$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/AAF9A7AC41AC11EA9BD8CB25C4F9AE02.roa File: AAF9A7AC41AC11EA9BD8CB25C4F9AE02.roa (raw, json) Hash identifier: upVI92zwRShK4sg7Uqd0Ri8/XWcnJSbo+0kz8fir/jQ= Subject key identifier: 2E:C9:D0:72:1F:26:84:06:7B:7B:74:0C:45:75:BA:F1:64:4F:0A:82 Certificate issuer: /CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Certificate serial: 3360 Authority key identifier: E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/AAF9A7AC41AC11EA9BD8CB25C4F9AE02.roa Signing time: Mon 02 Oct 2023 15:31:02 +0000 ROA not before: Mon 02 Oct 2023 15:31:02 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132827 IP address blocks: 27.123.208.0/22 maxlen: 22 101.0.8.0/24 maxlen: 24 101.0.9.0/24 maxlen: 24 101.0.10.0/24 maxlen: 24 101.0.11.0/24 maxlen: 24 101.0.20.0/22 maxlen: 22 101.0.24.0/24 maxlen: 24 101.0.25.0/24 maxlen: 24 101.0.26.0/23 maxlen: 23 103.3.16.0/24 maxlen: 24 103.3.17.0/24 maxlen: 24 103.3.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13152 (0x3360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Validity Not Before: Oct 2 15:31:02 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651ae235-6b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:39:56:aa:d7:9f:08:59:0e:87:bf:ed:29:a8: ab:64:ee:37:75:87:da:2e:94:93:f5:51:17:cb:2c: d5:bb:06:17:bd:34:7f:29:9b:58:f2:dd:a1:c5:55: 5d:fe:de:28:9d:82:42:6b:7f:13:42:ee:4e:c7:12: 8a:6b:cb:db:a3:cc:04:a5:2d:3b:43:c9:d1:58:95: 42:39:e9:fa:ca:27:04:e6:2e:fc:2a:b2:ad:2b:9d: 10:5b:75:0f:d6:23:a0:dd:dd:be:81:c1:e8:87:2d: 37:40:03:de:07:a1:fa:b9:07:c4:e0:2d:18:a4:36: f0:c5:96:c0:d6:af:5a:01:63:e5:ac:b5:d6:0c:4c: b9:36:91:81:11:90:67:6b:e9:b8:7e:38:9a:52:18: d4:ed:dd:04:88:59:1a:93:74:25:ca:47:3f:64:3f: ec:a8:08:3c:f3:90:ba:d4:39:43:43:cb:14:2f:77: a8:bc:6c:84:59:f9:31:cb:d3:ca:4e:e8:50:62:8e: 74:7c:98:17:82:7c:9d:cd:27:93:b0:5d:cc:22:51: 4f:38:8d:ed:fb:40:05:42:04:2b:2e:5b:27:4c:ad: 65:11:36:d0:66:f1:7c:af:06:bd:38:b8:f0:40:3c: 6a:a0:ae:6d:ea:a7:d8:6f:f7:26:32:07:d4:44:a1: 0e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C9:D0:72:1F:26:84:06:7B:7B:74:0C:45:75:BA:F1:64:4F:0A:82 X509v3 Authority Key Identifier: keyid:E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/AAF9A7AC41AC11EA9BD8CB25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.208.0/22 101.0.8.0/22 101.0.20.0-101.0.27.255 103.3.16.0/23 103.3.19.0/24 Signature Algorithm: sha256WithRSAEncryption 43:dd:36:05:52:70:ef:79:61:5f:cb:ea:ed:3e:7f:42:2e:e5: