$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A81364AC4B0611EF91534014C4F9AE02.roa File: A81364AC4B0611EF91534014C4F9AE02.roa (raw, json) Hash identifier: 47cfaYt40WI3OaPbgIorGcPdTUxlfDJcs0/oVjtaiWM= Subject key identifier: 5B:DB:BA:09:7E:91:38:0C:2B:8F:43:A0:48:A4:06:B6:EC:EE:5A:08 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 09DE Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A81364AC4B0611EF91534014C4F9AE02.roa Signing time: Fri 16 Aug 2024 04:31:40 +0000 ROA not before: Fri 16 Aug 2024 04:31:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 16509 IP address blocks: 27.124.61.0/24 maxlen: 24 182.173.70.0/24 maxlen: 24 182.173.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Sep 2024 20:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2526 (0x9de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Aug 16 04:31:40 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bed62c-4bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:34:73:57:8b:65:a5:fe:1a:3f:17:e0:c7:da: e6:ac:cb:88:5e:e1:c0:74:1d:76:52:32:55:c1:5f: 0a:55:21:bc:85:a7:18:68:b6:3a:90:66:db:30:6c: 8e:90:85:cc:f1:7b:4f:79:d8:ea:68:ef:2a:d0:2d: b8:6b:55:24:ab:4d:44:16:9b:e5:04:46:dc:d5:16: 5a:7c:dd:54:92:d1:bf:ca:f5:23:20:09:b9:79:35: fb:89:ed:53:f7:19:15:98:97:c1:ec:43:f3:cc:18: 13:72:64:37:1d:f4:a1:a3:85:4f:63:f7:ca:88:a1: 6e:af:0f:3f:e9:47:5f:c8:25:f2:02:b4:fe:78:17: 35:53:1d:ef:ce:be:a1:61:4a:aa:d1:76:9a:7c:d1: 50:24:f7:9b:0a:ba:5a:51:e0:54:9c:6a:88:11:6f: 24:89:b6:bd:3b:9d:43:ab:61:b8:ba:50:37:63:51: d6:67:6e:17:62:70:a6:65:f4:f2:74:69:0f:74:ae: ee:d1:f2:bb:05:a2:5a:e2:06:ae:8e:a1:fb:fe:fe: c8:99:cb:45:e6:72:e6:dc:4d:61:7c:6a:c4:37:45: 2a:f6:8c:f3:75:2e:7c:f2:dd:ea:fe:6f:48:e1:89: 96:bd:54:99:3c:0f:eb:c2:ec:c4:60:cb:08:88:0b: cb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DB:BA:09:7E:91:38:0C:2B:8F:43:A0:48:A4:06:B6:EC:EE:5A:08 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A81364AC4B0611EF91534014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.61.0/24 182.173.70.0/23 Signature Algorithm: sha256WithRSAEncryption 25:64:81:a3:58:ee:11:f0:ef:c8:c0:4b:32:32:7e:2c:eb:58: 98:73:ce:cc:2d:58:d6:33:46:48:82:b4:74:41:98:e9:40:0b: db:7c:61:0c:4e:0a:dd:67:4d:f6:6a:4b:8b:79:09:ec:b0:8c: 1c:c1:70:b4:06:62:f0:ac:98:72:ec:14:59:19:bc:19:a0:f9: 15:09:7f:59:f5:d9:74:3c:bf:da:f6:8a:6b:19:16:0f:23:a6: da:09:70:2c:56:fb:e0:c5:2a:f2:19:bc:44:05:f9:54:4b:1d: 10:0d:99:40:09:4f:cf:e7:08:bd:ce:6a:23:43:d6:df:38:72: 72:c3:b9:18:40:0e:6f:dd:16:09:6a:87:90:69:69:4e:de:e3: f0:9d:05:96:68:46:9b:75:fb:18:5b:ee:5e:c8:a6:d2:0a:f4: 8c:a5:24:78:4e:f0:a6:a2:73:63:32:34:97:16:5d:fe:10:4c: 4c:a0:ea:cc:10:28:e5:04:54:89:ed:34:be:fd:ac:24:e7:8f: ff:6d:50:33:9e:ee:81:6c:e7:86:67:48:15:6e:85:e5:25:0f: dd:cf:a5:97:44:29:42:be:ab:4c:12:07:f4:66:74:4c:20:a2: 26:00:87:cc:02:bb:fd:98:36:8d:a0:b5:f6:9b:b3:2d:0e:58: 48:72:ef:bf -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjQwODE2MDQzMTQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJlZDYyYy00YmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TRzV4tlpf4aPxfgx9rmrMuIXuHAdB12UjJVwV8KVSG8hacYaLY6kGbbMGyO kIXM8XtPedjqaO8q0C24a1Ukq01EFpvlBEbc1RZafN1UktG/yvUjIAm5eTX7ie1T 9xkVmJfB7EPzzBgTcmQ3HfSho4VPY/fKiKFurw8/6UdfyCXyArT+eBc1Ux3vzr6h YUqq0XaafNFQJPebCrpaUeBUnGqIEW8kiba9O51Dq2G4ulA3Y1HWZ24XYnCmZfTy dGkPdK7u0fK7BaJa4gaujqH7/v7ImctF5nLm3E1hfGrEN0Uq9ozzdS588t3q/m9I 4YmWvVSZPA/rwuzEYMsIiAvLqQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFvbugl+ kTgMK49DoEikBrbs7loIMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMEJCRDlFQTI4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQTgxMzY0QUM0 QjA2MTFFRjkxNTM0MDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAbfD0DBAG2rUYwDQYJKoZIhvcNAQELBQADggEBACVkgaNY 7hHw78jASzIyfizrWJhzzswtWNYzRkiCtHRBmOlAC9t8YQxOCt1nTfZqS4t5Ceyw jBzBcLQGYvCsmHLsFFkZvBmg+RUJf1n12XQ8v9r2imsZFg8jptoJcCxW++DFKvIZ vEQF+VRLHRANmUAJT8/nCL3OaiND1t84cnLDuRhADm/dFglqh5BpaU7e4/CdBZZo Rpt1+xhb7l7IptIK9IylJHhO8Kaic2MyNJcWXf4QTEyg6swQKOUEVIntNL79rCTn j/9tUDOe7oFs54ZnSBVuheUlD93PpZdEKUK+q0wSB/RmdEwgoiYAh8wCu/2YNo2g tfabsy0OWEhy778= -----END CERTIFICATE-----Generated at Fri Sep 6 22:38:12 2024 by rpki-client on console-ams.rpki-client.org