:9f:1c:19: 2b:1f:bf:59:76:6b:f9:c2:bc:80:3e:62:84:b0:2e:0f:ef:96: 99:bd:ed:32:75:6b:56:dc:37:c6:52:47:f8:63:e8:1c:56:1b: fd:3a:da:65:d8:d7:4e:44:3b:70:0b:22:8a:52:c6:0c:92:4e: d3:21:27:7d:24:10:76:b0:94:bb:ff:6b:84:84:3d:30:37:a4: ec:04:e3:d8:59:e2:b9:82:a1:b6:4a:c4:30:07:f5:05:e8:72: c8:10:0f:38:0f:88:1c:03:46:ad:3c:c2:09:c2:29:dd:dc:fd: 26:56:fa:65:d2:73:49:f9:d7:91:63:6e:86:6e:58:61:0b:35: db:9e:d3:10:42:f8:79:df:2e:08:07:d0:a7:cb:58:fc:db:6c: 9d:c8:b1:13 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REREMTExMC8GA1UEBRMoMjE2QUQxRDc1QTkzRTAzN0FFOTRGNkM5MTg5NkQyRDU4 MkQ4RkY1NDAeFw0yMzEwMTkwNTU4MzdaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzBjNThjLWUwZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDra/0R+V3lW3xWwu0WFfuTncrsPtfTOv2pCaRXu2N6p1rJoBCBnLq8g7zbcWY5 BRC8usevq/12kF29W2oKM5YIuC6Fj9RLWJnov1pJslSI/QrXU+5ObybCRY4dxmC2 3O7s5WdOz4iMvoG0uK3h2fpntZkEoybmjgR8E7JgMdIWzbPqFZJvmwFPQX4RBrhJ GopsdcCWlYLnn8KrGLAjwEEbeWzOq7K+tma/rI/R0F6/AS8cXmNhnvgCuiECAN6Q 4k+hIyTWdeOOCvjOPaB0jO9HTNZhsUfZdu5MBevHBlMvrb/0vD9FYb7Ts0t/DyQz tQPbjcIidBgEjBnwZ7XrBEyvAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU++ACfwgL WI3evWk+7HMynSzcDtEwHwYDVR0jBBgwFoAUIWrR11qT4DeulPbJGJbS1YLY/1Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEREQxLzY4QzFENDk2M0JE MDExRUU4QkFDMzUxQUM0RjlBRTAyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8x US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVdyUjExcVQ0RGV1bFBiSkdKYlMxWUxZXzFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi8yN0RCMzc2ODNC RDIxMUVFODA5NDM1NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWd+UAMEAGfzETANBgkqhkiG9w0BAQsFAAOCAQEAiWnoXxu3 uZs15K+Ix0K8M4mWoNWV1iiF7S4XwXzoOpT3u8BihUBjT8hjVnMW7ySqn96XBbP4 S3Mvp4m/6iFJaDQOZrYw+kXwWIZfkV+SgFfxAaQuLJQOUvowY5rM4YUFP84AJIv9 S9FInxwZKx+/WXZr+cK8gD5ihLAuD++Wmb3tMnVrVtw3xlJH+GPoHFYb/TraZdjX TkQ7cAsiilLGDJJO0yEnfSQQdrCUu/9rhIQ9MDek7ATj2FniuYKhtkrEMAf1Behy yBAPOA+IHANGrTzCCcIp3dz9Jlb6ZdJzSfnXkWNuhm5YYQs1257TEEL4ed8uCAfQ p8tY/NtsncixEw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:37 2024 by rpki-client on console-ams.rpki-client.org