$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa File: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (raw, json) Hash identifier: qxZ80C2zZyx5cq4VROiHoH57qrwZSWdC3kAJGztpgCY= Subject key identifier: 06:E2:75:5A:3E:CE:5E:03:7D:D9:AC:A0:44:3E:D5:2A:40:46:4B:67 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 7E Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa Signing time: Mon 01 Jul 2024 07:07:45 +0000 ROA not before: Mon 01 Jul 2024 07:07:45 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134484 IP address blocks: 103.197.156.0/23 maxlen: 23 103.197.156.0/24 maxlen: 24 103.197.157.0/24 maxlen: 24 2001:df2:6f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Jul 1 07:07:45 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668255c1-29b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:37:08:b1:84:b9:4f:fb:79:21:c8:1c:45: 7d:27:c6:86:b2:8a:7f:0a:dc:17:4f:da:36:c0:1a: 63:da:5f:a0:fa:0c:72:49:36:0b:50:79:4d:83:1b: ee:71:54:88:85:b9:79:14:59:1c:3c:ad:49:a2:7a: 84:c1:5d:45:77:bc:89:58:1d:c9:78:a1:89:74:ee: 39:d0:8b:c4:75:af:d2:1e:2a:05:03:44:00:61:8f: 3f:9e:63:e4:6a:28:04:34:f7:1a:52:3c:2a:6e:0e: b1:cd:48:c3:c9:0d:12:1c:01:41:9d:45:1d:f9:90: 1f:c7:b8:2b:b7:41:38:eb:5d:31:c0:e1:de:b9:db: a5:85:10:0f:bb:c7:11:f2:51:33:56:76:85:f4:9c: 78:44:14:01:f5:4d:3d:28:cf:6b:d1:02:04:c8:4c: f2:c8:54:22:18:78:a6:be:0a:1c:3b:0d:40:51:f9: be:96:d8:e6:8a:d9:85:16:58:5a:ca:92:dc:a4:dc: b6:8c:33:2f:a1:23:3c:22:1f:a2:cb:bb:f3:f6:18: 20:b4:41:ff:ac:d0:ba:11:ae:cd:98:86:fb:c0:d6: a4:4f:9f:eb:75:19:d1:f8:a4:67:4b:48:ec:44:3b: 67:41:d2:af:2f:56:4d:dd:2a:fe:02:47:96:79:e1: 0e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E2:75:5A:3E:CE:5E:03:7D:D9:AC:A0:44:3E:D5:2A:40:46:4B:67 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.156.0/23 IPv6: 2001:df2:6f40::/48 Signature Algorithm: sha256WithRSAEncryption 4b:5b:d7:46:ad:51:2f:db:d4:24:6a:95:88:1d:e6:c0:56:8d: ea:f3:88:f5:0c:80:21:36:2f:63:a3:62:39:1b:22:ff:39:a5: d2:0c:00:56:09:74:42:88:cc:3c:02:22:88:6d:b3:3e:77:17: 2a:eb:2d:8a:01:d6:93:d3:45:67:0d:b5:d6:d0:88:be:b9:04: 16:58:15:3a:fb:03:4b:8c:7f:b2:81:01:1e:b5:e6:6d:01:69: ac:bb:24:88:c3:60:4f:b7:b4:70:28:cb:10:01:be:5e:25:4d: e4:d5:b6:ed:e5:c8:7c:7b:2a:aa:86:57:6e:e0:53:95:8a:2b: 9e:28:53:92:aa:64:ae:26:a9:fa:b0:63:1a:54:7a:69:ec:de: 5b:9e:38:1c:cf:8f:0a:27:83:bc:0a:3a:d9:c0:67:49:35:00: 71:8e:bb:86:cc:42:55:c4:a2:e4:48:01:f2:79:4a:2c:52:06: 61:30:2b:04:7d:0c:0a:c5:40:e4:c2:a6:3b:e9:62:eb:59:c2: 9c:da:08:5f:55:e0:cb:b6:88:c3:fe:e8:b1:fa:1d:b3:98:cc: 73:c6:5f:5a:78:21:a5:67:58:26:90:7d:39:e6:0e:10:4e:b2: ca:24:50:b0:2a:5c:7c:8b:08:4a:79:1d:3c:c0:58:eb:43:2d: 02:6f:3f:7f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjAyRjExMC8GA1UEBRMoODdGMzFCMjAxQkREMTg3NTgxNTQwQzVCOEI4NjQ0MzhD Mjk5OTBCOTAeFw0yNDA3MDEwNzA3NDVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODI1NWMxLTI5YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyQzcIsYS5T/t5IcgcRX0nxoayin8K3BdP2jbAGmPaX6D6DHJJNgtQeU2DG+5x VIiFuXkUWRw8rUmieoTBXUV3vIlYHcl4oYl07jnQi8R1r9IeKgUDRABhjz+eY+Rq KAQ09xpSPCpuDrHNSMPJDRIcAUGdRR35kB/HuCu3QTjrXTHA4d6526WFEA+7xxHy UTNWdoX0nHhEFAH1TT0oz2vRAgTITPLIVCIYeKa+Chw7DUBR+b6W2OaK2YUWWFrK ktyk3LaMMy+hIzwiH6LLu/P2GCC0Qf+s0LoRrs2YhvvA1qRPn+t1GdH4pGdLSOxE O2dB0q8vVk3dKv4CR5Z54Q5fAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUBuJ1Wj7O XgN92aygRD7VKkBGS2cwHwYDVR0jBBgwFoAUh/MbIBvdGHWBVAxbi4ZEOMKZkLkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCMDJGL0Q3QzMzQUI4N0ZC QjExRUVBNjk4MzkyNUM0RjlBRTAyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtM ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaF9NYklCdmRHSFdCVkF4Ymk0WkVPTUtaa0xrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi8yNzE3OEQ5RTdG QkMxMUVFQUY4MEI4MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfFnDAPBAIAAjAJAwcAIAEN8m9AMA0GCSqGSIb3DQEBCwUA A4IBAQBLW9dGrVEv29QkapWIHebAVo3q84j1DIAhNi9jo2I5GyL/OaXSDABWCXRC iMw8AiKIbbM+dxcq6y2KAdaT00VnDbXW0Ii+uQQWWBU6+wNLjH+ygQEeteZtAWms uySIw2BPt7RwKMsQAb5eJU3k1bbt5ch8eyqqhldu4FOViiueKFOSqmSuJqn6sGMa VHpp7N5bnjgcz48KJ4O8CjrZwGdJNQBxjruGzEJVxKLkSAHyeUosUgZhMCsEfQwK xUDkwqY76WLrWcKc2ghfVeDLtojD/uix+h2zmMxzxl9aeCGlZ1gmkH055g4QTrLK JFCwKlx8iwhKeR08wFjrQy0Cbz9/ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org