$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa File: 87D45318994C11EC82BA3978C4F9AE02.roa (raw, json) Hash identifier: HRxLdFHU7v9ktQmRHzKA7IbwxRL+QI1P77qnL5kGPjQ= Subject key identifier: 9B:60:BD:A9:57:5B:46:DD:CC:5D:FF:5B:64:B0:E8:37:22:64:1E:2B Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1561 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa Signing time: Thu 22 Feb 2024 17:25:08 +0000 ROA not before: Thu 22 Feb 2024 17:25:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198247 IP address blocks: 103.27.21.0/24 maxlen: 24 175.111.2.0/24 maxlen: 24 175.111.7.0/24 maxlen: 24 175.111.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5473 (0x1561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Feb 22 17:25:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65d78374-a777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e1:81:55:ec:82:99:c2:c1:29:42:6f:7e:90: e7:30:9d:98:25:d6:e7:cc:13:5f:cf:12:aa:c9:98: 80:f0:c2:7f:32:15:26:dc:19:e2:b5:20:f1:db:19: 27:a9:75:41:5d:bb:ff:54:bb:ab:64:ae:64:4d:65: 1b:ae:0d:e1:d5:92:8e:51:5f:f9:ca:e5:18:de:61: 53:3f:dd:fc:4d:0c:f0:84:bd:e8:8e:b3:f2:e2:50: 86:12:c9:71:1a:3f:0a:78:9d:3c:8e:5c:df:44:96: 72:34:82:96:5c:31:17:a1:62:90:ee:0d:af:7e:9f: 8f:2c:87:7b:bd:20:08:cf:e6:a0:09:2e:bc:df:6a: ef:43:4a:64:e7:59:99:eb:ba:59:b8:81:b4:e6:ef: 5a:87:9b:56:fe:cd:ee:94:e5:7b:ef:31:b1:0e:97: 1b:10:41:11:b6:e8:32:16:71:a6:a4:63:66:4a:e0: 3a:6a:86:24:fb:0f:53:51:5e:d8:d9:8a:78:ef:de: 54:12:86:d7:2c:06:f1:3e:7b:33:59:f1:54:13:8b: 9e:52:95:2c:e6:11:df:d9:37:98:04:33:05:0f:31: 58:2a:06:55:5b:91:41:4a:d7:dd:37:ad:bb:92:99: da:ad:bc:9f:aa:8b:84:58:ed:6a:12:9c:46:e7:7d: 44:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:60:BD:A9:57:5B:46:DD:CC:5D:FF:5B:64:B0:E8:37:22:64:1E:2B X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.21.0/24 175.111.2.0/24 175.111.7.0/24 175.111.14.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:6c:0e:a5:a3:b1:4c:19:4c:e2:b7:ea:2b:d0:cd:b2:3b:41: 43:5a:28:c7:e3:08:47:d1:fd:a1:7c:b6:60:c3:09:bc:bc:3c: 0c:25:55:ec:f1:b5:2c:c7:e8:70:16:71:9b:62:2c:eb:01:68: 43:2e:81:0d:b0:e7:00:72:6e:8d:88:52:23:be:2c:76:cb:1a: f0:0a:68:94:c8:1a:d9:62:db:dc:9c:a7:98:49:fb:10:67:cf: 73:83:3d:42:37:b4:cd:6b:c4:b3:9d:b8:99:27:31:1e:c5:10: d9:f3:02:72:1e:95:61:d2:a9:45:c3:1b:7c:85:f1:5b:b2:4b: 7f:05:ac:e0:26:32:ed:b7:19:55:4c:ef:08:3e:5d:8e:8c:b9: 4b:d3:14:42:65:2b:0f:85:d5:14:5b:bb:3d:8f:1d:13:3f:dd: a9:6f:60:e1:10:1b:65:5f:f6:d1:f0:aa:10:f8:d6:f5:cd:2f: 20:f1:ad:47:9e:e1:60:04:14:57:a3:92:b8:b8:67:80:6f:27: 49:8c:03:6c:ad:94:bb:ac:ca:c3:d5:dc:8e:39:38:e2:39:49: 53:28:f7:42:55:84:73:7d:8a:54:6c:41:0c:23:f9:84:8b:39: 72:0e:08:f9:e6:8c:f0:30:57:8d:c0:7e:bc:fd:8b:04:61:70: 91:98:ac:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICFWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjQwMjIyMTcyNTA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3ODM3NC1hNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+GBVeyCmcLBKUJvfpDnMJ2YJdbnzBNfzxKqyZiA8MJ/MhUm3BnitSDx2xkn qXVBXbv/VLurZK5kTWUbrg3h1ZKOUV/5yuUY3mFTP938TQzwhL3ojrPy4lCGEslx Gj8KeJ08jlzfRJZyNIKWXDEXoWKQ7g2vfp+PLId7vSAIz+agCS6832rvQ0pk51mZ 67pZuIG05u9ah5tW/s3ulOV77zGxDpcbEEERtugyFnGmpGNmSuA6aoYk+w9TUV7Y 2Yp4795UEobXLAbxPnszWfFUE4ueUpUs5hHf2TeYBDMFDzFYKgZVW5FBStfdN627 kpnarbyfqouEWO1qEpxG531EawIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJtgvalX W0bdzF3/W2Sw6DciZB4rMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvODdENDUzMTg5 OTRDMTFFQzgyQkEzOTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnGxUDBACvbwIDBACvbwcDBAGvbw4wDQYJKoZIhvcNAQEL BQADggEBAD9sDqWjsUwZTOK36ivQzbI7QUNaKMfjCEfR/aF8tmDDCby8PAwlVezx tSzH6HAWcZtiLOsBaEMugQ2w5wBybo2IUiO+LHbLGvAKaJTIGtli29ycp5hJ+xBn z3ODPUI3tM1rxLOduJknMR7FENnzAnIelWHSqUXDG3yF8VuyS38FrOAmMu23GVVM 7wg+XY6MuUvTFEJlKw+F1RRbuz2PHRM/3alvYOEQG2Vf9tHwqhD41vXNLyDxrUee 4WAEFFejkri4Z4BvJ0mMA2ytlLusysPV3I45OOI5SVMo90JVhHN9ilRsQQwj+YSL OXIOCPnmjPAwV43Afrz9iwRhcJGYrCs= -----END CERTIFICATE-----Generated at Thu May 16 18:26:08 2024 by rpki-client on console-fra.rpki-client.org