$ rpki-client -vvf rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/27AA30F2644311EE8DC3FD0AC4F9AE02.roa File: 27AA30F2644311EE8DC3FD0AC4F9AE02.roa (raw, json) Hash identifier: qe0KcKtKR6f9mWnqIeiUEb/nzsEeCUpGG1Gd+tXrTt0= Subject key identifier: 0C:14:7E:76:24:82:C3:F6:E2:21:13:1E:19:BE:62:75:AD:BA:E2:31 Certificate issuer: /CN=A9189066/serialNumber=56C8F660B1E77ACED8B9E8570FF413E15D748F02 Certificate serial: 11 Authority key identifier: 56:C8:F6:60:B1:E7:7A:CE:D8:B9:E8:57:0F:F4:13:E1:5D:74:8F:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/27AA30F2644311EE8DC3FD0AC4F9AE02.roa Signing time: Wed 18 Oct 2023 13:09:33 +0000 ROA not before: Wed 18 Oct 2023 13:09:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.195.128.0/24 maxlen: 24 103.195.129.0/24 maxlen: 24 103.195.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.crl rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189066/serialNumber=56C8F660B1E77ACED8B9E8570FF413E15D748F02 Validity Not Before: Oct 18 13:09:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652fd90c-9d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:32:86:28:af:d1:09:89:10:1d:ab:9a:4b: 26:8a:9a:3f:57:9e:5b:f5:19:f6:25:41:19:2c:3d: b8:e4:14:79:bd:23:c6:73:df:e9:05:d4:9c:e0:8b: 87:b1:fa:a3:d4:e8:40:e3:f2:75:3e:e7:bb:ef:3d: 33:68:d4:87:22:e3:d5:c6:a7:06:1b:25:03:69:62: 95:e7:80:f2:26:3f:62:47:cf:5d:97:24:fd:19:69: 24:eb:b9:cd:ec:a3:60:db:85:90:dc:a1:78:54:7d: ef:1b:f9:d8:41:f4:7f:53:8a:37:a6:a8:61:96:3d: 33:7a:7d:17:71:d9:e5:e0:5b:1a:33:4d:28:e5:6c: 50:a1:2d:0a:7e:2a:bc:ec:d4:5c:ca:7b:3d:40:41: 0b:b4:cb:50:98:d9:1e:24:38:5c:6d:90:80:5c:b4: f8:be:2d:16:15:1c:71:89:5c:77:68:e8:2d:39:a2: 70:d4:c0:2a:71:f9:87:f1:3e:cb:7b:69:42:3b:85: 91:d0:c3:98:2b:75:2e:59:da:93:34:1f:5f:16:28: f6:ec:62:cd:bb:20:7b:c2:31:7f:8b:09:a0:28:7e: 57:5a:41:a8:a0:0e:12:d3:9f:86:53:d5:d7:bc:c3: cd:77:23:c8:6f:c0:26:84:e1:7b:4c:05:3e:54:92: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:14:7E:76:24:82:C3:F6:E2:21:13:1E:19:BE:62:75:AD:BA:E2:31 X509v3 Authority Key Identifier: keyid:56:C8:F6:60:B1:E7:7A:CE:D8:B9:E8:57:0F:F4:13:E1:5D:74:8F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/27AA30F2644311EE8DC3FD0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.128.0-103.195.130.255 Signature Algorithm: sha256WithRSAEncryption 97:22:d2:9a:3b:ff:bf:56:15:32:22:f1:78:b6:88:f2:17:c7: 