$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa File: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (raw, json) Hash identifier: n/f1uTeEyARI3uLFtA8qgF3ZldlUFB3TY49ssy/Ns3A= Subject key identifier: 3D:4C:19:12:1E:5E:AC:63:4B:54:81:0E:FC:72:20:5A:86:92:5C:82 Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0BC6 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa Signing time: Wed 24 Jul 2024 18:56:43 +0000 ROA not before: Wed 24 Jul 2024 18:56:43 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132898 IP address blocks: 103.27.216.0/22 maxlen: 22 103.27.216.0/24 maxlen: 24 103.27.217.0/24 maxlen: 24 103.27.218.0/24 maxlen: 24 103.27.219.0/24 maxlen: 24 2407:7f00::/32 maxlen: 32 2407:7f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Jul 24 18:56:43 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a14e6b-81c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:92:70:00:c7:ca:e6:af:9b:75:3f:1d:05: e6:33:ee:67:cb:d0:17:07:03:3d:31:b9:be:7e:44: 89:e8:e7:3a:ee:06:3f:51:6c:0c:51:76:e1:80:ec: 8b:44:ea:17:23:61:4c:28:7a:a2:c4:4d:55:f7:3f: 1f:23:13:60:80:27:36:86:04:8d:67:52:e4:99:63: 74:83:21:ef:c9:0a:d0:1b:f4:c6:30:cf:fe:f1:6d: 69:2c:36:50:20:bb:a3:52:39:af:09:5d:d2:f1:c4: 7a:a4:b1:13:9f:e7:ee:3f:c0:7c:82:5b:39:72:a1: 5a:74:38:23:9c:17:10:67:48:b8:c6:1e:c3:27:e4: 38:74:1f:9f:85:81:b2:e3:52:fc:8e:a6:11:1f:db: c2:b0:48:81:f8:85:66:95:1e:08:46:79:d0:38:39: db:2f:46:fe:20:67:ca:d6:32:89:b1:b9:92:2e:a1: 46:26:47:f0:4c:96:cb:4d:9a:20:ee:eb:5c:40:17: e9:15:e9:77:53:e9:b5:14:f4:1c:fb:3f:72:1f:43: 26:0b:94:ee:48:d9:46:c2:f8:35:06:6b:b7:d6:21: b3:33:51:f6:7b:a9:95:51:fb:08:ab:b0:06:24:8a: ff:31:de:b0:1e:17:2a:cc:79:9d:0d:18:f6:de:44: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4C:19:12:1E:5E:AC:63:4B:54:81:0E:FC:72:20:5A:86:92:5C:82 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/7665CD0AFF7011E99CDC306AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.216.0/22 IPv6: 2407:7f00::/32 Signature Algorithm: sha256WithRSAEncryption 6c:ee:13:09:c8:44:cb:fc:4e:db:67:34:a0:2a:41:9f:40:13: be:75:1a:8a:6a:18:33:00:61:9d:4f:a5:c8:05:8a:93:dc:bd: 67:9e:6f:3b:d1:ec:4f:19:01:a8:ea:1f:ae:19:bc:fd:61:0e: 2d:25:5b:fe:41:5b:09:b8:66:89:13:f0:28:97:73:bc:16:31: ed:1b:fe:69:d3:be:de:f3:63:c4:08:9f:75:15:40:a8:06:16: 07:95:e1:6c:21:80:18:b6:5b:cf:d0:12:38:a7:55:00:79:09: 2e:a9:43:3d:05:9e:80:1c:5e:de:27:33:96:89:dc:79:7d:c4: 25:a5:c9:84:76:cd:d4:0e:f6:dc:f3:b6:72:a6:d4:e0:4e:7d: 6f:1c:c2:20:42:9e:25:9e:3e:ab:a5:3d:b1:f8:1a:23:65:09: 40:fb:92:8e:c9:df:5a:87:10:67:2f:6c:47:a1:15:12:9a:39: da:6e:ea:5f:e3:bf:23:c8:ea:e4:96:c1:e0:4c:ac:db:68:95: ae:0b:bf:31:97:13:90:f0:d7:b8:df:83:be:99:3a:c5:77:93: db:48:8a:47:e1:bf:8d:2f:44:b9:17:49:f7:3c:11:5a:04:45: 45:af:a4:95:c5:86:3d:37:b7:a6:f4:ca:f3:f6:df:fd:e5:46: 79:1a:92:c0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjQwNzI0MTg1NjQzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExNGU2Yi04MWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAOScADHyuavm3U/HQXmM+5ny9AXBwM9Mbm+fkSJ6Oc67gY/UWwMUXbhgOyL ROoXI2FMKHqixE1V9z8fIxNggCc2hgSNZ1LkmWN0gyHvyQrQG/TGMM/+8W1pLDZQ ILujUjmvCV3S8cR6pLETn+fuP8B8gls5cqFadDgjnBcQZ0i4xh7DJ+Q4dB+fhYGy 41L8jqYRH9vCsEiB+IVmlR4IRnnQODnbL0b+IGfK1jKJsbmSLqFGJkfwTJbLTZog 7utcQBfpFel3U+m1FPQc+z9yH0MmC5TuSNlGwvg1Bmu31iGzM1H2e6mVUfsIq7AG JIr/Md6wHhcqzHmdDRj23kQvjQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD1MGRIe XqxjS1SBDvxyIFqGklyCMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFNjYvNzA2MzlFRkNGRjZFMTFFOTg1QTg4QzY3QzRGOUFFMDIvNzY2NUNEMEFG RjcwMTFFOTlDREMzMDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnG9gwDQQCAAIwBwMFACQHfwAwDQYJKoZIhvcNAQELBQAD ggEBAGzuEwnIRMv8TttnNKAqQZ9AE751GopqGDMAYZ1PpcgFipPcvWeebzvR7E8Z AajqH64ZvP1hDi0lW/5BWwm4ZokT8CiXc7wWMe0b/mnTvt7zY8QIn3UVQKgGFgeV 4WwhgBi2W8/QEjinVQB5CS6pQz0FnoAcXt4nM5aJ3Hl9xCWlyYR2zdQO9tzztnKm 1OBOfW8cwiBCniWePqulPbH4GiNlCUD7ko7J31qHEGcvbEehFRKaOdpu6l/jvyPI 6uSWweBMrNtola4LvzGXE5Dw17jfg76ZOsV3k9tIikfhv40vRLkXSfc8EVoERUWv pJXFhj03t6b0yvP23/3lRnkaksA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org