$ rpki-client -vvf rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/68EB3B00F18E11E997528762C4F9AE02.roa File: 68EB3B00F18E11E997528762C4F9AE02.roa (raw, json) Hash identifier: g99vYIlBB0cqZeMEiHdeFvS6arbrwduo3e2WdyIrbPs= Subject key identifier: E9:BF:71:6A:86:10:26:F9:58:0D:A5:3C:CB:9D:DC:8C:22:13:38:E3 Certificate issuer: /CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Certificate serial: 0BB0 Authority key identifier: F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/68EB3B00F18E11E997528762C4F9AE02.roa Signing time: Fri 26 Jan 2024 19:07:05 +0000 ROA not before: Fri 26 Jan 2024 19:07:05 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133854 IP address blocks: 27.54.148.0/22 maxlen: 22 27.54.148.0/24 maxlen: 24 27.54.149.0/24 maxlen: 24 27.54.150.0/24 maxlen: 24 27.54.151.0/24 maxlen: 24 103.204.84.0/22 maxlen: 22 103.204.84.0/24 maxlen: 24 103.204.85.0/24 maxlen: 24 103.204.86.0/24 maxlen: 24 103.204.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Validity Not Before: Jan 26 19:07:05 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b402d9-2262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d7:a9:f7:bf:1a:67:17:11:29:fb:77:ff:2e: 7c:d3:41:61:50:e1:b2:b4:15:85:b4:cc:e9:2c:7c: cd:49:75:50:7f:f2:87:a9:e5:fa:46:13:c9:dd:9a: 8e:c3:16:2b:70:c6:ca:d4:67:2a:4c:4a:15:6f:11: 92:97:a0:82:76:e2:e2:2d:f9:cb:a3:e6:56:de:9a: 95:e8:45:98:74:99:20:75:5d:4e:99:96:ea:30:19: 48:55:9f:3f:03:24:02:0e:38:f8:d5:ea:5f:4e:48: b3:a8:67:be:75:c0:e6:8b:7f:52:ad:39:cc:03:26: 39:09:22:8c:23:9e:69:c7:4a:80:f0:fa:fe:32:69: 72:29:36:2f:5b:0b:93:e4:b6:97:71:28:99:b2:fc: 26:77:e3:d7:10:fd:70:c9:20:fc:3c:72:7c:fc:33: 09:af:c0:8b:75:05:56:46:2d:98:07:22:b8:ff:20: 3c:cb:0d:dd:c9:9a:73:ba:54:94:23:68:0e:e5:37: 6e:41:28:1a:4c:a8:3b:ca:94:5d:d9:ea:8d:d8:eb: 25:b0:90:e7:09:1c:09:30:90:ef:73:60:fe:1e:a2: 42:93:50:c6:aa:6d:11:ff:61:1a:b7:cc:15:1a:4c: ab:ad:71:77:65:90:47:c7:13:0e:86:ab:4d:cc:33: ab:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:BF:71:6A:86:10:26:F9:58:0D:A5:3C:CB:9D:DC:8C:22:13:38:E3 X509v3 Authority Key Identifier: keyid:F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/68EB3B00F18E11E997528762C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.54.148.0/22 103.204.84.0/22 Signature Algorithm: sha256WithRSAEncryption 53:58:95:59:12:5d:48:13:75:d2:3d:e5:b0:bb:06:eb:c6:7b: 