$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa File: 27E42824621B11ECB96F443FC4F9AE02.roa (raw, json) Hash identifier: wrKDGpotgIXrPxuezaSkw8/JL/9ru7XC77xc/fzgdF0= Subject key identifier: 3F:E6:04:0C:AF:77:A6:BF:45:67:2C:82:97:82:DF:52:15:55:16:56 Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 03C1 Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa Signing time: Sat 31 Aug 2024 02:34:27 +0000 ROA not before: Sat 31 Aug 2024 02:34:26 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136788 IP address blocks: 103.96.24.0/22 maxlen: 22 103.96.24.0/23 maxlen: 23 103.96.26.0/24 maxlen: 24 123.253.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Aug 31 02:34:26 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66d28132-edc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:88:15:3c:48:70:cd:27:39:2e:55:01:3f:9f: d1:2c:10:a5:bb:d1:64:f1:96:c2:18:01:8f:f4:16: 1e:13:89:1e:91:86:a7:6d:5a:38:ce:fc:1e:b5:f8: 66:1e:ad:e8:01:c7:6d:c6:22:f3:24:8f:2a:b5:55: f6:f4:3e:c9:8a:76:10:62:78:8f:d9:b5:a0:5e:07: ec:a6:5a:76:6c:ff:8c:59:e6:ce:4f:2e:ad:c1:78: 97:7a:0a:37:ad:89:37:fc:60:7b:81:6a:21:2f:14: 0f:d3:81:63:7f:22:0a:5a:f7:2b:35:50:29:ab:b4: 9d:3d:64:79:65:d4:ec:d8:cb:cb:c9:71:ed:5d:38: 45:33:94:3a:3e:8a:d3:d2:57:ba:82:de:c6:54:0a: 9e:4b:b1:b4:f4:d6:44:bd:e7:64:46:0b:08:12:71: bf:d2:ce:8a:28:6e:48:00:c1:da:85:ca:7c:88:7f: e0:fd:02:11:3c:e5:72:53:e9:b4:a8:2e:2f:3f:74: 32:13:17:6c:12:73:2e:83:3b:74:b0:6f:30:17:08: ac:3b:9e:07:09:7b:8d:04:c5:80:d5:da:d3:a9:da: fe:e3:76:48:27:f9:f9:c8:dd:24:9e:a3:eb:12:99: 3c:df:cc:f6:0b:38:29:fc:ef:e4:8d:fa:fa:f8:2e: a4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E6:04:0C:AF:77:A6:BF:45:67:2C:82:97:82:DF:52:15:55:16:56 X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.24.0/22 123.253.192.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:0a:20:6d:0f:98:64:dc:9e:0f:64:4d:ab:da:d3:e3:43:c1: 73:57:8f:68:e9:9c:c8:86:dd:7c:0e:00:56:87:77:11:72:74: 8c:16:f9:11:ca:55:ae:42:8e:a2:36:e6:9b:a4:e7:cb:31:9d: a6:1f:45:f0:dc:e3:87:bc:b0:45:19:b4:ca:04:d3:44:fd:c7: 1b:b5:2c:07:17:aa:e4:fd:f5:1f:b8:1c:66:fb:6c:b3:46:68: 7f:7d:c9:4b:7d:d6:ac:b4:c5:35:59:1d:d8:ef:2c:29:d3:9a: 2e:44:3c:57:b3:87:53:6b:ca:16:be:a9:75:f5:ab:97:fc:85: 22:bd:d3:96:d2:58:4d:dd:21:b5:bd:c3:61:08:c7:c1:64:ea: e3:02:6a:22:61:db:b3:cf:c0:c1:1a:c0:0b:87:95:9d:c3:44: 2e:a0:24:85:c3:90:42:7d:11:8a:ca:e9:af:3b:98:80:84:e4: dc:e0:64:c7:05:f4:f9:8e:ce:2b:2d:96:83:8b:25:24:5e:1e: 1b:95:5e:57:56:05:e6:47:60:34:60:3d:09:5e:b3:08:25:18: c2:52:4e:21:5b:81:35:78:2c:70:4f:0e:16:26:ad:6a:af:2a: bc:5a:81:67:c6:df:66:59:4a:e6:44:aa:c7:4a:9e:d6:72:c1: e4:e4:e5:28 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjQwODMxMDIzNDI2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyODEzMi1lZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YgVPEhwzSc5LlUBP5/RLBClu9Fk8ZbCGAGP9BYeE4kekYanbVo4zvwetfhm Hq3oAcdtxiLzJI8qtVX29D7JinYQYniP2bWgXgfsplp2bP+MWebOTy6twXiXego3 rYk3/GB7gWohLxQP04FjfyIKWvcrNVApq7SdPWR5ZdTs2MvLyXHtXThFM5Q6PorT 0le6gt7GVAqeS7G09NZEvedkRgsIEnG/0s6KKG5IAMHahcp8iH/g/QIRPOVyU+m0 qC4vP3QyExdsEnMugzt0sG8wFwisO54HCXuNBMWA1drTqdr+43ZIJ/n5yN0knqPr Epk838z2Czgp/O/kjfr6+C6kAQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD/mBAyv d6a/RWcsgpeC31IVVRZWMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMjdFNDI4MjQ2 MjFCMTFFQ0I5NkY0NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnYBgDBAJ7/cAwDQYJKoZIhvcNAQELBQADggEBADsKIG0P mGTcng9kTava0+NDwXNXj2jpnMiG3XwOAFaHdxFydIwW+RHKVa5CjqI25puk58sx naYfRfDc44e8sEUZtMoE00T9xxu1LAcXquT99R+4HGb7bLNGaH99yUt91qy0xTVZ HdjvLCnTmi5EPFezh1Nryha+qXX1q5f8hSK905bSWE3dIbW9w2EIx8Fk6uMCaiJh 27PPwMEawAuHlZ3DRC6gJIXDkEJ9EYrK6a87mICE5NzgZMcF9PmOzistloOLJSRe HhuVXldWBeZHYDRgPQleswglGMJSTiFbgTV4LHBPDhYmrWqvKrxagWfG32ZZSuZE qsdKntZyweTk5Sg= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org