$ rpki-client -vvf rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/27DCF5D6EBAC11EAA7A0FB1FC4F9AE02.roa File: 27DCF5D6EBAC11EAA7A0FB1FC4F9AE02.roa (raw, json) Hash identifier: 4fzem4ahEMq6xHsoRwyaVn0YkdRGg0st3UIcj7ppJ2s= Subject key identifier: 8E:83:B9:42:D4:22:3C:2A:C5:06:78:31:14:B3:0C:AA:D2:E2:82:2B Certificate issuer: /CN=A91495CF/serialNumber=BC89472B2FF5349E4C6A8AB099CEF8E68DD7B995 Certificate serial: 0757 Authority key identifier: BC:89:47:2B:2F:F5:34:9E:4C:6A:8A:B0:99:CE:F8:E6:8D:D7:B9:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIlHKy_1NJ5Maoqwmc745o3XuZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/27DCF5D6EBAC11EAA7A0FB1FC4F9AE02.roa Signing time: Sat 24 Aug 2024 21:49:49 +0000 ROA not before: Sat 24 Aug 2024 21:49:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140986 IP address blocks: 103.154.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/vIlHKy_1NJ5Maoqwmc745o3XuZU.crl rsync://rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/vIlHKy_1NJ5Maoqwmc745o3XuZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIlHKy_1NJ5Maoqwmc745o3XuZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91495CF/serialNumber=BC89472B2FF5349E4C6A8AB099CEF8E68DD7B995 Validity Not Before: Aug 24 21:49:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca557d-5483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:16:56:d8:c3:f3:3e:7e:39:f1:b4:53:b3: 48:db:a1:88:1d:b3:ef:4b:a1:d5:93:9f:90:a1:08: 71:8f:cc:0e:3e:c1:da:14:42:d9:f2:f0:6f:95:2d: f0:7b:8d:b1:e7:ad:6b:5b:57:69:3b:c4:f2:97:c4: e0:b7:40:97:fa:62:1b:86:9b:93:b7:9b:9a:51:06: d7:d6:96:9f:77:38:0d:c2:73:83:da:1e:51:8e:9e: 71:9a:7d:50:4a:ca:cf:f9:c4:07:dd:76:27:09:41: 46:16:3c:6c:e6:74:24:d5:4d:8a:c5:4c:dd:7a:37: f0:a6:3c:32:59:ca:02:3b:17:ff:4e:70:f3:2e:da: 7b:9b:96:26:ff:77:df:f2:28:81:fe:fd:7d:50:32: 4d:39:82:c7:92:18:df:47:88:15:45:96:e6:1c:da: 1b:21:70:e6:90:9c:c1:bd:43:6f:60:2a:3f:c8:ae: 63:15:db:e0:33:58:8f:3c:3d:3c:be:38:0a:54:63: bc:05:de:24:c0:98:32:db:4d:a4:0b:80:78:fd:19: c8:2b:92:63:fc:c2:1c:90:f0:b1:cd:ef:3f:51:14: 55:75:c4:fa:00:8a:89:26:33:bb:53:1b:ac:ea:5b: c9:2e:5e:c8:b8:f6:a7:c7:0b:ca:03:ad:20:a1:f8: c1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:83:B9:42:D4:22:3C:2A:C5:06:78:31:14:B3:0C:AA:D2:E2:82:2B X509v3 Authority Key Identifier: keyid:BC:89:47:2B:2F:F5:34:9E:4C:6A:8A:B0:99:CE:F8:E6:8D:D7:B9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/vIlHKy_1NJ5Maoqwmc745o3XuZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIlHKy_1NJ5Maoqwmc745o3XuZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91495CF/2A51069CEBAA11EAABA4D11CC4F9AE02/27DCF5D6EBAC11EAA7A0FB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.98.0/24 