$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/12CC909ADD9311EC8E83E43CC4F9AE02.roa File: 12CC909ADD9311EC8E83E43CC4F9AE02.roa (raw, json) Hash identifier: Y7UV+k09meGURzISNsRlvSdU77HN7nqNeILU5SILIrY= Subject key identifier: 82:17:DF:94:0B:61:D3:85:63:AA:24:FD:C5:E9:44:62:91:A1:3B:7B Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 052A Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/12CC909ADD9311EC8E83E43CC4F9AE02.roa Signing time: Wed 31 Jul 2024 02:34:06 +0000 ROA not before: Wed 31 Jul 2024 02:34:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 63940 IP address blocks: 27.254.146.0/23 maxlen: 23 27.254.146.0/24 maxlen: 24 27.254.147.0/24 maxlen: 24 27.254.152.0/23 maxlen: 23 27.254.152.0/24 maxlen: 24 27.254.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1322 (0x52a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:34:06 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a29e-7c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ff:00:04:7b:a8:c3:7b:cd:11:d9:70:74:6a: ce:7a:32:45:d1:eb:9b:1e:45:ed:a0:08:45:0f:25: 6e:fb:1a:40:e6:9f:8f:e3:97:9e:f1:73:fc:8a:94: b6:20:e5:ff:13:f6:08:85:b3:64:fc:06:8d:26:73: 89:28:96:83:29:17:d6:ed:6b:e0:47:46:06:c3:7d: 8a:29:bf:67:bc:99:dd:93:41:d2:80:17:2c:db:2e: 6c:07:71:60:e3:04:aa:98:82:3b:11:86:d6:87:8d: 28:c3:65:27:8e:92:7b:55:9f:d9:81:5a:d3:e8:9d: 2f:33:d7:c5:2a:2b:49:da:74:78:3c:b1:bf:df:3e: 04:e3:fa:2b:78:6c:48:ec:b0:82:dd:58:3e:e7:8b: f6:b9:33:63:51:3d:c8:72:64:d3:35:1d:71:fe:19: 7a:85:e1:ad:8d:6d:0d:72:79:95:fd:59:4e:49:16: 4e:5f:17:cd:f2:43:b6:11:43:c3:50:6b:91:41:50: f2:dd:51:33:98:06:cd:2c:dc:a7:09:69:28:ec:c5: a2:b4:f1:c7:1c:ee:b4:93:05:60:3a:ed:7b:37:b6: 3b:87:79:f7:b3:d2:3f:05:b0:01:3b:03:0f:4f:8c: d7:4d:6d:78:c5:2a:07:6d:c7:c2:c2:67:97:e3:c9: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:17:DF:94:0B:61:D3:85:63:AA:24:FD:C5:E9:44:62:91:A1:3B:7B X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/12CC909ADD9311EC8E83E43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.146.0/23 27.254.152.0/23 Signature Algorithm: sha256WithRSAEncryption 36:82:d7:11:b0:ac:31:2b:d6:7c:7d:94:52:67:ea:eb:1b:9a: d5:09:d1:37:d0:c3:83:30:fb:87:f3:01:18:77:1b:a3:d4:4c: 26:95:9b:2c:0b:36:c9:67:04:ea:25:21:6f:12:40:c8:a7:e9: f0:ff:5c:ac:a3:d4:6a:c4:90:b0:e4:be:e9:08:e4:98:94:dd: 4a:99:60:9c:27:0f:d7:85:5d:90:5c:6f:15:de:82:5d:d1:32: 79:75:3e:0c:d1:0b:7e:04:a5:63:86:aa:0a:d2:1e:ff:ab:26: 91:14:ff:d1:6c:30:5f:8b:4d:7d:41:29:2c:3d:bb:2f:99:e2: da:b3:cc:2c:4f:f3:8e:6a:89:99:73:d4:76:c0:87:ff:18:4c: a3:96:0b:b9:fd:f6:66:a0:11:6b:af:26:75:3e:e5:2b:72:31: 9c:60:62:bc:f2:ea:fa:8a:75:4f:d6:a4:41:e5:9a:b4:fd:61: 49:51:ee:da:07:ba:8a:35:68:22:ff:9d:79:bd:70:f8:03:4b: e6:93:f7:e2:6e:7a:af:15:cb:24:6f:f7:fe:d2:a2:19:cb:25: 1d:aa:72:d1:2c:dd:81:46:0b:38:fd:3c:11:34:ac:f1:c4:2d: da:2d:76:18:10:ae:ea:ab:5d:a6:9b:ba:b4:8a:b7:59:d7:1b: 34:2f:28:0d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzNDA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI5ZS03YzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/8ABHuow3vNEdlwdGrOejJF0eubHkXtoAhFDyVu+xpA5p+P45ee8XP8ipS2 IOX/E/YIhbNk/AaNJnOJKJaDKRfW7WvgR0YGw32KKb9nvJndk0HSgBcs2y5sB3Fg 4wSqmII7EYbWh40ow2UnjpJ7VZ/ZgVrT6J0vM9fFKitJ2nR4PLG/3z4E4/oreGxI 7LCC3Vg+54v2uTNjUT3IcmTTNR1x/hl6heGtjW0NcnmV/VlOSRZOXxfN8kO2EUPD UGuRQVDy3VEzmAbNLNynCWko7MWitPHHHO60kwVgOu17N7Y7h3n3s9I/BbABOwMP T4zXTW14xSoHbcfCwmeX48mPAQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIIX35QL YdOFY6ok/cXpRGKRoTt7MB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMTJDQzkwOUFE RDkzMTFFQzhFODNFNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEb/pIDBAEb/pgwDQYJKoZIhvcNAQELBQADggEBADaC1xGw rDEr1nx9lFJn6usbmtUJ0TfQw4Mw+4fzARh3G6PUTCaVmywLNslnBOolIW8SQMin 6fD/XKyj1GrEkLDkvukI5JiU3UqZYJwnD9eFXZBcbxXegl3RMnl1PgzRC34EpWOG qgrSHv+rJpEU/9FsMF+LTX1BKSw9uy+Z4tqzzCxP845qiZlz1HbAh/8YTKOWC7n9 9magEWuvJnU+5StyMZxgYrzy6vqKdU/WpEHlmrT9YUlR7toHuoo1aCL/nXm9cPgD S+aT9+Jueq8VyyRv9/7SohnLJR2qctEs3YFGCzj9PBE0rPHELdotdhgQruqrXaab urSKt1nXGzQvKA0= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org