$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/1AD64F18D23411EAAFD6AA3AC4F9AE02.roa File: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (raw, json) Hash identifier: kaCh08b2Mg8Eik2IuIhloga+8nnEdGyPNQCWzUmLk58= Subject key identifier: A0:EB:82:DA:64:8D:DF:09:8F:6D:2A:C3:BC:6C:A2:8D:86:8D:72:74 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1562 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/1AD64F18D23411EAAFD6AA3AC4F9AE02.roa Signing time: Thu 22 Feb 2024 17:25:09 +0000 ROA not before: Thu 22 Feb 2024 17:25:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198381 IP address blocks: 103.27.23.0/24 maxlen: 24 175.111.8.0/24 maxlen: 24 175.111.9.0/24 maxlen: 24 175.111.10.0/23 maxlen: 23 175.111.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5474 (0x1562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Feb 22 17:25:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65d78374-fae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1b:76:59:f3:33:53:a8:da:8a:2f:42:24:11: b9:48:a2:e6:2a:67:6e:5b:bd:68:7e:63:f1:34:c9: 04:db:44:4e:3f:84:e0:58:b2:ea:85:1b:2a:12:d7: 68:eb:31:7d:94:e4:90:0d:56:58:7d:f1:9e:fa:8d: ff:4a:9d:99:20:85:fc:d1:ae:14:28:6d:f6:4e:18: 44:dc:f2:fa:43:97:7d:d3:4d:1b:27:af:b5:ab:b8: 98:50:ec:31:df:90:98:5d:9f:66:d4:d9:2d:7d:16: 86:56:18:2e:6d:87:e5:2f:9c:36:0e:31:4f:d7:66: 69:94:14:46:6e:03:3d:8c:71:37:36:07:c5:3b:02: b5:04:35:12:72:21:0c:6b:21:18:12:e1:6c:80:6a: 8d:80:2c:a9:13:03:9e:b5:ea:d3:85:79:a7:0a:9f: 72:12:1a:c8:75:b2:9e:e9:ad:4c:8e:2e:05:27:45: 7f:79:08:6a:77:08:cd:6b:1a:00:6c:06:fe:08:fd: fa:8e:66:81:9f:00:69:90:2c:0f:b3:fb:5d:b6:28: 42:5a:68:86:9d:38:26:88:0b:e5:84:3a:dc:93:dd: d7:fa:94:2d:4f:4a:f4:35:e8:26:ed:36:10:92:cd: 4f:7d:83:28:7c:b8:06:1d:ed:cb:30:93:c9:49:6d: 04:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EB:82:DA:64:8D:DF:09:8F:6D:2A:C3:BC:6C:A2:8D:86:8D:72:74 X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/1AD64F18D23411EAAFD6AA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.23.0/24 175.111.8.0-175.111.13.255 Signature Algorithm: sha256WithRSAEncryption 91:fc:a0:6e:fe:cc:21:fc:d5:eb:d0:88:78:5d:7a:0d:fd:32: bd:0b:b5:8f:32:14:9a:c9:d1:8f:0f:1f:63:7d:5d:93:31:05: da:7f:e4:3c:fa:f3:d5:54:da:b9:4f:59:04:28:a6:48:52:77: 76:d3:ec:2d:96:ad:6a:81:a6:1f:14:08:5e:55:06:6d:5c:0f: 59:2a:f6:6d:aa:88:0b:04:45:78:26:25:f7:fe:33:6d:f2:fb: c4:62:f0:96:ea:cc:8e:ae:50:69:c1:2d:04:42:97:90:7b:7d: e7:c7:21:ac:bd:75:9c:9d:45:55:b7:9d:c1:db:b2:d4:6b:f5: 26:fa:4f:77:16:0e:8b:a0:59:f3:b0:c6:8d:2b:94:49:6e:6c: 66:6a:12:c1:f6:35:e2:83:2c:43:69:50:ef:66:96:dd:f3:9b: 86:62:5c:31:65:d9:85:c3:89:55:75:22:81:7d:87:f0:96:1c: 6f:6d:8b:d2:25:f5:9d:95:df:ea:de:a0:04:d3:1d:11:76:2b: 28:a6:00:67:6f:f5:87:e3:4e:3f:01:4b:80:b5:9f:9a:c2:5a: 44:97:65:ec:0e:bd:27:2e:e3:50:44:c2:80:9a:ad:78:12:0a: 41:e5:d0:fd:3b:6b:a2:e3:9b:a7:b1:0a:cc:f4:18:bc:69:e0: ff:bf:27:1e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjQwMjIyMTcyNTA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3ODM3NC1mYWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBt2WfMzU6jaii9CJBG5SKLmKmduW71ofmPxNMkE20ROP4TgWLLqhRsqEtdo 6zF9lOSQDVZYffGe+o3/Sp2ZIIX80a4UKG32ThhE3PL6Q5d9000bJ6+1q7iYUOwx 35CYXZ9m1NktfRaGVhgubYflL5w2DjFP12ZplBRGbgM9jHE3NgfFOwK1BDUSciEM ayEYEuFsgGqNgCypEwOeterThXmnCp9yEhrIdbKe6a1Mji4FJ0V/eQhqdwjNaxoA bAb+CP36jmaBnwBpkCwPs/tdtihCWmiGnTgmiAvlhDrck93X+pQtT0r0Negm7TYQ ks1PfYMofLgGHe3LMJPJSW0EhwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKDrgtpk jd8Jj20qw7xsoo2GjXJ0MB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvMUFENjRGMThE MjM0MTFFQUFGRDZBQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnGxcwDAMEA69vCAMEAa9vDDANBgkqhkiG9w0BAQsFAAOC AQEAkfygbv7MIfzV69CIeF16Df0yvQu1jzIUmsnRjw8fY31dkzEF2n/kPPrz1VTa uU9ZBCimSFJ3dtPsLZataoGmHxQIXlUGbVwPWSr2baqICwRFeCYl9/4zbfL7xGLw lurMjq5QacEtBEKXkHt958chrL11nJ1FVbedwduy1Gv1JvpPdxYOi6BZ87DGjSuU SW5sZmoSwfY14oMsQ2lQ72aW3fObhmJcMWXZhcOJVXUigX2H8JYcb22L0iX1nZXf 6t6gBNMdEXYrKKYAZ2/1h+NOPwFLgLWfmsJaRJdl7A69Jy7jUETCgJqteBIKQeXQ /TtrouObp7EKzPQYvGng/78nHg== -----END CERTIFICATE-----Generated at Thu May 16 20:25:50 2024 by rpki-client on console-ams.rpki-client.org