$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/27865D0CA81311EF8B4DB01EC4F9AE02.roa File: 27865D0CA81311EF8B4DB01EC4F9AE02.roa (raw, json) Hash identifier: fmHDWgZFbuZ3uh/fC7/RH+WZvmspuBEuvGTJ5HF+QiQ= Subject key identifier: 57:92:CA:02:77:F4:8B:25:FE:9B:AE:F3:AC:7B:D3:88:A2:27:B7:76 Certificate issuer: /CN=A91DDCD9/serialNumber=1679EA066683F2A1550DE70F458432DD1A83270F Certificate serial: 0A7D Authority key identifier: 16:79:EA:06:66:83:F2:A1:55:0D:E7:0F:45:84:32:DD:1A:83:27:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnnqBmaD8qFVDecPRYQy3RqDJw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/27865D0CA81311EF8B4DB01EC4F9AE02.roa Signing time: Thu 21 Nov 2024 14:16:09 +0000 ROA not before: Thu 21 Nov 2024 14:16:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139223 IP address blocks: 103.139.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/FnnqBmaD8qFVDecPRYQy3RqDJw8.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/FnnqBmaD8qFVDecPRYQy3RqDJw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnnqBmaD8qFVDecPRYQy3RqDJw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9/serialNumber=1679EA066683F2A1550DE70F458432DD1A83270F Validity Not Before: Nov 21 14:16:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673f40a9-cf48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:79:0b:cb:e1:a1:d6:38:cf:59:13:e3:a7: 9e:2c:d8:fb:9e:df:1a:0c:d4:73:b4:48:6b:ac:3e: b7:e7:26:86:46:ce:83:53:8d:20:83:e0:32:c6:43: 60:f8:fc:3f:f6:33:10:74:4f:ad:02:28:ed:37:a5: dc:23:a8:f8:29:f8:86:22:f8:e8:7e:e7:ea:26:18: 3b:50:bc:66:02:53:13:56:fa:e5:63:cd:4f:4c:a6: 34:45:fd:c4:2b:fd:c5:4d:13:ca:ae:9a:b6:eb:af: 3b:46:ca:ad:cd:1d:4a:ad:0b:2d:21:07:de:1a:07: 18:53:fa:a1:8c:21:df:53:f4:98:47:45:bb:5b:d8: a8:c0:f3:93:8a:68:4e:70:59:f8:a2:47:6c:a9:ca: f2:39:f7:76:ec:9e:59:b0:7b:a2:7a:fc:11:a1:f4: bc:63:fc:e0:2c:79:27:a0:e1:91:0a:ee:b8:a3:1f: ed:23:96:32:eb:94:53:b1:9a:06:e0:6b:bf:ce:15: a5:5a:28:aa:e2:4c:0c:19:ee:8e:45:40:5c:e6:83: f8:b6:70:a5:d9:7a:af:10:fa:b2:13:5a:63:fd:f3: fc:39:ce:64:3b:13:79:7f:c9:dd:15:8f:29:65:16: 71:ec:fa:af:67:67:53:aa:29:a3:c2:f7:8f:3a:ee: 4a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:92:CA:02:77:F4:8B:25:FE:9B:AE:F3:AC:7B:D3:88:A2:27:B7:76 X509v3 Authority Key Identifier: keyid:16:79:EA:06:66:83:F2:A1:55:0D:E7:0F:45:84:32:DD:1A:83:27:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/FnnqBmaD8qFVDecPRYQy3RqDJw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnnqBmaD8qFVDecPRYQy3RqDJw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/27865D0CA81311EF8B4DB01EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.253.0/24 