$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/C12380C49B0511EDB2F0BD4EC4F9AE02.roa File: C12380C49B0511EDB2F0BD4EC4F9AE02.roa (raw, json) Hash identifier: 6biR6MQ0JUDTuMdhFEHjNfr8X+saMuO1Yl6P4/jh0zs= Subject key identifier: B9:7A:37:2C:86:B5:CC:A7:20:39:03:28:C2:57:69:39:5E:BB:A2:D1 Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Certificate serial: 0A77 Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/C12380C49B0511EDB2F0BD4EC4F9AE02.roa Signing time: Tue 06 Feb 2024 20:18:43 +0000 ROA not before: Tue 06 Feb 2024 20:18:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56111 IP address blocks: 27.121.108.0/22 maxlen: 22 27.121.108.0/23 maxlen: 23 27.121.108.0/24 maxlen: 24 27.121.109.0/24 maxlen: 24 27.121.110.0/23 maxlen: 23 27.121.110.0/24 maxlen: 24 27.121.111.0/24 maxlen: 24 103.229.196.0/23 maxlen: 23 103.229.196.0/24 maxlen: 24 103.229.197.0/24 maxlen: 24 2402:5700::/32 maxlen: 32 2402:5700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2679 (0xa77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B8A Validity Not Before: Feb 6 20:18:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c29423-0ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:03:fb:6d:95:f0:55:ec:b0:f5:a7:ed:f6:f4: 57:25:a5:81:c0:39:b3:b2:b3:8c:a5:ce:92:1b:72: 08:89:28:07:d5:ff:32:8d:80:3c:b6:4e:7b:b2:bd: 5d:e9:99:02:25:f2:b1:59:04:ec:d8:b3:d7:e2:19: a0:7b:8b:56:07:a9:e0:10:81:c8:ca:5b:40:35:c5: 95:0f:8d:25:25:04:eb:df:3d:9b:b5:b8:1a:a0:60: 90:57:c7:da:a4:ab:a6:c9:ba:3f:2a:d7:16:a4:94: 35:2b:4e:f6:8b:71:ff:6b:2b:79:72:32:44:e4:ad: 3e:13:d7:16:63:d5:83:cf:cb:57:3d:ee:56:20:0b: 31:c0:df:9d:22:ff:16:62:64:00:f5:e5:70:c9:f7: 0a:7e:ec:d7:49:d0:5a:b2:46:79:8b:be:bd:b7:1b: 11:e7:5e:8b:39:a5:90:1e:3f:2e:9b:d0:da:62:ef: 48:f2:7b:63:91:d6:f0:e3:98:0e:05:e1:07:f9:1e: f7:0a:50:20:40:e5:59:1e:98:ad:94:05:5a:e8:a7: 8e:e5:60:e8:c6:15:11:6e:a5:51:f4:5b:52:4b:d0: cc:8b:cd:80:97:25:29:0d:1b:ad:30:b8:28:96:5b: 63:03:e4:fc:1d:c5:8b:2b:fe:dd:51:37:4a:ed:9c: 29:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7A:37:2C:86:B5:CC:A7:20:39:03:28:C2:57:69:39:5E:BB:A2:D1 X509v3 Authority Key Identifier: keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/C12380C49B0511EDB2F0BD4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.121.108.0/22 103.229.196.0/23 IPv6: 2402:5700::/32 Signature Algorithm: sha256WithRSAEncryption 2b:15:a8:a7:d1:1d:3a:03:b1:28:e0:bf:72:06:e3:5c:bd:b2: