$ rpki-client -vvf rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3CB9EF84BF9511EEAD184E59C4F9AE02.roa File: 3CB9EF84BF9511EEAD184E59C4F9AE02.roa (raw, json) Hash identifier: 0E6kCAbBWjOzpnldz+3yyTPwXBQYeelPRq++GjN98pI= Subject key identifier: 20:27:EF:6B:8F:6D:34:4F:F5:E2:86:A3:70:94:08:C6:0C:E6:26:04 Certificate issuer: /CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Certificate serial: 2216 Authority key identifier: C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3CB9EF84BF9511EEAD184E59C4F9AE02.roa Signing time: Tue 30 Jan 2024 17:30:19 +0000 ROA not before: Tue 30 Jan 2024 17:30:19 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 979 IP address blocks: 103.27.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8726 (0x2216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Validity Not Before: Jan 30 17:30:19 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65b9322a-7b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:b8:f6:95:4c:d5:a7:d4:7a:36:c3:f9:1e: ab:c7:56:7e:28:19:28:f5:5d:46:ce:81:fa:e7:54: 7d:6b:bf:29:59:ba:0c:ea:44:e2:cd:81:88:67:17: 65:3e:a4:6b:39:8c:17:2a:1b:4c:bf:b7:16:ad:85: 3d:53:08:45:a3:ba:42:e9:52:c8:8a:0c:f2:2e:c4: ba:49:e5:c5:76:fa:d9:08:8b:d9:c2:9f:95:09:00: d7:e9:b5:03:a6:df:b8:58:33:92:15:4f:ec:61:ed: f6:ab:70:97:21:9e:a2:8b:2b:c2:45:73:05:6c:9a: 9c:a6:e0:b6:95:30:5f:fe:e4:1f:dd:a7:55:16:d6: b1:18:0b:fb:0c:8e:fe:77:80:c2:ed:2c:e5:e5:83: a4:3b:f5:ac:09:6d:0b:4c:24:61:e2:dc:1a:8d:5b: ae:4e:95:9b:d0:01:86:8f:f2:b3:a7:5e:d0:16:3a: d9:d5:d9:6b:85:b3:22:11:83:e9:6d:5c:46:ff:25: f0:30:81:48:83:c2:fa:62:23:b3:e5:24:8c:8e:f8: c3:c9:f0:66:e4:09:e2:09:f4:dc:b4:8a:b3:0e:20: bd:77:1a:51:8b:d9:b8:bc:16:21:4b:a5:1f:48:9d: fb:37:a0:b1:5e:8b:22:7b:9d:1e:0d:c7:d5:21:74: 85:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:27:EF:6B:8F:6D:34:4F:F5:E2:86:A3:70:94:08:C6:0C:E6:26:04 X509v3 Authority Key Identifier: keyid:C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3CB9EF84BF9511EEAD184E59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.78.0/23 Signature Algorithm: sha256WithRSAEncryption 62:d1:a7:d3:c6:19:37:47:3d:5a:62:61:dd:f2:b4:8d:b8:96: 7a:4c:ed:30:2e:8c:89:07:88:e8:05:f9:86:a6:c8:62:81:f1: 11:aa:b3:64:90:60:60:88:9a:dd:de:30:32:32:bd:11:b8:48: ec:3e:ed:44:89:57:18:e7:08:b2:fd:59:b7:38:77:a8:00:87: c4:4d:b0:14:1b:23:3b:70:b4:6d:3c:d7:f0:08:19:c4:d5:20: 2f:b8:0f:32:03:c3:ed:e0:d5:ee:26:f3:3c:b0:28:70:aa:d5: db:ae:ee:78:da:cd:fd:55:e3:28:77:e3:49:ac:03:73:6e:c6: 96:06:9a:33:04:19:d3:28:af:79:9b:df:3a:2c:4c:56:58:2c: d0:4e:90:97:03:29:c0:2d:a2:6d:e5:81:49:86:91:48:39:15: d4:f3:25:ad:69:12:ec:f7:fb:57:71:d8:4c:62:02:7f:ea:4a: 8a:2f:39:c8:fc:ef:63:75:2c:d0:e8:b7:4b:e8:7a:df:2d:55: 3f:36:d1:18:2d:e3:9a:35:c9:32:ce:a0:1e:61:b1:50:3f:f9: 7e:43:67:53:94:21:ca:13:51:7b:e1:e5:8b:2f:fb:d8:7c:33: 6c:f6:e6:33:1d:53:6b:06:83:26:58:72:fd:f9:79:f9:3f:11: a9:47:74:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxQ0UxMTAvBgNVBAUTKEM2QkY4OTcwOThBRjQ0ODZBNTRFMjhCQTNFRkY1MzVE NDUyODk0MTEwHhcNMjQwMTMwMTczMDE5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MzIyYS03YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy+49pVM1afUejbD+R6rx1Z+KBko9V1GzoH651R9a78pWboM6kTizYGIZxdl PqRrOYwXKhtMv7cWrYU9UwhFo7pC6VLIigzyLsS6SeXFdvrZCIvZwp+VCQDX6bUD pt+4WDOSFU/sYe32q3CXIZ6iiyvCRXMFbJqcpuC2lTBf/uQf3adVFtaxGAv7DI7+ d4DC7Szl5YOkO/WsCW0LTCRh4twajVuuTpWb0AGGj/Kzp17QFjrZ1dlrhbMiEYPp bVxG/yXwMIFIg8L6YiOz5SSMjvjDyfBm5AniCfTctIqzDiC9dxpRi9m4vBYhS6Uf SJ37N6CxXosie50eDcfVIXSFswIDAQABo4IClTCCApEwHQYDVR0OBBYEFCAn72uP bTRP9eKGo3CUCMYM5iYEMB8GA1UdIwQYMBaAFMa/iXCYr0SGpU4ouj7/U11FKJQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFDRS85M0JBODUzQTk3 RjAxMUU1QjkyMDEwNkFDNEY5QUUwMi94ci1KY0ppdlJJYWxUaWk2UHY5VFhVVW9s QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hyLUpjSml2UklhbFRpaTZQdjlUWFVVb2xCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAxQ0UvOTNCQTg1M0E5N0YwMTFFNUI5MjAxMDZBQzRGOUFFMDIvM0NCOUVGODRC Rjk1MTFFRUFEMTg0RTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnG04wDQYJKoZIhvcNAQELBQADggEBAGLRp9PGGTdHPVpi Yd3ytI24lnpM7TAujIkHiOgF+YamyGKB8RGqs2SQYGCImt3eMDIyvRG4SOw+7USJ VxjnCLL9Wbc4d6gAh8RNsBQbIztwtG081/AIGcTVIC+4DzIDw+3g1e4m8zywKHCq 1duu7njazf1V4yh340msA3NuxpYGmjMEGdMor3mb3zosTFZYLNBOkJcDKcAtom3l gUmGkUg5FdTzJa1pEuz3+1dx2ExiAn/qSoovOcj872N1LNDot0voet8tVT820Rgt 45o1yTLOoB5hsVA/+X5DZ1OUIcoTUXvh5Ysv+9h8M2z25jMdU2sGgyZYcv35efk/ EalHdO4= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:18 2024 by rpki-client on console-ams.rpki-client.org