3b:2c:fe:41:93:bf:23:ce:34:b8:e1:6d:03:cd:0c:10:89:2c: 19:4f:d0:7e:f3:0f:52:fe:c7:13:ad:88:cd:83:2f:09:f2:42: 9e:3d:54:8a:f5:4b:5e:40:2d:22:52:d9:9e:47:b5:d9:76:bc: 4b:6f:6f:8e:83:cd:2f:8a:f0:03:fb:5b:e4:18:c2:9c:43:7d: 6b:03:2d:ae:78:2e:df:a1:55:0e:06:bc:76:23:29:b6:9e:bb: 9d:d5:1a:c3:8d:19:b7:ff:73:96:e8:af:21:5b:bf:63:50:ff: e9:77:30:95:58:a7:68:6b:71:cd:c4:53:06:d6:95:d8:cd:b7: cc:e2:14:91:93:7e:8f:6b:ed:d8:5a:5c:a9:b3:f6:2f:15:f8: ed:29:48:31:f6:b0:34:71:fe:c2:15:22:00:e4:87:af:60:b5: 69:34:23:c5:79:08:7a:97:f9:3b:a7:b3:f0:72:dc:e8:a9:f2: b8:5c:62:b5:d1:4e:bd:4b:ab:f3:70:76:40:47:08:ae:29:f4: c4:2a:af:02:8b:6d:37:25:1c:17:a3:bb:d0:f5:04:46:1c:4e: 63:0c:a9:d8:34:18:45:0e:10:b7:75:62:c9:3d:16:14:e6:6e: fa:43:ca:47 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMDAxMTAvBgNVBAUTKEYyQTg5NDEwQTU0QjA0NzhGNjAyQjczMTIwMDUxNTFD Mjk1QzczNzkwHhcNMjQwMTI2MTkwNzA1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0MDJkOS0yMjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tep978aZxcRKft3/y5800FhUOGytBWFtMzpLHzNSXVQf/KHqeX6RhPJ3ZqO wxYrcMbK1GcqTEoVbxGSl6CCduLiLfnLo+ZW3pqV6EWYdJkgdV1OmZbqMBlIVZ8/ AyQCDjj41epfTkizqGe+dcDmi39SrTnMAyY5CSKMI55px0qA8Pr+MmlyKTYvWwuT 5LaXcSiZsvwmd+PXEP1wySD8PHJ8/DMJr8CLdQVWRi2YByK4/yA8yw3dyZpzulSU I2gO5TduQSgaTKg7ypRd2eqN2OslsJDnCRwJMJDvc2D+HqJCk1DGqm0R/2Eat8wV GkyrrXF3ZZBHxxMOhqtNzDOrxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOm/cWqG ECb5WA2lPMud3IwiEzjjMB8GA1UdIwQYMBaAFPKolBClSwR49gK3MSAFFRwpXHN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwMC81RUZBRDc2NEYx OEQxMUU5QUQ3NUI4NjBDNEY5QUUwMi84cWlVRUtWTEJIajJBcmN4SUFVVkhDbGNj M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhxaVVFS1ZMQkhqMkFyY3hJQVVWSENsY2Mzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUzMDAvNUVGQUQ3NjRGMThEMTFFOUFENzVCODYwQzRGOUFFMDIvNjhFQjNCMDBG MThFMTFFOTk3NTI4NzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIbNpQDBAJnzFQwDQYJKoZIhvcNAQELBQADggEBAFNYlVkS XUgTddI95bC7BuvGezss/kGTvyPONLjhbQPNDBCJLBlP0H7zD1L+xxOtiM2DLwny Qp49VIr1S15ALSJS2Z5Htdl2vEtvb46DzS+K8AP7W+QYwpxDfWsDLa54Lt+hVQ4G vHYjKbaeu53VGsONGbf/c5boryFbv2NQ/+l3MJVYp2hrcc3EUwbWldjNt8ziFJGT fo9r7dhaXKmz9i8V+O0pSDH2sDRx/sIVIgDkh69gtWk0I8V5CHqX+Tuns/By3Oip 8rhcYrXRTr1Lq/NwdkBHCK4p9MQqrwKLbTclHBeju9D1BEYcTmMMqdg0GEUOELd1 Ysk9FhTmbvpDykc= -----END CERTIFICATE-----Generated at Tue May 14 19:55:15 2024 by rpki-client on console-fra.rpki-client.org