a7:0b:dd:72:3c:01:d9:e3:c8:57:28:81:ae:46:c4:b8:9f:df: a3:43:70:5f:a5:91:2f:c7:10:a5:9d:e2:54:28:11:ea:57:42: c5:f2:11:b1:28:55:d8:a8:6b:de:dc:f0:0a:21:e7:6f:0f:4b: b3:10:6f:64:ce:c7:ea:23:04:b9:5b:7c:f0:53:6f:e1:79:99: fe:82:45:a0:8e:3f:c6:9a:47:29:4f:38:3e:b2:27:a5:88:7e: a6:ca:22:59:43:13:69:a4:db:5a:25:2f:90:2b:39:96:76:5b: bc:41:d2:2b:b8:a4:dd:97:b5:77:42:ab:f0:83:a2:74:9e:c5: 7a:13:e0:da:63:61:bf:0a:93:42:f7:93:1d:e2:99:c1:3c:70: 29:22:bc:2a:ec:a0:81:6a:ef:26:1f:d4:28:21:62:df:f4:d4: d7:1b:0b:b9:35:93:53:57:6d:e4:4c:86:1f:2a:63:11:f2:ad: 36:5c:a1:55:ca:87:11:64:1b:f7:33:19:59:7a:18:13:dc:8a: c0:7e:12:c3:32:ee:2f:d3:ce:72:74:c1:1e:dd:f6:1b:89:72: 36:c9:51:47:c6:fd:a9:79:33:c7:f0:56:c9:b8:1f:8d:6f:5a: af:88:7e:1a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCOEExMTAvBgNVBAUTKDQ1NTBDNjkwNTFCQUExOEFGMTEyREM3NkI1RjVERjlF NkI3OTQwRDUwHhcNMjQwMjA2MjAxODQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOTQyMy0wY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgP7bZXwVeyw9aft9vRXJaWBwDmzsrOMpc6SG3IIiSgH1f8yjYA8tk57sr1d 6ZkCJfKxWQTs2LPX4hmge4tWB6ngEIHIyltANcWVD40lJQTr3z2btbgaoGCQV8fa pKumybo/KtcWpJQ1K072i3H/ayt5cjJE5K0+E9cWY9WDz8tXPe5WIAsxwN+dIv8W YmQA9eVwyfcKfuzXSdBaskZ5i769txsR516LOaWQHj8um9DaYu9I8ntjkdbw45gO BeEH+R73ClAgQOVZHpitlAVa6KeO5WDoxhURbqVR9FtSS9DMi82AlyUpDRutMLgo lltjA+T8HcWLK/7dUTdK7ZwpCwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLl6NyyG tcynIDkDKMJXaTleu6LRMB8GA1UdIwQYMBaAFEVQxpBRuqGK8RLcdrX1355reUDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4QS8wOEM0MzkyNDM4 NEQxMUVBQTRGNTVCNzNDNEY5QUUwMi9SVkRHa0ZHNm9ZcnhFdHgydGZYZm5tdDVR TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JWREdrRkc2b1lyeEV0eDJ0Zlhmbm10NVFOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNCOEEvMDhDNDM5MjQzODREMTFFQUE0RjU1QjczQzRGOUFFMDIvQzEyMzgwQzQ5 QjA1MTFFREIyRjBCRDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIbeWwDBAFn5cQwDQQCAAIwBwMFACQCVwAwDQYJKoZIhvcN AQELBQADggEBACsVqKfRHToDsSjgv3IG41y9sqcL3XI8AdnjyFcoga5GxLif36ND cF+lkS/HEKWd4lQoEepXQsXyEbEoVdioa97c8Aoh528PS7MQb2TOx+ojBLlbfPBT b+F5mf6CRaCOP8aaRylPOD6yJ6WIfqbKIllDE2mk21olL5ArOZZ2W7xB0iu4pN2X tXdCq/CDonSexXoT4NpjYb8Kk0L3kx3imcE8cCkivCrsoIFq7yYf1CghYt/01Ncb C7k1k1NXbeRMhh8qYxHyrTZcoVXKhxFkG/czGVl6GBPcisB+EsMy7i/TznJ0wR7d 9huJcjbJUUfG/al5M8fwVsm4H41vWq+Ifho= -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:02 2025 by rpki-client