$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/27860760C02611EE9009E632C4F9AE02.roa File: 27860760C02611EE9009E632C4F9AE02.roa (raw, json) Hash identifier: 5ie3yAgFLgV2PWsdOz7HBUWoq7YpPlURMmBy71kJZ4c= Subject key identifier: 67:45:B0:1A:9F:30:F6:51:85:34:D0:9A:FD:F1:50:41:5E:23:07:49 Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0729 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/27860760C02611EE9009E632C4F9AE02.roa Signing time: Wed 31 Jan 2024 10:49:42 +0000 ROA not before: Wed 31 Jan 2024 10:49:42 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58889 IP address blocks: 45.64.136.0/24 maxlen: 24 45.64.138.0/24 maxlen: 24 2401:1980::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Feb 2024 07:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Jan 31 10:49:42 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65ba25c6-cd84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:79:6c:42:b4:8c:42:ee:27:a9:e7:f9:8d: 4e:06:5f:c4:15:39:32:20:51:00:42:c1:5a:f2:c2: bf:e6:f2:e1:5c:e0:6f:b6:81:c2:6f:aa:7e:e5:33: c2:d8:67:30:6d:02:97:e4:48:47:0a:4a:84:fa:db: e6:cc:57:03:56:98:d6:8f:c4:c0:e0:32:9f:8b:fb: 28:24:1b:8a:5b:7d:23:a7:24:d7:04:02:42:e5:36: 71:14:cb:8c:90:f1:27:0b:f1:57:15:bc:8d:2f:f3: 7b:fd:ff:10:21:71:bd:ca:2e:93:57:c6:36:f9:23: 9b:f2:16:83:b1:c6:d4:e5:77:42:d7:47:0b:b2:16: 70:1b:aa:a3:8b:c7:e0:79:80:7b:be:a7:3c:4b:ef: 11:76:8e:13:17:aa:61:64:a9:11:13:a7:30:d2:84: dc:6b:b0:86:d7:8d:54:bf:c8:f3:4b:8b:50:c2:56: 64:6d:bf:81:75:37:c1:29:5d:65:2e:1c:70:e3:93: c5:95:2d:d0:a7:30:b1:5b:a1:13:28:2a:ad:e0:e2: af:96:32:d7:c8:ec:07:71:17:82:06:0c:53:1d:10: d6:ef:aa:55:33:da:c8:0b:2f:9b:57:09:4e:02:8c: 62:ce:e4:9e:32:a9:02:c9:f2:ee:74:d8:6a:0e:1c: 2a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:45:B0:1A:9F:30:F6:51:85:34:D0:9A:FD:F1:50:41:5E:23:07:49 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/27860760C02611EE9009E632C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.136.0/24 45.64.138.0/24 IPv6: 2401:1980::/32 Signature Algorithm: sha256WithRSAEncryption 78:c0:cd:60:2d:f9:3b:9c:68:18:97:d1:c6:bd:c1:b3:da:c1: 97:4a:cd:50:e1:0c:bb:82:9d:42:8f:a5:ee:a9:df:c4:7c:db: ab:1c:b4:ec:81:3f:99:64:db:10:30:b0:d7:65:83:69:cf:cc: 8f:b7:20:e1:03:48:96:f8:20:f3:bb:97:7d:91:83:ee:9b:37: 5c:8d:db:a9:6e:51:59:b4:34:7c:7a:c5:a3:f7:7d:7b:9d:22: a4:e4:74:97:0f:22:48:92:b9:41:de:82:6c:d3:ad:2b:be:17: 22:ce:98:81:bc:70:95:ca:1d:d6:ca:8b:af:e2:0e:65:e6:dd: ca:8c:96:33:79:0e:bd:36:20:bf:7c:ef:48:c7:b2:63:a3:a3: e9:c0:cd:23:6b:a9:72:de:b1:0c:22:b2:11:75:05:fe:48:26: 68:2b:0f:2c:3e:94:3b:38:45:28:1b:da:df:11:f0:a2:3d:af: 8b:c0:f5:0c:57:2a:69:f5:77:25:a3:bd:9a:ab:5c:87:c8:09: a4:ff:c0:80:a6:17:30:bd:02:e4:cc:35:89:52:b2:f6:b8:8b: 72:0b:08:f6:a6:58:1b:8f:e2:45:d0:d1:29:19:84:db:2f:ae: 08:f0:d5:5f:7d:d2:ea:99:b3:d2:8d:dc:5f:48:1d:c6:05:29: 0b:8a:d9:36 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjQwMTMxMTA0OTQyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhMjVjNi1jZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt95bEK0jELuJ6nn+Y1OBl/EFTkyIFEAQsFa8sK/5vLhXOBvtoHCb6p+5TPC 2GcwbQKX5EhHCkqE+tvmzFcDVpjWj8TA4DKfi/soJBuKW30jpyTXBAJC5TZxFMuM kPEnC/FXFbyNL/N7/f8QIXG9yi6TV8Y2+SOb8haDscbU5XdC10cLshZwG6qji8fg eYB7vqc8S+8Rdo4TF6phZKkRE6cw0oTca7CG141Uv8jzS4tQwlZkbb+BdTfBKV1l Lhxw45PFlS3QpzCxW6ETKCqt4OKvljLXyOwHcReCBgxTHRDW76pVM9rICy+bVwlO AoxizuSeMqkCyfLudNhqDhwqaQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGdFsBqf MPZRhTTQmv3xUEFeIwdJMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgyRDkvMEVEQTZENUVDRERBMTFFN0JERUE4QzJCQzRGOUFFMDIvMjc4NjA3NjBD MDI2MTFFRTkwMDlFNjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAAtQIgDBAAtQIowDQQCAAIwBwMFACQBGYAwDQYJKoZIhvcN AQELBQADggEBAHjAzWAt+TucaBiX0ca9wbPawZdKzVDhDLuCnUKPpe6p38R826sc tOyBP5lk2xAwsNdlg2nPzI+3IOEDSJb4IPO7l32Rg+6bN1yN26luUVm0NHx6xaP3 fXudIqTkdJcPIkiSuUHegmzTrSu+FyLOmIG8cJXKHdbKi6/iDmXm3cqMljN5Dr02 IL9870jHsmOjo+nAzSNrqXLesQwishF1Bf5IJmgrDyw+lDs4RSgb2t8R8KI9r4vA 9QxXKmn1dyWjvZqrXIfICaT/wICmFzC9AuTMNYlSsva4i3ILCPamWBuP4kXQ0SkZ hNsvrgjw1V990uqZs9KN3F9IHcYFKQuK2TY= -----END CERTIFICATE-----Generated at Thu Feb 1 10:43:25 2024 by rpki-client on console-fra.rpki-client.org