$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/27BBFD6EE23311EEB3E52429C4F9AE02.roa File: 27BBFD6EE23311EEB3E52429C4F9AE02.roa (raw, json) Hash identifier: iE8/e+VT9ELnu5DbAuUFgdX2fuP8gYdxpJD0TrA07Kc= Subject key identifier: 1E:76:1F:96:97:59:06:5B:9D:E3:A6:23:0A:0B:F4:B8:14:CD:CE:77 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0128 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/27BBFD6EE23311EEB3E52429C4F9AE02.roa Signing time: Thu 14 Mar 2024 18:47:47 +0000 ROA not before: Thu 14 Mar 2024 18:47:47 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 152605 IP address blocks: 103.151.46.0/23 maxlen: 24 2400:3fa0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Mar 2024 08:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Mar 14 18:47:47 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65f34653-5df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:8e:82:30:69:c9:d0:86:88:4d:15:fb:b1: df:a9:d9:63:70:5e:c7:ff:8b:97:f4:47:3c:66:ad: 15:76:d6:09:07:4e:da:fe:30:85:f1:9d:3a:c1:e7: 82:23:ac:b4:a7:3a:9e:52:65:c1:e8:43:1c:f7:99: a8:83:76:a8:db:9a:b5:6f:5c:95:6b:ce:53:c1:36: 82:38:2a:26:6a:8b:4b:2c:60:33:48:e3:4b:ec:ec: cd:35:97:47:6d:70:77:e2:59:9c:bb:1b:d8:aa:80: 78:e0:5d:d5:8f:e2:ee:c4:ac:08:4f:3f:46:1d:3c: 40:2b:9d:f3:14:ec:10:05:2b:27:9f:16:bb:4b:3e: 65:20:bd:d2:d6:e9:fe:ee:50:60:ec:ca:30:1e:07: 4e:29:86:6e:f7:84:b5:06:28:9c:af:1d:77:df:fd: fc:4e:6d:18:e7:44:df:0b:e3:54:5e:ca:cd:30:fc: 38:b2:f2:d2:d2:21:97:51:b6:a7:72:d2:35:65:38: c3:37:05:4e:9b:02:f7:67:fa:1d:a3:27:60:77:db: 30:f8:c9:64:cc:c3:da:fc:35:9e:6a:7c:6c:0d:7b: 91:40:cf:11:b2:60:38:78:63:a4:97:ed:1f:83:eb: ec:b5:f8:fd:00:2e:68:b7:b7:98:2c:ad:2a:22:7d: 78:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:76:1F:96:97:59:06:5B:9D:E3:A6:23:0A:0B:F4:B8:14:CD:CE:77 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/27BBFD6EE23311EEB3E52429C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.46.0/23 IPv6: 2400:3fa0::/32 Signature Algorithm: sha256WithRSAEncryption 87:b1:ad:43:66:82:db:8d:7b:27:7d:d6:21:a6:13:91:b8:d5: fd:d9:cb:fa:bb:a1:59:f3:ba:77:3e:6c:09:9b:42:e1:0f:48: 36:56:38:36:a6:9b:24:9b:b8:c7:f1:03:23:bc:be:23:44:ff: 84:77:37:89:e6:42:7a:f6:bb:42:27:32:13:c3:2b:7f:ae:03: 3a:e6:b6:b7:ef:2a:40:56:57:25:02:14:b7:76:57:47:c4:a4: 5a:8c:05:c1:d7:73:96:29:9e:25:38:89:d8:fb:17:e9:34:a2: 96:5e:ae:3c:66:6e:d8:11:8d:53:4c:0b:35:a6:63:e4:e9:8f: 19:86:fb:b6:89:93:82:e0:ee:1c:c3:0a:f0:24:57:41:a4:53: d5:9b:3a:b3:37:68:b6:75:ed:87:d1:9a:06:ce:87:2a:f5:93: d4:03:11:be:d4:91:bd:b5:b8:02:b3:6d:5d:3f:63:a2:19:5e: aa:e5:6b:c5:89:d6:d8:ea:0d:06:50:83:21:ab:ca:7b:d4:7e: 62:e7:76:1e:ee:b8:fa:35:73:11:77:31:f0:5f:4e:bb:84:a0: 85:9d:3b:d8:c2:e4:bb:c4:14:02:bb:3f:db:fc:ca:09:c6:5c: db:b7:e7:91:ed:20:73:50:fd:76:4c:a2:00:78:a7:95:dd:b9: 0b:0e:83:b5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjQwMzE0MTg0NzQ3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzNDY1My01ZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqh6OgjBpydCGiE0V+7HfqdljcF7H/4uX9Ec8Zq0VdtYJB07a/jCF8Z06weeC I6y0pzqeUmXB6EMc95mog3ao25q1b1yVa85TwTaCOComaotLLGAzSONL7OzNNZdH bXB34lmcuxvYqoB44F3Vj+LuxKwITz9GHTxAK53zFOwQBSsnnxa7Sz5lIL3S1un+ 7lBg7MowHgdOKYZu94S1Biicrx133/38Tm0Y50TfC+NUXsrNMPw4svLS0iGXUban ctI1ZTjDNwVOmwL3Z/odoydgd9sw+MlkzMPa/DWeanxsDXuRQM8RsmA4eGOkl+0f g+vstfj9AC5ot7eYLK0qIn14VwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB52H5aX WQZbneOmIwoL9LgUzc53MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1N0UvNjAyRDc2RDg1RDczMTFFQ0EzMjQ4ODUzQzRGOUFFMDIvMjdCQkZENkVF MjMzMTFFRUIzRTUyNDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnly4wDQQCAAIwBwMFACQAP6AwDQYJKoZIhvcNAQELBQAD ggEBAIexrUNmgtuNeyd91iGmE5G41f3Zy/q7oVnzunc+bAmbQuEPSDZWODammySb uMfxAyO8viNE/4R3N4nmQnr2u0InMhPDK3+uAzrmtrfvKkBWVyUCFLd2V0fEpFqM BcHXc5YpniU4idj7F+k0opZerjxmbtgRjVNMCzWmY+TpjxmG+7aJk4Lg7hzDCvAk V0GkU9WbOrM3aLZ17YfRmgbOhyr1k9QDEb7Ukb21uAKzbV0/Y6IZXqrla8WJ1tjq DQZQgyGrynvUfmLndh7uuPo1cxF3MfBfTruEoIWdO9jC5LvEFAK7P9v8ygnGXNu3 55HtIHNQ/XZMogB4p5XduQsOg7U= -----END CERTIFICATE-----Generated at Mon Mar 18 11:50:09 2024 by rpki-client on console-fra.rpki-client.org