$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa File: 03C06766DC1211EC80AE816DC4F9AE02.roa (raw, json) Hash identifier: mEEKH95d+OgwXbrm1P5n8VIPEc83nHxYRt6EH7spnqg= Subject key identifier: F7:F0:CC:3F:4A:EF:0A:5B:9C:D3:55:D0:CC:3B:63:56:D2:E2:0F:79 Certificate issuer: /CN=A914C4ED/serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Certificate serial: 0253 Authority key identifier: 3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa Signing time: Wed 19 Jun 2024 04:14:14 +0000 ROA not before: Wed 19 Jun 2024 04:14:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 8220 IP address blocks: 27.110.0.0/20 maxlen: 20 27.110.16.0/22 maxlen: 22 2400:81e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED Validity Not Before: Jun 19 04:14:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66725b16-67ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:32:13:78:ef:d3:d2:85:53:98:20:47:f8:7e: 5c:ed:1f:e6:7f:b8:84:99:07:24:f6:d9:0c:64:7c: 6a:48:1f:3e:8c:28:5f:65:67:8e:2d:6d:47:71:72: a6:28:96:fb:7f:ad:b3:dc:3f:2d:06:7e:b9:ea:04: a7:1e:0d:ac:9d:57:bf:17:5c:54:33:04:80:1a:56: dc:46:8d:19:d5:c5:35:be:a3:e4:81:1d:f7:7b:9c: ae:e7:03:08:ad:49:59:50:32:10:2e:54:e4:78:07: 8a:8a:eb:8f:29:06:1e:8c:47:5f:e5:46:d2:1d:14: cc:b6:b9:92:53:94:92:cc:1b:30:46:9d:12:aa:e4: 92:e1:be:19:18:73:19:2d:78:b9:07:e5:de:16:8e: c6:9b:4d:9f:ad:f2:2b:a8:ce:34:22:e1:f8:23:4e: b9:47:19:15:0c:db:c8:77:06:6a:96:fb:c6:d2:35: 07:5a:d3:0c:ff:04:a6:df:53:d9:9c:b5:de:d2:12: 6f:c0:10:ed:78:ec:48:0a:ad:1c:4c:60:bb:21:a7: 08:42:d2:82:b1:89:9a:95:8c:e8:cb:77:78:73:96: 70:c4:7f:69:e2:6b:b9:5a:6d:2f:c4:78:11:1e:69: 9e:8c:8f:d6:15:66:32:05:75:b5:ba:8d:fa:26:ed: dc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F0:CC:3F:4A:EF:0A:5B:9C:D3:55:D0:CC:3B:63:56:D2:E2:0F:79 X509v3 Authority Key Identifier: keyid:3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.0.0-27.110.19.255 IPv6: 2400:81e0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:ea:5b:99:09:d2:27:21:90:57:48:52:8c:9a:60:87:a6:d8: 1d:16:9a:96:8e:39:36:54:c9:c0:f4:2c:8c:8a:81:85:e1:2b: 25:f6:0c:20:16:e3:24:99:4a:2e:c6:73:0c:39:ec:e0:13:70: 2e:24:49:df:e2:d4:49:71:04:3e:ea:6c:9a:97:5f:8e:70:e3: 35:d4:68:86:85:d8:c6:ba:e0:77:21:bf:19:10:4c:e0:21:86: 23:64:03:72:a6:86:9c:25:00:fd:0f:b9:9f:b0:62:17:a3:11: 16:af:80:2f:e9:7a:25:08:fd:11:3d:41:32:3c:70:55:42:95: b1:76:96:d3:8d:90:de:78:cf:83:7a:e8:9f:22:7f:50:40:6e: 48:2c:3f:fd:82:f0:b6:8f:97:e1:c1:ef:3d:c0:20:a6:07:ae: 11:c1:73:bc:28:70:29:00:dc:60:2c:f1:a1:12:31:53:b6:d7: 9c:b3:91:36:9a:eb:e4:46:56:53:84:33:b3:04:b6:be:fd:6c: a0:74:ac:c5:73:97:fd:11:48:12:53:47:84:47:3f:b3:26:5f: df:92:a4:f8:a2:5c:0c:e3:28:47:2d:29:0e:26:a9:f0:2b:f6: c2:8f:a4:54:f0:ef:ea:3b:ac:78:a4:6b:f3:b7:7c:c0:4a:00: 08:2a:c1:ec -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKDNCM0Q2QkE5RkJFRjQyNEFGQUJGRDJCQTMwQzhCODU3 RDQ1OUYwOUMwHhcNMjQwNjE5MDQxNDE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyNWIxNi02N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTITeO/T0oVTmCBH+H5c7R/mf7iEmQck9tkMZHxqSB8+jChfZWeOLW1HcXKm KJb7f62z3D8tBn656gSnHg2snVe/F1xUMwSAGlbcRo0Z1cU1vqPkgR33e5yu5wMI rUlZUDIQLlTkeAeKiuuPKQYejEdf5UbSHRTMtrmSU5SSzBswRp0SquSS4b4ZGHMZ LXi5B+XeFo7Gm02frfIrqM40IuH4I065RxkVDNvIdwZqlvvG0jUHWtMM/wSm31PZ nLXe0hJvwBDteOxICq0cTGC7IacIQtKCsYmalYzoy3d4c5ZwxH9p4mu5Wm0vxHgR HmmejI/WFWYyBXW1uo36Ju3cdQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFPfwzD9K 7wpbnNNV0Mw7Y1bS4g95MB8GA1UdIwQYMBaAFDs9a6n770JK+r/SujDIuFfUWfCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC9CMzVFQjUwQ0RC RjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFrcjZ2OUs2TU1pNFY5Ulo4 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL096MXJxZnZ2UWtyNnY5SzZNTWk0VjlSWjhKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RUQvQjM1RUI1MENEQkY4MTFFQzkzMjQwRTVEQzRGOUFFMDIvMDNDMDY3NjZE QzEyMTFFQzgwQUU4MTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBMEAgABMA0wCwMDARtuAwQCG24QMA0EAgACMAcDBQAkAIHgMA0GCSqGSIb3 DQEBCwUAA4IBAQAe6luZCdInIZBXSFKMmmCHptgdFpqWjjk2VMnA9CyMioGF4Ssl 9gwgFuMkmUouxnMMOezgE3AuJEnf4tRJcQQ+6myal1+OcOM11GiGhdjGuuB3Ib8Z EEzgIYYjZANypoacJQD9D7mfsGIXoxEWr4Av6XolCP0RPUEyPHBVQpWxdpbTjZDe eM+DeuifIn9QQG5ILD/9gvC2j5fhwe89wCCmB64RwXO8KHApANxgLPGhEjFTttec s5E2muvkRlZThDOzBLa+/WygdKzFc5f9EUgSU0eERz+zJl/fkqT4olwM4yhHLSkO JqnwK/bCj6RU8O/qO6x4pGvzt3zASgAIKsHs -----END CERTIFICATE-----Generated at Sun Feb 16 20:44:17 2025 by rpki-client