$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa File: 27E42824621B11ECB96F443FC4F9AE02.roa (raw, json) Hash identifier: /4JjWeyiUMQJMCybOXSSMIkBFPveZ27gZsbVEQ7V2tQ= Subject key identifier: AD:14:7F:6F:EE:7B:22:4D:AD:F8:6B:75:56:FE:A4:95:96:9A:C4:2A Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 0308 Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa Signing time: Tue 19 Sep 2023 01:42:58 +0000 ROA not before: Tue 19 Sep 2023 01:42:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136788 IP address blocks: 103.96.24.0/22 maxlen: 22 103.96.24.0/23 maxlen: 23 103.96.26.0/24 maxlen: 24 123.253.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 776 (0x308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Sep 19 01:42:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6508fca2-9798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:68:ef:97:1a:c9:e5:16:d7:80:06:e1:57:8f: a8:a4:e2:5c:20:8f:5b:17:34:a9:5e:81:ce:04:b2: 8c:d7:4d:45:76:1e:a1:0d:fd:46:38:82:a8:0c:d5: ab:27:0f:eb:b6:2c:ca:6e:49:46:20:36:94:9a:59: ae:a2:12:0b:35:50:d8:5b:bb:32:fd:94:39:97:f8: 47:9d:fe:28:31:40:45:ff:6d:c7:be:fb:cc:fd:83: 7d:48:2f:61:db:8b:0c:78:91:6a:64:d8:7f:b4:60: b1:a3:c7:0c:62:df:f2:99:50:a9:79:a1:30:72:7f: 4e:35:bb:41:ff:b3:b5:ba:da:35:5b:b6:8f:be:b2: 89:fd:dc:f6:35:5e:9d:98:a5:f7:5c:73:36:43:bc: 3a:1f:22:6f:63:51:fe:9d:a4:30:44:98:0d:68:fe: 2d:d3:92:33:fe:59:de:c9:76:5d:db:61:df:7a:d6: 27:b6:45:e3:6e:f5:07:5a:b9:47:28:ed:46:8f:48: a5:0d:f3:5b:ad:80:0b:37:19:64:55:55:7d:84:0e: 70:d2:09:0c:f5:36:cf:88:83:9f:36:2e:f0:ad:7e: 59:d7:4e:83:4a:58:0b:d8:38:7f:4f:40:9b:51:16: cb:35:7d:b4:ea:53:ad:5b:6c:65:1a:c0:3f:37:46: 5f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:14:7F:6F:EE:7B:22:4D:AD:F8:6B:75:56:FE:A4:95:96:9A:C4:2A X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.24.0/22 123.253.192.0/22 Signature Algorithm: sha256WithRSAEncryption 92:1c:a2:bf:ae:34:91:0f:b1:d4:ff:14:a2:1b:79:a9:ab:32: 78:72:e5:8c:15:a8:09:35:73:ab:cd:bb:0e:81:3e:1a:3d:31: b4:38:93:f9:47:d5:e1:bf:f9:b9:fc:a4:e6:b8:a6:82:c2:f0: 57:8a:ac:e0:27:71:37:69:9d:22:cb:b8:0e:1a:79:78:36:5e: 05:8f:2c:d9:a8:ce:cc:1f:e5:ed:dd:6a:5a:75:1b:51:7b:77: 06:87:21:b1:ae:7e:18:99:b0:aa:bf:86:86:a7:38:06:1f:01: 60:3c:2d:a4:9f:97:b2:b2:51:49:f0:0a:60:01:90:d4:d0:26: 00:08:66:8c:3b:a6:a0:28:ca:c8:11:88:a8:cd:7e:66:1b:28: 2a:81:50:ac:36:89:bb:03:12:00:cb:b7:e1:d3:48:a0:d5:97: 0d:6e:1f:6f:86:22:8d:c3:d9:f3:51:59:5f:79:c4:72:fb:97: 19:bc:c2:dd:78:dc:b3:74:5d:e8:bb:e1:01:99:25:de:18:5f: 02:22:df:2d:43:c2:67:36:12:60:c8:0f:63:62:eb:d3:40:49: bb:fe:63:fc:0a:20:43:21:4b:8b:9a:de:ad:d2:78:17:68:10: cb:70:03:90:ab:8c:80:91:78:30:57:2c:ca:e2:6b:aa:04:18: 78:c0:f4:33 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjMwOTE5MDE0MjU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4ZmNhMi05Nzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GjvlxrJ5RbXgAbhV4+opOJcII9bFzSpXoHOBLKM101Fdh6hDf1GOIKoDNWr Jw/rtizKbklGIDaUmlmuohILNVDYW7sy/ZQ5l/hHnf4oMUBF/23HvvvM/YN9SC9h 24sMeJFqZNh/tGCxo8cMYt/ymVCpeaEwcn9ONbtB/7O1uto1W7aPvrKJ/dz2NV6d mKX3XHM2Q7w6HyJvY1H+naQwRJgNaP4t05Iz/lneyXZd22HfetYntkXjbvUHWrlH KO1Gj0ilDfNbrYALNxlkVVV9hA5w0gkM9TbPiIOfNi7wrX5Z106DSlgL2Dh/T0Cb URbLNX206lOtW2xlGsA/N0Zf3QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK0Uf2/u eyJNrfhrdVb+pJWWmsQqMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMjdFNDI4MjQ2 MjFCMTFFQ0I5NkY0NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnYBgDBAJ7/cAwDQYJKoZIhvcNAQELBQADggEBAJIcor+u NJEPsdT/FKIbeamrMnhy5YwVqAk1c6vNuw6BPho9MbQ4k/lH1eG/+bn8pOa4poLC 8FeKrOAncTdpnSLLuA4aeXg2XgWPLNmozswf5e3dalp1G1F7dwaHIbGufhiZsKq/ hoanOAYfAWA8LaSfl7KyUUnwCmABkNTQJgAIZow7pqAoysgRiKjNfmYbKCqBUKw2 ibsDEgDLt+HTSKDVlw1uH2+GIo3D2fNRWV95xHL7lxm8wt143LN0Xei74QGZJd4Y XwIi3y1Dwmc2EmDID2Ni69NASbv+Y/wKIEMhS4ua3q3SeBdoEMtwA5CrjICReDBX LMria6oEGHjA9DM= -----END CERTIFICATE-----Generated at Mon May 13 03:37:19 2024 by rpki-client on console-ams.rpki-client.org