$ rpki-client -vvf rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa File: 83B6F66C5E4711EDA05F092CC4F9AE02.roa (raw, json) Hash identifier: ToaemIh9fPDcUkU4p3/lQzqtbYeK8WosReKWFwgAYY8= Subject key identifier: 3E:C0:4A:FE:7E:06:90:57:D1:E5:65:A1:0B:D9:DC:10:F6:43:69:09 Certificate issuer: /CN=A915C365/serialNumber=A628034401C65CF46975DE8C9B4672F85E00FE9B Certificate serial: 0178 Authority key identifier: A6:28:03:44:01:C6:5C:F4:69:75:DE:8C:9B:46:72:F8:5E:00:FE:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa Signing time: Tue 29 Oct 2024 02:29:11 +0000 ROA not before: Tue 29 Oct 2024 02:29:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133090 IP address blocks: 27.123.20.0/24 maxlen: 24 27.123.21.0/24 maxlen: 24 27.123.22.0/24 maxlen: 24 27.123.23.0/24 maxlen: 24 103.153.144.0/24 maxlen: 24 103.153.145.0/24 maxlen: 24 2401:16c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.crl rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C365/serialNumber=A628034401C65CF46975DE8C9B4672F85E00FE9B Validity Not Before: Oct 29 02:29:11 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67204877-ceb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a3:6b:c8:11:3c:fc:01:0f:68:07:34:7e:5a: aa:b5:90:7d:77:0c:cd:de:80:09:25:e6:83:34:16: 52:51:40:07:4a:6e:f5:02:08:8b:03:e1:c6:a7:f0: 5e:3d:ad:22:75:dc:a6:37:eb:37:29:80:58:36:1f: a6:e9:00:8b:9e:04:31:2b:b1:be:e1:4f:62:95:d7: a6:2c:c0:7b:d9:78:99:4a:31:b9:03:d7:f4:0b:ff: 25:1f:29:5e:23:93:d8:87:f9:43:ff:9f:cb:73:82: 8a:d6:8c:da:11:0c:1b:4d:63:7f:49:06:e2:97:bb: 3e:87:5c:2d:2f:08:c2:4a:39:07:86:7d:0c:79:86: 18:45:d7:55:01:6d:50:7c:e0:5f:9f:0e:59:d2:63: b1:9f:67:d1:4e:dc:eb:b8:04:af:fa:2b:7a:e8:14: c6:eb:71:95:7b:71:d3:6a:67:f3:bf:cb:3d:2f:f7: 0d:26:cb:e1:47:39:c2:ea:0e:26:49:6f:5f:52:92: 56:9d:41:09:6e:21:d4:47:29:4b:f3:50:08:27:7a: 7e:53:a0:e1:8c:06:0b:18:ac:2c:2f:a3:f4:a6:bd: f3:87:ec:03:7b:b0:e4:a9:4c:b7:00:fd:2b:57:e3: c6:b2:e0:d3:3e:d8:09:6e:e8:61:58:cf:68:46:9a: 68:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C0:4A:FE:7E:06:90:57:D1:E5:65:A1:0B:D9:DC:10:F6:43:69:09 X509v3 Authority Key Identifier: keyid:A6:28:03:44:01:C6:5C:F4:69:75:DE:8C:9B:46:72:F8:5E:00:FE:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.20.0/22 103.153.144.0/23 IPv6: 2401:16c0::/32 Signature Algorithm: sha256WithRSAEncryption 30:79:b0:8d:4f:52:91:51:1f:d4:6a:9d:86:d4:28:e7:62:ce: 