19:57:0c:f1:14:21:ee:c3:5b:82:5e:16:b0:82:bd:e0:f5:11: 2e:56:08:0c:1a:6d:40:03:fb:b5:53:71:8d:f8:16:fa:97:1e: 02:37:a7:eb:6a:a6:a3:89:1d:92:92:e7:d0:99:2d:07:a4:7f: 57:ea:35:63:e3:5f:8a:75:6e:55:f0:6a:43:23:db:f9:34:c0: 57:8b:30:71:9c:56:83:a2:12:1a:4e:e8:b3:a9:43:46:12:a0: 2d:6e:a7:c3:40:26:6b:2a:94:a7:63:5d:a8:41:9f:9a:77:41: 9e:a9:f3:68:4a:b4:46:f9:05:24:69:f6:2a:3f:75:9b:e3:cb: a8:7d:f3:d3:16:ad:a2:d7:03:bb:17:5a:c3:9d:7b:18:c2:af: a3:ff:af:f2:9b:15:db:f4:d5:65:cf:23:8b:36:a6:96:d6:9e: e7:dd:db:31:b8:f3:c1:98:1c:40:55:f6:c2:3c:da:45:b9:8e: be:bf:e0:95:83:1c:28:eb:ef:df:8d:85:cb:a1:95:81:2c:57: 45:1b:c5:aa:83:e8:d2:8e:f0:10:8c:7f:be:a0:a3:ef:c9:6c: 89:0f:26:5f:83:7c:d3:54:b1:01:fc:93:10:00:02:69:96:c1: 13:f4:a8:bb -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTA2NjExMC8GA1UEBRMoNTZDOEY2NjBCMUU3N0FDRUQ4QjlFODU3MEZGNDEzRTE1 RDc0OEYwMjAeFw0yMzEwMTgxMzA5MzNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmZkOTBjLTlkMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKaDKGKK/RCYkQHauaSyaKmj9Xnlv1GfYlQRksPbjkFHm9I8Zz3+kF1Jzgi4ex +qPU6EDj8nU+57vvPTNo1Ici49XGpwYbJQNpYpXngPImP2JHz12XJP0ZaSTruc3s o2DbhZDcoXhUfe8b+dhB9H9TijemqGGWPTN6fRdx2eXgWxozTSjlbFChLQp+Krzs 1FzKez1AQQu0y1CY2R4kOFxtkIBctPi+LRYVHHGJXHdo6C05onDUwCpx+YfxPst7 aUI7hZHQw5grdS5Z2pM0H18WKPbsYs27IHvCMX+LCaAofldaQaigDhLTn4ZT1de8 w813I8hvwCaE4XtMBT5UktXFAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUDBR+diSC w/biIRMeGb5ida264jEwHwYDVR0jBBgwFoAUVsj2YLHnes7YuehXD/QT4V10jwIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5MDY2L0IxRTFBRUJBNjM3 RDExRUVCMjQ0RDM1Q0M0RjlBRTAyL1ZzajJZTEhuZXM3WXVlaFhEX1FUNFYxMGp3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnNqMllMSG5lczdZdWVoWERfUVQ0VjEwandJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTA2Ni9CMUUxQUVCQTYzN0QxMUVFQjI0NEQzNUNDNEY5QUUwMi8yN0FBMzBGMjY0 NDMxMUVFOERDM0ZEMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQHZ8OAAwQAZ8OCMA0GCSqGSIb3DQEBCwUAA4IBAQCXItKa O/+/VhUyIvF4tojyF8cZVwzxFCHuw1uCXhawgr3g9REuVggMGm1AA/u1U3GN+Bb6 lx4CN6fraqajiR2SkufQmS0HpH9X6jVj41+KdW5V8GpDI9v5NMBXizBxnFaDohIa TuizqUNGEqAtbqfDQCZrKpSnY12oQZ+ad0GeqfNoSrRG+QUkafYqP3Wb48uoffPT Fq2i1wO7F1rDnXsYwq+j/6/ymxXb9NVlzyOLNqaW1p7n3dsxuPPBmBxAVfbCPNpF uY6+v+CVgxwo6+/fjYXLoZWBLFdFG8Wqg+jSjvAQjH++oKPvyWyJDyZfg3zTVLEB /JMQAAJplsET9Ki7 -----END CERTIFICATE-----Generated at Wed May 1 10:33:41 2024 by rpki-client on console-fra.rpki-client.org