ac:f8:89:2e:fa:1f:0f:22:b6:97:f8:ac:fa:08:a7:7c:48:c0: 58:4e:cb:76:74:07:19:b7:e6:87:8f:57:97:ff:f6:82:fc:0e: 99:45:a4:15:cb:02:35:26:0e:0b:2c:04:00:63:4d:48:71:62: b0:65:ca:63:57:d7:16:93:95:6f:61:c6:f1:35:cd:b4:d4:fb: e5:2c:5c:df:a4:54:db:da:59:b2:2d:5e:1c:25:f6:9b:30:16: eb:61:b0:cd:db:c8:3f:c7:b6:83:87:57:09:8c:9a:7c:ea:bd: 91:24:ed:7d:0b:01:d0:fa:9d:bd:27:29:d8:20:b4:01:a9:3b: cd:98:34:d5:47:48:a9:d8:9f:82:09:39:0e:33:df:a3:a0:79: 5f:c7:13:e2:9b:34:81:e9:de:11:51:79:31:4c:c7:5b:32:0a: d0:85:e4:52:7e:95:9a:7f:44:e5:6a:f3:40:d9:47:02:77:7e: 94:61:fa:c6:b7:07:e8:f0:9c:30:0c:1c:d2:ee:30:8b:57:93: a8:26:8e:f5:46:6d:cd:24:f6:58:72:b1:dd:94:94:68:a4:39: 70:c0:5e:6c:a0:1e:49:b7:07:71:16:69:17:ab:bd:8c:d4:e3: 14:c6:55:7e -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICM2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFMDMxMTAvBgNVBAUTKEUzOUFCMUQwN0I1MERCQjlBQkUyQ0I1MUNEOUIxRTNB NUE4NTQ1MjEwHhcNMjMxMDAyMTUzMTAyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZTIzNS02YjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTlWqtefCFkOh7/tKairZO43dYfaLpST9VEXyyzVuwYXvTR/KZtY8t2hxVVd /t4onYJCa38TQu5OxxKKa8vbo8wEpS07Q8nRWJVCOen6yicE5i78KrKtK50QW3UP 1iOg3d2+gcHohy03QAPeB6H6uQfE4C0YpDbwxZbA1q9aAWPlrLXWDEy5NpGBEZBn a+m4fjiaUhjU7d0EiFkak3Qlykc/ZD/sqAg885C61DlDQ8sUL3eovGyEWfkxy9PK TuhQYo50fJgXgnydzSeTsF3MIlFPOI3t+0AFQgQrLlsnTK1lETbQZvF8rwa9OLjw QDxqoK5t6qfYb/cmMgfURKEOpwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFC7J0HIf JoQGe3t0DEV1uvFkTwqCMB8GA1UdIwQYMBaAFOOasdB7UNu5q+LLUc2bHjpahUUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEUwMy8zRjQ4RjIyNDFE QTYxMUUyOUEwNzVEOUQwOEIwMkNEMi80NXF4MEh0UTI3bXI0c3RSelpzZU9scUZS U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1cXgwSHRRMjdtcjRzdFJ6WnNlT2xxRlJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFMDMvM0Y0OEYyMjQxREE2MTFFMjlBMDc1RDlEMDhCMDJDRDIvQUFGOUE3QUM0 MUFDMTFFQTlCRDhDQjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAIbe9ADBAJlAAgwDAMEAmUAFAMEAmUAGAMEAWcDEAMEAGcD EzANBgkqhkiG9w0BAQsFAAOCAQEAQ902BVJw73lhX8vq7T5/Qi7lrPiJLvofDyK2 l/is+ginfEjAWE7LdnQHGbfmh49Xl//2gvwOmUWkFcsCNSYOCywEAGNNSHFisGXK Y1fXFpOVb2HG8TXNtNT75Sxc36RU29pZsi1eHCX2mzAW62GwzdvIP8e2g4dXCYya fOq9kSTtfQsB0PqdvScp2CC0Aak7zZg01UdIqdifggk5DjPfo6B5X8cT4ps0gene EVF5MUzHWzIK0IXkUn6Vmn9E5WrzQNlHAnd+lGH6xrcH6PCcMAwc0u4wi1eTqCaO 9UZtzST2WHKx3ZSUaKQ5cMBebKAeSbcHcRZpF6u9jNTjFMZVfg== -----END CERTIFICATE-----Generated at Fri May 24 17:56:58 2024 by rpki-client on console-fra.rpki-client.org