$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa File: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (raw, json) Hash identifier: Q2kZN7QvQgBqoWWAZ0d5JV7Ik/xKOmBtwv1GiK5L6BY= Subject key identifier: 92:E2:4D:BB:0C:C7:D6:E5:DB:8F:47:56:5E:A6:CE:F4:32:B4:89:F6 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 15E0 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa Signing time: Mon 07 Oct 2024 07:05:11 +0000 ROA not before: Mon 07 Oct 2024 07:05:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 206283 IP address blocks: 103.27.20.0/24 maxlen: 24 175.111.6.0/24 maxlen: 24 2001:fe8:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5600 (0x15e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Oct 7 07:05:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67038826-3712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:be:89:7b:63:8b:4d:da:0d:1e:ee:06:81: e0:5a:45:05:4c:fd:d5:b5:44:4f:6d:42:03:ef:9d: 2d:09:d9:b1:2c:1e:e5:9f:ec:1c:62:e3:9e:82:75: a9:4c:6a:b5:97:f7:ab:0a:63:2a:fa:fd:18:d4:34: dc:63:92:95:e5:12:18:ca:9a:54:f4:11:77:40:fb: 1c:53:7e:07:c3:27:74:06:57:a0:ae:40:9a:70:cc: c5:13:91:66:e0:e4:32:72:0d:bd:f0:b4:2a:a2:37: 5f:37:39:ae:9c:5f:0f:16:86:6f:5c:1e:49:15:9b: 5c:1f:14:52:bd:f4:b6:66:bd:91:35:48:6b:e0:49: 0b:67:f7:8f:e4:96:ba:36:01:c8:46:d2:af:b5:1d: f3:73:63:e3:50:7e:97:7c:2f:44:ba:20:5a:2b:22: b3:12:ad:81:a0:ea:06:f0:dc:02:68:35:b7:36:c7: cd:14:be:e8:5a:5c:49:94:b7:a2:f0:27:c6:fe:0f: 88:ed:9b:4d:d1:0c:08:d9:fb:4a:94:1d:50:c9:14: 28:a9:f3:c2:03:d1:cd:58:52:c8:09:66:44:b0:ed: 00:a2:8b:71:ed:71:49:8f:2a:5a:4d:d9:3b:a2:72: 75:88:4d:c4:b5:c5:13:41:bb:0a:c6:92:02:1c:a1: c4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E2:4D:BB:0C:C7:D6:E5:DB:8F:47:56:5E:A6:CE:F4:32:B4:89:F6 X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.20.0/24 175.111.6.0/24 IPv6: 2001:fe8:8f00::/48 Signature Algorithm: sha256WithRSAEncryption 9e:a8:c8:0f:b3:d5:ff:2f:91:d0:61:6e:91:7b:7d:58:0f:83: 0b:64:48:b5:b2:48:17:ea:cb:85:86:90:68:a7:e0:2e:e3:bd: 46:13:4b:02:92:1f:0b:5f:fb:98:7a:08:0c:42:65:52:8f:24: 28:27:1f:b2:77:a9:37:7b:50:ee:1d:a0:c6:e1:6f:61:2d:25: ec:47:93:11:73:5f:32:63:58:b2:33:f2:14:ce:b8:0a:cc:5b: 5f:9b:48:e9:19:c6:50:50:b7:ef:13:6d:d6:3c:6b:8d:41:44: b6:07:ac:04:bd:9f:cb:0f:e3:7e:00:61:88:46:e8:a8:fd:01: c9:fe:9e:44:4d:8a:ed:66:9b:3e:ff:7d:32:cb:01:67:3e:03: 0d:8a:e2:54:2c:31:bc:96:d5:f1:e6:dc:bc:d9:0e:57:27:0d: 34:81:b6:de:04:20:e9:30:d3:73:d9:2e:cb:02:8f:69:df:00: 83:01:0a:27:0d:e1:58:ee:47:e8:d1:e4:d8:32:da:20:76:70: 25:03:e4:16:a2:e6:d9:fb:b0:ac:f1:4d:dd:06:2f:00:6c:4c: 3f:8a:0a:4e:76:1e:e5:fc:1d:71:a5:f0:c6:8c:08:b5:b6:11: 3d:50:6e:d7:ef:01:a5:bc:66:2d:97:22:d2:c2:02:15:6c:06: ea:16:5d:06 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICFeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjQxMDA3MDcwNTExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzODgyNi0zNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iC+iXtji03aDR7uBoHgWkUFTP3VtURPbUID750tCdmxLB7ln+wcYuOegnWp TGq1l/erCmMq+v0Y1DTcY5KV5RIYyppU9BF3QPscU34Hwyd0BlegrkCacMzFE5Fm 4OQycg298LQqojdfNzmunF8PFoZvXB5JFZtcHxRSvfS2Zr2RNUhr4EkLZ/eP5Ja6 NgHIRtKvtR3zc2PjUH6XfC9EuiBaKyKzEq2BoOoG8NwCaDW3NsfNFL7oWlxJlLei 8CfG/g+I7ZtN0QwI2ftKlB1QyRQoqfPCA9HNWFLICWZEsO0Aootx7XFJjypaTdk7 onJ1iE3EtcUTQbsKxpICHKHEkQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJLiTbsM x9bl249HVl6mzvQytIn2MB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvODZCQkQzREU5 OTRDMTFFQzgyQkEzOTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnGxQDBACvbwYwDwQCAAIwCQMHACABD+iPADANBgkqhkiG 9w0BAQsFAAOCAQEAnqjID7PV/y+R0GFukXt9WA+DC2RItbJIF+rLhYaQaKfgLuO9 RhNLApIfC1/7mHoIDEJlUo8kKCcfsnepN3tQ7h2gxuFvYS0l7EeTEXNfMmNYsjPy FM64CsxbX5tI6RnGUFC37xNt1jxrjUFEtgesBL2fyw/jfgBhiEboqP0Byf6eRE2K 7WabPv99MssBZz4DDYriVCwxvJbV8ebcvNkOVycNNIG23gQg6TDTc9kuywKPad8A gwEKJw3hWO5H6NHk2DLaIHZwJQPkFqLm2fuwrPFN3QYvAGxMP4oKTnYe5fwdcaXw xowItbYRPVBu1+8BpbxmLZci0sICFWwG6hZdBg== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:05 2024 by rpki-client on console-ams.rpki-client.org