1b:48:62:ae:12:7a:b8:93:86:b5:2b:05:7c:99:e9:75:c9:99: ad:e2:a4:de:9f:23:22:28:a4:5b:ed:11:15:9e:f6:41:9a:c7: 98:35:62:6c:52:ad:8f:52:56:7c:3b:39:54:b8:1e:8b:05:d0: ea:2a:ee:d4:44:85:46:03:73:4e:fa:f1:2f:ed:9e:f0:d5:be: 3d:3b:81:40:46:63:a3:60:86:33:fb:4c:e6:a7:2f:ca:26:a5: 7b:65:11:d0:38:2f:a3:d2:a3:e3:6c:a4:54:33:60:2e:5a:8d: bf:4c:0d:a9:a0:f4:0d:66:43:ba:d3:30:6f:0c:27:3a:9e:e0: 23:7f:d2:70:67:48:03:9b:95:0f:c7:ba:b5:32:cb:ee:c0:6e: 8d:a9:49:7e:be:6f:b1:62:e3:5d:7a:bb:0b:5c:30:4a:9c:37: 4f:63:77:35:3e:d7:77:ae:91:94:26:3d:38:07:72:d4:3e:83: 45:b6:33:6b:70:a4:3d:36:6e:da:33:e2:15:6f:fb:e1:d6:6b: d3:a1:4d:10:a9:78:8e:bd:87:d9:41:a8:14:c2:b9:ba:59:27: d1:89:e0:5b:cc:e5:2c:a7:24:fc:8e:ab:0f:db:9b:ac:a4:25: ae:86:67:fd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMzNjUxMTAvBgNVBAUTKEE2MjgwMzQ0MDFDNjVDRjQ2OTc1REU4QzlCNDY3MkY4 NUUwMEZFOUIwHhcNMjQxMDI5MDIyOTExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNDg3Ny1jZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaNryBE8/AEPaAc0flqqtZB9dwzN3oAJJeaDNBZSUUAHSm71AgiLA+HGp/Be Pa0iddymN+s3KYBYNh+m6QCLngQxK7G+4U9ildemLMB72XiZSjG5A9f0C/8lHyle I5PYh/lD/5/Lc4KK1ozaEQwbTWN/SQbil7s+h1wtLwjCSjkHhn0MeYYYRddVAW1Q fOBfnw5Z0mOxn2fRTtzruASv+it66BTG63GVe3HTamfzv8s9L/cNJsvhRznC6g4m SW9fUpJWnUEJbiHURylL81AIJ3p+U6DhjAYLGKwsL6P0pr3zh+wDe7DkqUy3AP0r V+PGsuDTPtgJbuhhWM9oRppowQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFD7ASv5+ BpBX0eVloQvZ3BD2Q2kJMB8GA1UdIwQYMBaAFKYoA0QBxlz0aXXejJtGcvheAP6b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzM2NS8wOUZCNTE4QTVF NDUxMUVEQjUxN0QyMkFDNEY5QUUwMi9waWdEUkFIR1hQUnBkZDZNbTBaeS1GNEFf cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpZ0RSQUhHWFBScGRkNk1tMFp5LUY0QV9wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMzNjUvMDlGQjUxOEE1RTQ1MTFFREI1MTdEMjJBQzRGOUFFMDIvODNCNkY2NkM1 RTQ3MTFFREEwNUYwOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIbexQDBAFnmZAwDQQCAAIwBwMFACQBFsAwDQYJKoZIhvcN AQELBQADggEBADB5sI1PUpFRH9RqnYbUKOdizhtIYq4SeriThrUrBXyZ6XXJma3i pN6fIyIopFvtERWe9kGax5g1YmxSrY9SVnw7OVS4HosF0Ooq7tREhUYDc0768S/t nvDVvj07gUBGY6NghjP7TOanL8ompXtlEdA4L6PSo+NspFQzYC5ajb9MDamg9A1m Q7rTMG8MJzqe4CN/0nBnSAOblQ/HurUyy+7Abo2pSX6+b7Fi4116uwtcMEqcN09j dzU+13eukZQmPTgHctQ+g0W2M2twpD02btoz4hVv++HWa9OhTRCpeI69h9lBqBTC ubpZJ9GJ4FvM5SynJPyOqw/bm6ykJa6GZ/0= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org