$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/14E0C65A4BFD11EAAB81FE0DC4F9AE02.roa File: 14E0C65A4BFD11EAAB81FE0DC4F9AE02.roa (raw, json) Hash identifier: 1ThofXwtJDa0er1G9OhUMcBj7ScXSoWzJ/pOejR8jU0= Subject key identifier: 1B:E1:34:8B:8D:51:DA:59:EE:60:57:74:C7:1B:D4:52:68:0B:25:57 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2695 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/14E0C65A4BFD11EAAB81FE0DC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:39 +0000 ROA not before: Wed 10 Apr 2024 16:23:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132508 IP address blocks: 27.110.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9877 (0x2695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd0b-2d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8c:e0:0e:23:18:dc:f1:28:a0:f5:7b:23:03: d8:62:57:10:6b:ab:c7:de:2c:62:f8:56:83:dc:db: fb:51:c3:78:9d:61:e5:8f:e8:be:5f:27:2d:41:eb: 44:aa:c2:0f:05:d2:f9:8d:ed:59:de:31:a6:d0:56: 64:80:68:30:40:38:b9:68:32:5f:99:f3:36:8f:28: 5e:21:8d:14:b0:f2:93:4c:df:d9:bd:56:38:d5:9c: 3a:b0:e3:2a:ba:ee:31:78:1e:c9:88:1a:de:5e:46: 7f:b6:0f:7b:a3:49:9e:19:62:77:4c:91:0e:ee:a4: 9f:91:23:b2:14:63:ec:48:13:ad:b9:de:0c:c6:dd: 4c:86:73:5e:fe:06:d8:18:d8:21:2d:e0:ab:0e:46: 77:6f:bd:17:25:88:7b:6e:33:f9:08:d3:c7:0e:61: fb:0d:08:06:15:bb:e0:43:c6:b1:c9:a7:e1:e3:9d: c9:5b:00:c1:39:e0:ed:08:75:90:da:39:78:c6:a1: a7:3f:81:74:ca:6d:86:21:4c:f1:ca:a0:df:ca:67: 4a:40:83:b4:1f:6f:e7:71:df:d3:4c:07:81:b4:4a: 44:f8:ea:10:4b:16:16:55:b3:aa:61:96:dc:18:5e: 28:39:da:40:63:6a:cc:20:ef:07:ab:44:28:84:0e: 32:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E1:34:8B:8D:51:DA:59:EE:60:57:74:C7:1B:D4:52:68:0B:25:57 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/14E0C65A4BFD11EAAB81FE0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:92:a5:7a:fb:4d:44:02:d7:76:ec:ad:f4:85:10:a2:bf:9e: ab:b0:52:2d:2f:3e:7b:df:76:a0:6f:70:ac:f0:66:7d:b7:ac: 7b:ca:a8:7b:b1:56:52:ff:70:a9:b6:26:3c:9e:5d:34:b8:cd: 56:6c:a6:fc:b3:cd:5f:7c:d3:df:be:a8:cd:a8:16:49:92:c6: 60:01:34:76:33:de:ea:1b:c9:79:7f:ed:51:9a:5d:20:bb:1a: 87:73:08:7e:92:76:c7:7e:96:66:5a:d1:7d:49:92:a0:31:11: c2:78:7b:9a:9c:28:da:95:65:67:f5:48:39:87:43:b6:69:1b: 1f:43:60:10:99:1c:8f:53:c3:ad:b5:9d:36:3d:69:75:af:e0: f2:83:b9:9c:a9:0f:59:08:35:9f:92:ab:bf:df:ca:dc:08:d8: 6b:55:db:46:24:73:0f:c3:8e:87:70:c1:f0:91:5b:34:7c:3e: f2:35:00:ee:ea:ff:73:d7:86:0a:b2:29:70:b1:6c:7e:33:a8: 60:61:e3:0d:27:92:90:4a:25:ee:e9:40:91:fd:1a:0a:7f:51: 25:0a:25:d1:ba:ee:83:4e:0d:5d:41:b7:df:73:9f:64:66:da: ff:04:65:43:3f:55:ae:68:e3:e2:28:01:30:05:a4:f5:ae:ef: bf:2c:21:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQwYi0yZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYzgDiMY3PEooPV7IwPYYlcQa6vH3ixi+FaD3Nv7UcN4nWHlj+i+XyctQetE qsIPBdL5je1Z3jGm0FZkgGgwQDi5aDJfmfM2jyheIY0UsPKTTN/ZvVY41Zw6sOMq uu4xeB7JiBreXkZ/tg97o0meGWJ3TJEO7qSfkSOyFGPsSBOtud4Mxt1MhnNe/gbY GNghLeCrDkZ3b70XJYh7bjP5CNPHDmH7DQgGFbvgQ8axyafh453JWwDBOeDtCHWQ 2jl4xqGnP4F0ym2GIUzxyqDfymdKQIO0H2/ncd/TTAeBtEpE+OoQSxYWVbOqYZbc GF4oOdpAY2rMIO8Hq0QohA4ysQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvhNIuN UdpZ7mBXdMcb1FJoCyVXMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvMTRFMEM2NUE0 QkZEMTFFQUFCODFGRTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbboEwDQYJKoZIhvcNAQELBQADggEBAF2SpXr7TUQC13bs rfSFEKK/nquwUi0vPnvfdqBvcKzwZn23rHvKqHuxVlL/cKm2JjyeXTS4zVZspvyz zV9809++qM2oFkmSxmABNHYz3uobyXl/7VGaXSC7GodzCH6Sdsd+lmZa0X1JkqAx EcJ4e5qcKNqVZWf1SDmHQ7ZpGx9DYBCZHI9Tw621nTY9aXWv4PKDuZypD1kINZ+S q7/fytwI2GtV20Ykcw/DjodwwfCRWzR8PvI1AO7q/3PXhgqyKXCxbH4zqGBh4w0n kpBKJe7pQJH9Ggp/USUKJdG67oNODV1Bt99zn2Rm2v8EZUM/Va5o4+IoATAFpPWu 778sIWo= -----END CERTIFICATE-----Generated at Thu May 2 17:18:57 2024 by rpki-client on console-ams.rpki-client.org