$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa File: 27F621183B5D11EB97506B7AC4F9AE02.roa (raw, json) Hash identifier: kQP/i0TgDmmtOwE7aHIlHdoy8Fb2ZdFNn27ehLkF3FE= Subject key identifier: 73:C0:39:52:1A:15:A2:FA:7C:85:DE:C4:E4:21:1A:BC:10:E4:4B:A6 Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 2706 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa Signing time: Sat 02 Dec 2023 16:02:14 +0000 ROA not before: Sat 02 Dec 2023 16:02:14 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 63928 IP address blocks: 43.227.236.0/24 maxlen: 24 43.227.237.0/24 maxlen: 24 43.227.238.0/24 maxlen: 24 43.227.239.0/24 maxlen: 24 103.47.24.0/24 maxlen: 24 103.47.25.0/24 maxlen: 24 103.47.26.0/24 maxlen: 24 103.47.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9990 (0x2706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Dec 2 16:02:14 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b5506-ce01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:31:cc:50:0e:78:08:63:20:8d:37:5f:e4:65: 1a:4e:29:82:77:f4:67:44:cf:9b:80:7f:5d:df:73: 71:eb:cf:01:02:e1:1a:ba:ab:f5:cb:7f:3d:3b:94: 96:f6:ba:0c:3a:ad:8f:40:a5:ce:e8:74:8c:fe:5b: db:57:66:fb:74:36:64:c1:4d:3d:5d:02:ae:ee:dc: 73:6c:05:01:54:a6:b4:cc:f7:22:00:21:8e:f4:b6: 10:0a:70:b5:d3:67:72:1e:ac:ee:e1:4b:9e:48:1f: cc:9e:ff:ab:06:73:a9:d8:d2:98:a8:fe:90:af:80: 19:1a:74:45:76:ee:d2:6c:a0:87:2e:6f:4a:e4:52: be:9d:11:8e:80:db:72:4a:80:d3:51:90:b5:64:9b: fb:5e:0c:4f:b7:6b:5d:82:02:d9:01:d3:49:3e:a1: 54:30:1e:db:0a:25:cd:64:67:3f:fc:60:35:b1:09: f5:67:8b:a2:b4:73:c6:b7:7e:df:c2:06:99:c2:5f: 07:12:92:ae:38:8f:74:5b:45:f0:f8:b0:e9:df:de: ae:17:4d:b4:b2:a0:62:6c:22:2b:3c:3d:4b:c4:fd: 26:85:0a:b5:30:4f:90:42:b0:ea:31:5b:0a:d4:39: aa:07:d5:c2:fe:16:6d:e8:80:73:bf:2e:9f:0a:1e: 1b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C0:39:52:1A:15:A2:FA:7C:85:DE:C4:E4:21:1A:BC:10:E4:4B:A6 X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.236.0/22 103.47.24.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:cb:dd:ed:b8:4e:0a:c0:3b:6b:61:68:36:4e:ba:5c:68:f4: 27:20:33:d5:fd:c1:31:0f:c8:29:68:21:d6:d0:42:06:18:f1: ae:b7:0f:cc:00:68:1c:a2:3a:ef:7f:ba:f9:6e:b3:30:45:96: 67:ec:8e:af:59:00:85:20:d1:a6:c5:57:de:52:fd:ae:00:83: 10:8d:8f:1f:fd:b7:21:d2:de:8d:34:93:33:92:95:38:f8:f9: 2e:93:8a:cc:eb:a0:dd:55:dd:ff:b5:11:46:cf:9a:e9:a6:4a: f8:18:02:b4:61:3b:a0:e1:5b:70:5d:ef:56:7f:20:d8:dd:73: 6c:9e:ec:d1:02:8b:3e:34:2d:15:e7:e2:e9:ac:78:cb:46:a1: 40:ef:de:1d:93:b2:2b:43:ec:7e:ed:d2:cc:ca:b6:01:b2:2c: 10:6f:b8:f8:80:35:a2:08:bc:88:dc:dd:f3:16:20:1d:4f:2f: 10:10:d1:23:bb:3a:ec:ae:7e:f5:51:a4:7e:a5:fc:28:7b:87: fd:f7:98:bd:4f:50:1c:78:91:4c:0f:59:21:85:f9:b7:ba:95: c0:0a:a4:ea:d2:e6:a0:57:a4:0b:8e:e8:93:5c:e8:20:d9:04: 63:e3:1c:94:f2:a5:47:a1:71:eb:30:95:2b:6f:79:a5:66:75: 5a:46:61:14 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjMxMjAyMTYwMjE0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNTUwNi1jZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jHMUA54CGMgjTdf5GUaTimCd/RnRM+bgH9d33Nx688BAuEauqv1y389O5SW 9roMOq2PQKXO6HSM/lvbV2b7dDZkwU09XQKu7txzbAUBVKa0zPciACGO9LYQCnC1 02dyHqzu4UueSB/Mnv+rBnOp2NKYqP6Qr4AZGnRFdu7SbKCHLm9K5FK+nRGOgNty SoDTUZC1ZJv7XgxPt2tdggLZAdNJPqFUMB7bCiXNZGc//GA1sQn1Z4uitHPGt37f wgaZwl8HEpKuOI90W0Xw+LDp396uF020sqBibCIrPD1LxP0mhQq1ME+QQrDqMVsK 1DmqB9XC/hZt6IBzvy6fCh4bxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHPAOVIa FaL6fIXexOQhGrwQ5EumMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4NkYvRUM4NzBCODY4RjJBMTFFNEJGOThCNDMyQzRGOUFFMDIvMjdGNjIxMTgz QjVEMTFFQjk3NTA2QjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4+wDBAJnLxgwDQYJKoZIhvcNAQELBQADggEBAE7L3e24 TgrAO2thaDZOulxo9CcgM9X9wTEPyCloIdbQQgYY8a63D8wAaByiOu9/uvluszBF lmfsjq9ZAIUg0abFV95S/a4AgxCNjx/9tyHS3o00kzOSlTj4+S6TiszroN1V3f+1 EUbPmummSvgYArRhO6DhW3Bd71Z/INjdc2ye7NECiz40LRXn4umseMtGoUDv3h2T sitD7H7t0szKtgGyLBBvuPiANaIIvIjc3fMWIB1PLxAQ0SO7OuyufvVRpH6l/Ch7 h/33mL1PUBx4kUwPWSGF+be6lcAKpOrS5qBXpAuO6JNc6CDZBGPjHJTypUehcesw lStveaVmdVpGYRQ= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org