Signature Algorithm: sha256WithRSAEncryption c1:e4:34:09:10:b8:ad:73:29:8e:e1:b9:07:a1:d2:04:3a:be: 6e:bb:a8:a5:c3:8f:21:cc:8a:f8:c2:34:39:7d:9a:41:d5:dd: 9e:6d:a0:35:e9:3c:cf:49:2d:c3:f1:e7:76:6e:18:8e:39:9b: 2e:a1:31:d9:93:1a:fc:86:71:77:09:8e:86:3f:a1:80:51:ea: 6d:85:3a:4c:7a:14:cb:c1:49:5c:20:4d:3b:1a:99:1e:44:9e: d3:3c:93:f3:95:5f:67:cb:38:55:e3:08:3d:f3:3d:c2:3f:8b: dd:5f:87:4a:1f:13:d2:0f:1c:62:c7:c3:c8:d4:68:4b:4c:f2: 71:f6:c9:05:d2:1e:ca:1d:72:bb:48:b5:dd:a2:b1:49:45:b1: 57:06:c2:ed:7c:c3:99:71:5e:8c:60:34:f4:3f:d1:42:ee:3c: 7f:49:71:c0:5f:ac:fb:a3:a6:1e:6a:ee:a5:a9:93:2e:b4:b9: bb:5a:c1:74:ca:07:9c:3a:80:32:63:52:a6:a0:05:17:3b:6f: d2:dd:8f:aa:81:32:29:5f:d5:e6:9e:26:d9:c5:52:15:9a:36: d2:71:e5:0c:96:13:46:7b:1c:52:22:b0:bf:59:1b:ea:f2:23: b7:84:25:2c:42:27:b4:7e:56:06:be:13:ca:ff:72:d8:ce:a8: 4c:11:45:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk1Q0YxMTAvBgNVBAUTKEJDODk0NzJCMkZGNTM0OUU0QzZBOEFCMDk5Q0VGOEU2 OEREN0I5OTUwHhcNMjQwODI0MjE0OTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhNTU3ZC01NDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0icWVtjD8z5+OfG0U7NI26GIHbPvS6HVk5+QoQhxj8wOPsHaFELZ8vBvlS3w e42x561rW1dpO8Tyl8Tgt0CX+mIbhpuTt5uaUQbX1pafdzgNwnOD2h5Rjp5xmn1Q SsrP+cQH3XYnCUFGFjxs5nQk1U2KxUzdejfwpjwyWcoCOxf/TnDzLtp7m5Ym/3ff 8iiB/v19UDJNOYLHkhjfR4gVRZbmHNobIXDmkJzBvUNvYCo/yK5jFdvgM1iPPD08 vjgKVGO8Bd4kwJgy202kC4B4/RnIK5Jj/MIckPCxze8/URRVdcT6AIqJJjO7Uxus 6lvJLl7IuPanxwvKA60gofjB4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFI6DuULU IjwqxQZ4MRSzDKrS4oIrMB8GA1UdIwQYMBaAFLyJRysv9TSeTGqKsJnO+OaN17mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTVDRi8yQTUxMDY5Q0VC QUExMUVBQUJBNEQxMUNDNEY5QUUwMi92SWxIS3lfMU5KNU1hb3F3bWM3NDVvM1h1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJbEhLeV8xTko1TWFvcXdtYzc0NW8zWHVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDk1Q0YvMkE1MTA2OUNFQkFBMTFFQUFCQTREMTFDQzRGOUFFMDIvMjdEQ0Y1RDZF QkFDMTFFQUE3QTBGQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmmIwDQYJKoZIhvcNAQELBQADggEBAMHkNAkQuK1zKY7h uQeh0gQ6vm67qKXDjyHMivjCNDl9mkHV3Z5toDXpPM9JLcPx53ZuGI45my6hMdmT GvyGcXcJjoY/oYBR6m2FOkx6FMvBSVwgTTsamR5EntM8k/OVX2fLOFXjCD3zPcI/ i91fh0ofE9IPHGLHw8jUaEtM8nH2yQXSHsodcrtItd2isUlFsVcGwu18w5lxXoxg NPQ/0ULuPH9JccBfrPujph5q7qWpky60ubtawXTKB5w6gDJjUqagBRc7b9Ldj6qB Milf1eaeJtnFUhWaNtJx5QyWE0Z7HFIisL9ZG+ryI7eEJSxCJ7R+Vga+E8r/ctjO qEwRRck= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org