$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa File: 3AE416CE06FE11EBB45C7D74C4F9AE02.roa (raw, json) Hash identifier: 8IERFVxFNgx4Zl9B1h4quAH4+RYr4eSdKvfEkgqdl7U= Subject key identifier: 40:F6:61:F7:3D:DC:9A:40:AE:E2:D4:9E:5A:56:39:23:40:AE:7C:B3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A05 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa Signing time: Wed 10 May 2023 16:12:42 +0000 ROA not before: Wed 10 May 2023 16:12:42 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132573 IP address blocks: 27.0.48.0/24 maxlen: 24 27.0.61.0/24 maxlen: 24 27.0.63.0/24 maxlen: 24 103.17.100.0/23 maxlen: 24 103.17.107.0/24 maxlen: 24 115.69.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27141 (0x6a05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:42 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc279-30a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a4:46:da:ae:19:17:56:9b:cd:c1:20:52:82: 38:3e:17:e6:d3:30:f5:3e:c2:f0:44:e3:53:2a:20: e9:58:4a:80:fe:91:cb:bc:02:7e:64:3b:5e:81:eb: 7f:1e:47:4f:4e:c6:da:99:ee:2f:3c:2c:05:d8:08: ff:ff:e9:82:20:59:cd:5a:2d:1d:51:e4:f4:99:ec: eb:42:ac:7c:ea:99:be:4d:84:e0:18:2e:2a:1b:8f: f5:03:1b:44:21:9e:01:3a:ad:1d:1e:a2:a5:5b:f2: 1e:3c:83:0b:cb:03:9f:b5:0d:47:a3:b1:50:56:bb: 25:94:29:ea:80:fc:cb:ee:47:c5:65:21:1e:56:c6: ef:81:d9:19:79:ac:27:17:f2:38:f1:e4:d8:1c:ef: 72:c4:a1:44:42:26:3e:62:17:a7:8b:f6:1e:64:f4: 1d:17:77:3d:e8:89:0f:14:8f:b2:40:b4:be:40:82: 62:fb:f6:74:58:29:2f:d3:99:24:d8:f2:9d:2b:6f: f5:dd:ee:fe:b6:84:fb:ff:f7:86:0e:78:c9:08:0a: df:05:bc:95:76:94:3e:4a:53:e8:4c:40:3a:67:00: 7b:f6:02:52:39:6f:08:72:0f:5d:32:f1:58:2e:bd: 75:2d:84:97:14:23:ea:1c:37:89:08:b5:0e:cf:61: 14:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F6:61:F7:3D:DC:9A:40:AE:E2:D4:9E:5A:56:39:23:40:AE:7C:B3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.0.48.0/24 27.0.61.0/24 27.0.63.0/24 103.17.100.0/23 103.17.107.0/24 115.69.253.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:fd:2d:08:52:72:b4:32:7b:63:51:bb:c4:d4:36:d2:39:52: 2c:5f:c0:b4:4d:44:4e:b0:03:8a:b2:bb:42:f1:9e:c2:31:36: 25:ce:96:2b:be:bf:ed:28:0a:49:da:c7:c6:22:d9:86:1b:b6: e3:d6:f9:de:a4:48:7b:6b:26:ec:64:b0:0b:24:50:eb:7c:d1: 41:97:59:66:f8:9f:29:4a:06:91:43:a1:7f:08:84:d4:e1:48: 9f:31:7d:70:5c:4e:f2:ac:56:a4:b3:17:f1:3b:f0:8f:b7:fe: a2:19:03:32:14:e2:79:01:7e:d7:ee:98:9d:e1:dd:b4:29:d1: b2:70:b3:8f:f0:83:21:f9:04:aa:e1:18:9a:0a:29:30:47:3b: 9a:79:32:9c:f1:6e:0f:1b:e9:ed:c9:2b:af:3e:22:a0:c7:7a: 13:12:32:8c:71:7c:0d:0d:5f:0e:16:68:70:40:40:d5:b5:2f: 3f:83:16:b3:47:8f:d7:7c:16:ac:d5:51:78:54:07:98:0d:ad: 3e:dc:ef:09:8c:85:45:d9:6a:2f:18:fe:8d:7d:76:97:aa:52: 09:6f:6b:09:a5:9a:77:fc:c4:21:87:05:f8:58:fc:8b:8f:6b: df:64:8d:c1:25:91:7e:f3:86:e5:93:e5:6e:16:da:cb:d5:cc: 15:e1:80:68 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICagUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjQyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI3OS0zMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aRG2q4ZF1abzcEgUoI4Phfm0zD1PsLwRONTKiDpWEqA/pHLvAJ+ZDteget/ HkdPTsbame4vPCwF2Aj//+mCIFnNWi0dUeT0mezrQqx86pm+TYTgGC4qG4/1AxtE IZ4BOq0dHqKlW/IePIMLywOftQ1Ho7FQVrsllCnqgPzL7kfFZSEeVsbvgdkZeawn F/I48eTYHO9yxKFEQiY+Yheni/YeZPQdF3c96IkPFI+yQLS+QIJi+/Z0WCkv05kk 2PKdK2/13e7+toT7//eGDnjJCArfBbyVdpQ+SlPoTEA6ZwB79gJSOW8Icg9dMvFY Lr11LYSXFCPqHDeJCLUOz2EUPwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFED2Yfc9 3JpAruLUnlpWOSNArnyzMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0FFNDE2Q0Uw NkZFMTFFQkI0NUM3RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAAbADADBAAbAD0DBAAbAD8DBAFnEWQDBABnEWsDBABzRf0w DQYJKoZIhvcNAQELBQADggEBAAr9LQhScrQye2NRu8TUNtI5UixfwLRNRE6wA4qy u0LxnsIxNiXOliu+v+0oCknax8Yi2YYbtuPW+d6kSHtrJuxksAskUOt80UGXWWb4 nylKBpFDoX8IhNThSJ8xfXBcTvKsVqSzF/E78I+3/qIZAzIU4nkBftfumJ3h3bQp 0bJws4/wgyH5BKrhGJoKKTBHO5p5Mpzxbg8b6e3JK68+IqDHehMSMoxxfA0NXw4W aHBAQNW1Lz+DFrNHj9d8FqzVUXhUB5gNrT7c7wmMhUXZai8Y/o19dpeqUglvawml mnf8xCGHBfhY/IuPa99kjcElkX7zhuWT5W4W2svVzBXhgGg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org