$ rpki-client -vvf rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa File: 27CF6BE84EED11EF8D4BE30CC4F9AE02.roa (raw, json) Hash identifier: eW5x88RkAs+yN5DT0e+m9t8O70zdNnvvoJ96Je/x9Os= Subject key identifier: 27:6F:24:1C:A9:FC:C4:45:44:28:D4:63:A1:86:5B:12:8B:B5:A0:26 Certificate issuer: /CN=A915E47C/serialNumber=1B8198E297ECFB8FB51AF79624D3B684A1F9B51D Certificate serial: 2205 Authority key identifier: 1B:81:98:E2:97:EC:FB:8F:B5:1A:F7:96:24:D3:B6:84:A1:F9:B5:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa Signing time: Wed 20 Nov 2024 06:31:09 +0000 ROA not before: Wed 20 Nov 2024 06:31:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.205.78.0/24 maxlen: 24 103.205.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.crl rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8709 (0x2205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E47C/serialNumber=1B8198E297ECFB8FB51AF79624D3B684A1F9B51D Validity Not Before: Nov 20 06:31:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=673d822c-a40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:b9:69:81:6a:1b:d1:92:65:6e:af:98:b7: 47:b0:4b:57:e1:d9:f0:4f:34:01:5a:14:3c:2c:cd: b9:53:ff:07:6c:d7:27:e2:05:3a:1a:f3:dd:95:25: 48:e5:84:ba:6c:c0:95:ed:89:de:ed:99:21:5a:0f: 33:9a:12:b3:63:64:c0:1a:6b:58:8b:3a:21:de:25: cc:2d:3f:30:7c:02:16:24:1f:2e:8f:1c:7b:c9:2d: 25:a7:77:29:8c:7b:ab:b7:c6:6d:2c:04:9d:9b:21: 9d:f9:be:ed:21:2d:5e:7b:b1:a3:35:c1:c3:de:81: b7:e4:30:7d:b9:c3:c5:5f:dd:ea:60:02:f8:95:86: 37:45:02:f1:f4:9f:3f:ef:7f:42:05:b5:9a:5a:3a: 13:fc:b4:e6:2f:5c:bb:6a:d9:20:f6:4d:9c:d4:48: 7a:31:4d:a5:7d:23:83:4f:54:87:c9:26:fd:59:ef: 72:1c:d0:0e:32:b3:f6:c0:27:8c:5c:0d:47:86:e9: 07:40:b1:d2:c3:c4:2f:63:1e:57:ff:bd:a1:84:90: 44:df:17:c2:3d:9b:34:bb:93:3b:16:50:98:d7:eb: 44:89:4d:e0:e3:11:5a:5a:a0:40:44:46:eb:04:74: 83:72:13:0b:cd:cd:82:32:ac:02:52:85:a8:83:a7: da:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6F:24:1C:A9:FC:C4:45:44:28:D4:63:A1:86:5B:12:8B:B5:A0:26 X509v3 Authority Key Identifier: keyid:1B:81:98:E2:97:EC:FB:8F:B5:1A:F7:96:24:D3:B6:84:A1:F9:B5:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.78.0/23 Signature Algorithm: sha256WithRSAEncryption c0:4e:e0:c0:f5:b9:fc:5a:1b:a0:a4:c1:4a:e7:f2:d1:35:4f: dd:5f:1f:f2:14:bd:00:b1:f4:9c:84:1b:8a:4b:4d:84:93:92: 32:7e:d7:ba:93:63:25:cc:dd:c2:43:8d:93:0f:99:b0:04:55: 06:06:c2:47:ad:27:11:76:49:0e:c8:56:e2:85:0e:41:b0:98: 55:a0:a1:c9:02:e3:78:8e:33:d7:70:64:f7:66:23:7d:31:5f: f5:86:52:56:cf:7a:21:27:0c:f4:3e:d7:70:35:12:f1:95:33: 34:7e:dc:7b:0e:e2:49:ac:e5:75:8a:9d:6c:aa:d1:97:da:13: 95:06:f8:92:b1:d2:05:34:8b:d4:1b:51:e9:d3:5f:82:ba:d8: a3:69:ae:ad:9f:2d:b2:68:cb:51:44:fd:2d:6b:a5:76:45:d1: 61:80:17:68:6e:29:06:62:95:4b:16:6c:89:dc:86:90:35:14: 60:91:e4:22:e5:5e:ca:6e:68:d9:58:a5:82:ba:e9:5f:d2:97: d5:27:c2:9e:16:e0:44:54:63:b8:81:f2:59:3c:5e:23:64:cc: a2:65:63:fb:c3:03:e7:9b:ef:2a:f2:11:ef:8a:2d:4d:83:5d: 0f:38:c7:14:2b:59:19:8b:ae:c8:36:db:02:9d:42:d0:88:13: 3d:66:bb:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0N0MxMTAvBgNVBAUTKDFCODE5OEUyOTdFQ0ZCOEZCNTFBRjc5NjI0RDNCNjg0 QTFGOUI1MUQwHhcNMjQxMTIwMDYzMTA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNkODIyYy1hNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreS5aYFqG9GSZW6vmLdHsEtX4dnwTzQBWhQ8LM25U/8HbNcn4gU6GvPdlSVI 5YS6bMCV7Yne7ZkhWg8zmhKzY2TAGmtYizoh3iXMLT8wfAIWJB8ujxx7yS0lp3cp jHurt8ZtLASdmyGd+b7tIS1ee7GjNcHD3oG35DB9ucPFX93qYAL4lYY3RQLx9J8/ 739CBbWaWjoT/LTmL1y7atkg9k2c1Eh6MU2lfSODT1SHySb9We9yHNAOMrP2wCeM XA1HhukHQLHSw8QvYx5X/72hhJBE3xfCPZs0u5M7FlCY1+tEiU3g4xFaWqBAREbr BHSDchMLzc2CMqwCUoWog6fabQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCdvJByp /MRFRCjUY6GGWxKLtaAmMB8GA1UdIwQYMBaAFBuBmOKX7PuPtRr3liTTtoSh+bUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3Qy80N0I1NTk5MkFE MEYxMUU1Qjk3OEZENTRDNEY5QUUwMi9HNEdZNHBmcy00LTFHdmVXSk5PMmhLSDV0 UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0R1k0cGZzLTQtMUd2ZVdKTk8yaEtINXRSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0N0MvNDdCNTU5OTJBRDBGMTFFNUI5NzhGRDU0QzRGOUFFMDIvMjdDRjZCRTg0 RUVEMTFFRjhENEJFMzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnzU4wDQYJKoZIhvcNAQELBQADggEBAMBO4MD1ufxaG6Ck wUrn8tE1T91fH/IUvQCx9JyEG4pLTYSTkjJ+17qTYyXM3cJDjZMPmbAEVQYGwket JxF2SQ7IVuKFDkGwmFWgockC43iOM9dwZPdmI30xX/WGUlbPeiEnDPQ+13A1EvGV MzR+3HsO4kms5XWKnWyq0ZfaE5UG+JKx0gU0i9QbUenTX4K62KNprq2fLbJoy1FE /S1rpXZF0WGAF2huKQZilUsWbInchpA1FGCR5CLlXspuaNlYpYK66V/Sl9Unwp4W 4ERUY7iB8lk8XiNkzKJlY/vDA+eb7yryEe+KLU2DXQ84xxQrWRmLrsg22wKdQtCI Ez1mu2c= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:19 2024 by rpki-client on console-ams.rpki-client.org