Signature Algorithm: sha256WithRSAEncryption 43:11:fc:bf:f0:52:da:e6:73:f8:3d:41:48:1a:52:54:cf:61: 31:bf:de:86:39:65:55:37:01:b9:35:b1:43:44:62:18:8f:e3: e7:0d:8c:b0:5c:0a:9e:20:10:4e:88:ec:c3:08:c6:dc:db:e7: 10:ea:35:9d:90:f8:64:21:ac:0a:be:85:5a:cb:a8:ab:2e:f0: 02:81:84:97:cd:9a:3b:e0:b1:f6:59:f2:19:e7:c8:9c:18:f1: 4a:26:74:d4:cb:3e:23:b6:d1:6e:61:81:76:11:18:ee:e8:cd: 31:7c:76:18:ac:1f:51:e1:8e:18:34:d8:b0:31:e0:1a:e1:3e: f0:22:0d:88:4a:22:70:a8:9a:4b:51:e4:cc:f3:07:8b:a8:7d: 3a:b6:7f:49:a9:b7:6a:20:33:cc:3e:16:d2:6c:ce:3b:3c:c9: c8:95:06:b2:0d:eb:4a:58:2a:58:a9:f9:a1:14:0b:43:e9:12: ea:29:34:e3:a8:ce:eb:7b:c4:b9:7a:3f:9d:11:59:10:58:69: 94:09:b7:05:15:64:49:0f:f3:0d:ab:54:6c:d9:14:02:95:1b: ac:55:1b:3a:5f:37:2b:b5:65:bd:c1:b6:b4:c4:c0:63:ce:25: 90:49:5c:d3:a7:01:e6:b9:73:51:2c:3b:f0:3f:4b:91:71:88: 03:8d:37:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDRDkxMTAvBgNVBAUTKDE2NzlFQTA2NjY4M0YyQTE1NTBERTcwRjQ1ODQzMkRE MUE4MzI3MEYwHhcNMjQxMTIxMTQxNjA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNmNDBhOS1jZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xF5C8vhodY4z1kT46eeLNj7nt8aDNRztEhrrD635yaGRs6DU40gg+AyxkNg +Pw/9jMQdE+tAijtN6XcI6j4KfiGIvjofufqJhg7ULxmAlMTVvrlY81PTKY0Rf3E K/3FTRPKrpq26687RsqtzR1KrQstIQfeGgcYU/qhjCHfU/SYR0W7W9iowPOTimhO cFn4okdsqcryOfd27J5ZsHuievwRofS8Y/zgLHknoOGRCu64ox/tI5Yy65RTsZoG 4Gu/zhWlWiiq4kwMGe6ORUBc5oP4tnCl2XqvEPqyE1pj/fP8Oc5kOxN5f8ndFY8p ZRZx7PqvZ2dTqimjwvePOu5KRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFeSygJ3 9Isl/puu86x704iiJ7d2MB8GA1UdIwQYMBaAFBZ56gZmg/KhVQ3nD0WEMt0agycP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENEOS80MTBCQkMxNDRF NkMxMUVBODkwNDk3NDdDNEY5QUUwMi9Gbm5xQm1hRDhxRlZEZWNQUllReTNScURK dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZubnFCbWFEOHFGVkRlY1BSWVF5M1JxREp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDRDkvNDEwQkJDMTQ0RTZDMTFFQTg5MDQ5NzQ3QzRGOUFFMDIvMjc4NjVEMENB ODEzMTFFRjhCNERCMDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni/0wDQYJKoZIhvcNAQELBQADggEBAEMR/L/wUtrmc/g9 QUgaUlTPYTG/3oY5ZVU3Abk1sUNEYhiP4+cNjLBcCp4gEE6I7MMIxtzb5xDqNZ2Q +GQhrAq+hVrLqKsu8AKBhJfNmjvgsfZZ8hnnyJwY8UomdNTLPiO20W5hgXYRGO7o zTF8dhisH1Hhjhg02LAx4BrhPvAiDYhKInComktR5MzzB4uofTq2f0mpt2ogM8w+ FtJszjs8yciVBrIN60pYKlip+aEUC0PpEuopNOOozut7xLl6P50RWRBYaZQJtwUV ZEkP8w2rVGzZFAKVG6xVGzpfNyu1Zb3BtrTEwGPOJZBJXNOnAea5c1EsO/A/S5Fx iAONN4U= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org