$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/27C29E5EF94411EDB4C6E91CC4F9AE02.roa File: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (raw, json) Hash identifier: qiqkWwHqRRJzS1+kLrMRORcyejq5wX+sQ/09xLL4Yok= Subject key identifier: AA:22:FE:1D:F2:60:5A:C6:A6:3B:B2:56:35:D1:EB:30:46:E6:04:15 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 0581 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/27C29E5EF94411EDB4C6E91CC4F9AE02.roa Signing time: Wed 31 Jan 2024 15:41:01 +0000 ROA not before: Wed 31 Jan 2024 15:41:01 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 56038 IP address blocks: 185.207.8.0/24 maxlen: 24 185.207.9.0/24 maxlen: 24 185.207.10.0/24 maxlen: 24 185.207.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Jan 31 15:41:01 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ba6a0d-86b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ba:3e:9d:d3:f1:38:f6:7d:7d:68:c7:1a:36: c8:61:11:f5:94:84:d4:67:c9:34:6e:c3:4a:62:c8: 14:9f:bf:40:a2:c6:19:a2:77:07:53:6a:36:9a:9b: 0c:6e:32:e9:c8:d6:d9:02:1c:30:14:1c:d0:3f:0a: 19:ae:61:3e:6e:51:7b:81:57:6e:31:84:79:3b:56: c2:37:7f:ad:94:bf:d7:ce:e6:e2:18:15:30:f9:8d: 8e:81:0a:f4:fe:1f:d4:73:03:2b:56:69:a5:c5:dd: f3:61:81:6f:67:5e:30:42:d8:69:ce:23:67:d6:fe: 63:f2:82:6d:83:a4:4d:bc:c0:45:fd:da:19:f3:4a: 70:06:6b:1d:74:0e:bb:73:b1:44:68:68:9c:ff:17: 6e:67:a7:3b:95:76:9b:fa:cb:41:cf:3c:37:4d:3b: be:0f:e1:ba:11:ff:94:5f:cd:ee:68:1d:c1:e1:a3: 9f:36:a3:f8:d6:bc:23:a6:6a:3d:57:1e:81:0f:73: 91:ae:cd:56:bd:03:5d:b5:22:7b:18:14:4a:d7:3e: 19:1b:e7:a2:af:23:7a:5f:84:39:c2:c1:59:19:c6: 5f:8e:d9:c3:3a:ad:61:75:bc:04:4f:90:3b:a3:7d: bd:cb:ca:82:e9:e3:a3:f8:ef:4d:6c:5b:2b:76:24: 46:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:22:FE:1D:F2:60:5A:C6:A6:3B:B2:56:35:D1:EB:30:46:E6:04:15 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/27C29E5EF94411EDB4C6E91CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.207.8.0/22 Signature Algorithm: sha256WithRSAEncryption ba:7b:3e:af:1b:83:a3:78:74:80:58:2b:62:3e:08:77:d0:b8: 00:23:9a:a1:c5:50:dd:40:ea:b7:89:d9:a5:fb:e5:ac:67:86: ca:cb:a6:47:b6:f4:7d:b4:3e:05:19:dc:f5:60:c5:79:2b:32: bf:ca:4a:49:91:87:02:9d:44:f5:b9:4b:4b:7e:7e:19:6c:48: 7f:a8:8f:d2:e9:e0:b9:2f:14:b5:6a:5d:8a:fa:aa:42:e6:0b: 02:2e:55:5a:d4:fc:57:13:14:5b:2f:37:a1:26:98:fa:c2:0d: b7:93:ed:06:7f:1e:26:a6:f0:5e:8b:92:1a:13:84:f6:6c:c3: 75:f9:52:b5:0d:1f:48:72:40:83:bc:d0:1f:6c:d1:cf:d2:dc: 0a:2b:4f:b3:c6:9e:1d:1f:7c:6f:ea:aa:4e:24:36:4e:27:ec: e2:f3:a7:7f:84:92:63:af:4f:9c:71:19:48:0a:49:c9:95:18: ac:1d:e3:8e:01:72:cc:39:15:ce:36:bf:57:16:b3:b5:43:33: 6d:75:0d:d0:af:91:dd:da:93:94:c7:be:ea:a3:3f:67:ee:b2: 61:a0:2c:7f:35:dd:54:6a:ab:7f:1c:9a:90:5b:f4:fc:8b:5e: 9b:cd:13:da:33:06:38:d4:16:7a:19:3e:82:34:f5:90:25:b3: f3:94:d8:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjQwMTMxMTU0MTAxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhNmEwZC04NmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbo+ndPxOPZ9fWjHGjbIYRH1lITUZ8k0bsNKYsgUn79AosYZoncHU2o2mpsM bjLpyNbZAhwwFBzQPwoZrmE+blF7gVduMYR5O1bCN3+tlL/XzubiGBUw+Y2OgQr0 /h/UcwMrVmmlxd3zYYFvZ14wQthpziNn1v5j8oJtg6RNvMBF/doZ80pwBmsddA67 c7FEaGic/xduZ6c7lXab+stBzzw3TTu+D+G6Ef+UX83uaB3B4aOfNqP41rwjpmo9 Vx6BD3ORrs1WvQNdtSJ7GBRK1z4ZG+eiryN6X4Q5wsFZGcZfjtnDOq1hdbwET5A7 o329y8qC6eOj+O9NbFsrdiRGJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKoi/h3y YFrGpjuyVjXR6zBG5gQVMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcxQ0IvMDEwRUIyODg4MDg5MTFFQjhCNTA1RjIwQzRGOUFFMDIvMjdDMjlFNUVG OTQ0MTFFREI0QzZFOTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5zwgwDQYJKoZIhvcNAQELBQADggEBALp7Pq8bg6N4dIBY K2I+CHfQuAAjmqHFUN1A6reJ2aX75axnhsrLpke29H20PgUZ3PVgxXkrMr/KSkmR hwKdRPW5S0t+fhlsSH+oj9Lp4LkvFLVqXYr6qkLmCwIuVVrU/FcTFFsvN6EmmPrC DbeT7QZ/Hiam8F6LkhoThPZsw3X5UrUNH0hyQIO80B9s0c/S3AorT7PGnh0ffG/q qk4kNk4n7OLzp3+EkmOvT5xxGUgKScmVGKwd444Bcsw5Fc42v1cWs7VDM211DdCv kd3ak5THvuqjP2fusmGgLH813VRqq38cmpBb9PyLXpvNE9ozBjjUFnoZPoI09ZAl s/OU2NI= -----END CERTIFICATE-----Generated at Thu May 2 17:18:53 2024 by rpki-client on console-ams.rpki-client.org