$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/27E3EC16172211EEB3A9C124C4F9AE02.roa File: 27E3EC16172211EEB3A9C124C4F9AE02.roa (raw, json) Hash identifier: XWPrKD/1xxhYI9VwKIOui7ymKakHtBgqK+Jl6d5Nc+0= Subject key identifier: 71:B3:D1:27:F8:04:A6:CA:14:5B:CE:50:EB:33:01:39:02:A9:FD:FE Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0695 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/27E3EC16172211EEB3A9C124C4F9AE02.roa Signing time: Thu 14 Dec 2023 22:51:04 +0000 ROA not before: Thu 14 Dec 2023 22:51:04 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 60021 IP address blocks: 43.225.56.0/24 maxlen: 24 43.225.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Dec 14 22:51:04 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657b86d8-4caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:8c:f7:af:ba:97:70:bc:60:97:21:76:b2: 66:9e:13:77:da:55:eb:33:09:10:c3:e8:5c:d8:b8: 36:58:e6:32:52:be:85:2f:84:e4:a5:38:91:05:44: 1b:eb:af:0c:c9:c9:26:d4:45:24:f5:72:5c:7f:3d: f1:dc:54:0b:3e:0e:c5:2a:cb:98:c2:84:67:4e:15: 63:c1:54:73:7a:4d:ca:66:a2:0c:f3:1d:73:97:94: 1c:80:81:43:5b:33:e4:79:c8:27:88:84:d7:0d:c0: d5:9a:3c:e9:68:e4:b6:27:33:e4:fa:ff:e2:20:02: 1f:3e:04:5b:d5:a3:ff:2e:ba:e7:3e:b9:f1:ef:2f: dd:32:58:be:d1:71:04:c6:ef:78:c4:95:3a:7e:6c: 4d:4b:4b:08:c3:bf:43:a9:25:a7:f4:73:d9:cb:4d: 86:b0:11:f3:46:18:6c:98:1c:a0:3b:69:11:4b:8e: 24:db:01:6c:72:28:c5:14:b1:3c:1a:95:b9:ef:46: f9:20:f1:f7:6f:c0:f7:b1:ba:1c:c9:49:62:f5:4a: 0a:ad:83:79:d2:6b:c8:5f:9a:e8:ab:07:c5:53:76: 75:0a:70:a1:e9:0c:69:82:68:b5:d6:29:2d:d2:91: 0a:3c:17:ec:2d:a0:67:13:e8:06:cb:b6:a7:9b:49: cf:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B3:D1:27:F8:04:A6:CA:14:5B:CE:50:EB:33:01:39:02:A9:FD:FE X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/27E3EC16172211EEB3A9C124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 97:8c:46:9d:ef:61:bd:09:8d:88:c0:cc:6c:7e:a4:36:38:6b: 60:c9:5a:91:4b:8c:3a:15:1c:31:ab:49:00:15:d7:69:af:3a: 1c:27:2d:01:44:66:a6:ad:cc:f5:c3:cb:4c:09:42:83:27:1a: bc:24:d0:af:65:56:b8:30:70:f0:87:af:1d:8e:ef:82:71:34: 56:16:cc:74:27:ec:13:ce:cd:93:09:9f:d6:3d:ca:29:2c:19: ba:71:ec:79:a1:ac:0e:53:24:24:f9:c9:fb:2c:05:6a:01:f3: 20:9f:bc:0d:b9:5a:85:e8:77:9a:f9:34:86:dc:4e:16:6f:a3: 38:f2:1e:66:a8:4f:10:73:5d:a7:64:4d:46:57:4b:70:04:d2: fa:b8:5c:a1:f3:86:b8:94:c7:55:21:fe:98:57:43:2c:dd:30: 50:2b:46:22:3d:c1:b6:88:a5:91:e5:72:03:45:51:3c:0a:2d: e3:50:22:5d:e0:5b:42:73:05:92:48:2e:c4:26:06:7b:bc:24: 15:03:80:bf:72:6b:54:6e:af:59:9b:0f:aa:80:59:46:d1:ca: 76:0d:24:bb:10:f5:c1:50:85:85:41:4c:bf:06:d0:e0:be:c6: e1:46:90:43:33:7b:08:95:b5:a7:92:03:08:f6:93:5f:64:0d: aa:db:f4:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjMxMjE0MjI1MTA0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiODZkOC00Y2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9yM96+6l3C8YJchdrJmnhN32lXrMwkQw+hc2Lg2WOYyUr6FL4TkpTiRBUQb 668Myckm1EUk9XJcfz3x3FQLPg7FKsuYwoRnThVjwVRzek3KZqIM8x1zl5QcgIFD WzPkecgniITXDcDVmjzpaOS2JzPk+v/iIAIfPgRb1aP/LrrnPrnx7y/dMli+0XEE xu94xJU6fmxNS0sIw79DqSWn9HPZy02GsBHzRhhsmBygO2kRS44k2wFscijFFLE8 GpW570b5IPH3b8D3sbocyUli9UoKrYN50mvIX5roqwfFU3Z1CnCh6Qxpgmi11ikt 0pEKPBfsLaBnE+gGy7anm0nPswIDAQABo4IClTCCApEwHQYDVR0OBBYEFHGz0Sf4 BKbKFFvOUOszATkCqf3+MB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvMjdFM0VDMTYx NzIyMTFFRUIzQTlDMTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBAJeMRp3vYb0JjYjA zGx+pDY4a2DJWpFLjDoVHDGrSQAV12mvOhwnLQFEZqatzPXDy0wJQoMnGrwk0K9l VrgwcPCHrx2O74JxNFYWzHQn7BPOzZMJn9Y9yiksGbpx7HmhrA5TJCT5yfssBWoB 8yCfvA25WoXod5r5NIbcThZvozjyHmaoTxBzXadkTUZXS3AE0vq4XKHzhriUx1Uh /phXQyzdMFArRiI9wbaIpZHlcgNFUTwKLeNQIl3gW0JzBZJILsQmBnu8JBUDgL9y a1Rur1mbD6qAWUbRynYNJLsQ9cFQhYVBTL8G0OC+xuFGkEMzewiVtaeSAwj2k19k Darb9FA= -----END CERTIFICATE-----Generated at Thu May 16 23:39:14 2024 by rpki-client on console-ams.rpki-client.org