$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa File: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (raw, json) Hash identifier: dM9jHQwt1HX4WQJ8N+BuYBJKKLyzpY5xcV+r1/6T9kU= Subject key identifier: 6D:EE:9F:F5:05:03:E8:9A:02:D7:94:28:63:77:2C:24:E2:3A:A4:8B Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0AF5 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa Signing time: Thu 22 Jun 2023 19:49:11 +0000 ROA not before: Thu 22 Jun 2023 19:49:11 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132898 IP address blocks: 103.27.216.0/22 maxlen: 22 103.27.216.0/24 maxlen: 24 103.27.217.0/24 maxlen: 24 103.27.218.0/24 maxlen: 24 103.27.219.0/24 maxlen: 24 2407:7f00::/32 maxlen: 32 2407:7f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Jun 22 19:49:11 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6494a5b7-99bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7e:4d:3b:0b:81:f8:52:dc:01:94:a7:e5:ff: b3:9e:82:0b:7d:46:f8:cb:cd:67:36:1d:bd:4b:e7: 75:ce:55:4b:5f:5e:c9:af:65:39:5a:09:48:69:eb: 17:a6:c1:1c:e9:5f:95:11:6e:7d:9e:a9:72:8a:3a: d4:41:65:6c:ed:19:81:20:ca:c8:70:42:0f:e3:a5: be:5e:27:68:a2:42:4c:81:56:56:c1:91:18:07:f6: 3d:95:b3:61:c3:07:82:b2:be:68:9a:d1:a9:3b:f0: 1d:87:6c:7f:61:a8:bf:ce:9e:f2:7c:75:09:bf:60: 71:f7:9f:e2:28:71:ff:83:23:ce:f0:d9:62:8d:db: 55:26:e8:4a:99:71:fc:a8:ea:ef:20:3a:ac:f5:fe: 77:7b:4a:ea:9f:01:74:8c:f0:3b:83:13:d5:fd:94: 50:35:d6:41:24:d6:33:14:b7:f6:27:9b:ca:ba:93: de:7e:53:ea:5d:a4:5c:c8:53:19:65:66:2e:d4:50: 22:df:fd:24:ca:46:88:36:0b:51:83:35:b8:cf:93: 2d:13:68:ad:3c:ba:f3:4b:83:d3:62:0f:f7:9e:7f: b5:9d:ca:f2:dc:1a:be:53:8c:2b:db:a0:b9:ba:e6: 9c:c3:41:a5:21:78:cd:58:f0:de:01:7e:a7:88:47: 0d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EE:9F:F5:05:03:E8:9A:02:D7:94:28:63:77:2C:24:E2:3A:A4:8B X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.216.0/22 IPv6: 2407:7f00::/32 Signature Algorithm: sha256WithRSAEncryption 0d:e4:e4:47:3e:0b:a3:9c:14:fc:d7:8b:1f:cf:6a:9b:30:76: 11:b8:e4:14:85:7e:43:2f:bb:39:f8:6e:86:c1:c7:6e:53:19: a6:f5:c9:fc:4a:6a:75:85:35:62:bf:2a:51:48:2c:f6:f8:81: 70:20:99:b7:86:47:7d:ce:a9:03:d7:23:9d:10:fa:df:3b:e9: 10:d0:f5:2a:aa:c0:f7:ff:87:f6:36:58:51:6f:df:a4:5c:d7: 8d:25:e7:0f:b7:26:ad:d2:43:fa:47:7a:f9:7a:f4:e9:c6:43: 04:75:b5:af:21:d6:27:dd:1c:35:ce:4b:99:cc:16:24:0f:47: ce:a2:d7:e4:4f:6e:7b:de:d9:06:7b:8d:8e:2f:4d:33:ff:7f: 0a:a6:87:c3:a4:10:15:dc:53:be:3e:b6:c9:04:80:14:74:a7: 0e:ca:3a:4d:e6:45:0c:47:f8:48:26:ab:6f:52:53:29:ab:4e: 24:48:65:b4:7c:57:ab:09:39:f6:45:5f:1d:19:bc:93:6a:9b: 4b:82:c2:e6:cb:5f:20:ab:a1:0f:06:b6:30:3a:84:47:5c:53: b5:ec:48:07:f4:08:8c:b6:ec:aa:a1:0d:4f:f7:4e:70:45:33: f9:2d:1a:84:a6:bb:d5:2f:f0:b7:38:23:1e:0f:35:0a:98:b7: 77:71:a3:61 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjMwNjIyMTk0OTExWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0YTViNy05OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0X5NOwuB+FLcAZSn5f+znoILfUb4y81nNh29S+d1zlVLX17Jr2U5WglIaesX psEc6V+VEW59nqlyijrUQWVs7RmBIMrIcEIP46W+XidookJMgVZWwZEYB/Y9lbNh wweCsr5omtGpO/Adh2x/Yai/zp7yfHUJv2Bx95/iKHH/gyPO8NlijdtVJuhKmXH8 qOrvIDqs9f53e0rqnwF0jPA7gxPV/ZRQNdZBJNYzFLf2J5vKupPeflPqXaRcyFMZ ZWYu1FAi3/0kykaINgtRgzW4z5MtE2itPLrzS4PTYg/3nn+1ncry3Bq+U4wr26C5 uuacw0GlIXjNWPDeAX6niEcN9wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG3un/UF A+iaAteUKGN3LCTiOqSLMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFNjYvNzA2MzlFRkNGRjZFMTFFOTg1QTg4QzY3QzRGOUFFMDIvNzY2NUNEMEFG RjcwMTFFOTlDREMzMDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnG9gwDQQCAAIwBwMFACQHfwAwDQYJKoZIhvcNAQELBQAD ggEBAA3k5Ec+C6OcFPzXix/PapswdhG45BSFfkMvuzn4bobBx25TGab1yfxKanWF NWK/KlFILPb4gXAgmbeGR33OqQPXI50Q+t876RDQ9SqqwPf/h/Y2WFFv36Rc140l 5w+3Jq3SQ/pHevl69OnGQwR1ta8h1ifdHDXOS5nMFiQPR86i1+RPbnve2QZ7jY4v TTP/fwqmh8OkEBXcU74+tskEgBR0pw7KOk3mRQxH+Egmq29SUymrTiRIZbR8V6sJ OfZFXx0ZvJNqm0uCwubLXyCroQ8GtjA6hEdcU7XsSAf0CIy27KqhDU/3TnBFM/kt GoSmu9Uv8Lc4Ix4PNQqYt3dxo2E= -----END CERTIFICATE-----Generated at Tue May 14 19:55:11 2024 by rpki-client on console-fra.rpki-client.org