$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/27A84B00A1CC11ED8DDB785DC4F9AE02.roa File: 27A84B00A1CC11ED8DDB785DC4F9AE02.roa (raw, json) Hash identifier: hsZwD3Tp7iprkEZyMrEzcTV4AWmWILnDiDx8ZUXHNsQ= Subject key identifier: 71:20:EA:E9:0C:2A:4C:F4:F1:48:C1:BD:31:D2:86:18:26:18:44:5E Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 26A8 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/27A84B00A1CC11ED8DDB785DC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:57 +0000 ROA not before: Wed 10 Apr 2024 16:23:57 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 21443 IP address blocks: 27.110.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9896 (0x26a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:57 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd1d-5c1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:57:41:af:ba:fb:cd:05:76:5d:24:f6:e4:8b: cc:64:db:b4:be:3f:3d:31:4f:2e:dc:d3:63:46:45: e5:1b:f3:0a:9d:f0:b2:e0:59:04:58:2a:50:26:6e: 28:a3:94:94:ee:23:26:d1:bc:39:02:25:05:42:d6: 4b:7b:6b:1f:52:8f:19:42:19:6a:9f:a8:3c:64:99: d8:3d:82:fa:0d:4a:ba:7c:ba:ad:d1:fa:fb:81:c4: bf:e3:ae:ce:ce:e6:52:ff:8e:0f:e0:9a:7c:0d:8f: 92:9e:c5:c0:cc:27:6a:cf:7a:ce:d0:e5:6b:0d:49: 09:43:9e:b4:66:4a:a9:32:45:c3:33:ff:28:73:66: 77:93:7c:9f:5c:e4:83:72:8d:b5:a1:57:df:a6:7b: b7:33:dd:c8:f9:8a:07:32:f9:a7:ea:30:52:91:ba: b0:8f:74:b3:e2:0a:e9:e3:90:68:6e:51:5f:7a:8c: b6:cb:fc:dd:67:da:40:1b:65:1b:6a:01:3c:09:6d: 89:94:cb:da:25:20:47:c3:46:36:79:b4:f3:23:a9: b8:b8:ca:57:0f:76:83:e0:95:d2:f6:cf:ae:c8:67: 14:9c:ae:68:47:47:be:f1:21:29:56:d7:41:f6:ef: 69:73:af:a7:b3:b5:cb:72:8e:0e:4a:1e:f7:ab:f4: 6e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:20:EA:E9:0C:2A:4C:F4:F1:48:C1:BD:31:D2:86:18:26:18:44:5E X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/27A84B00A1CC11ED8DDB785DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.227.0/24 Signature Algorithm: sha256WithRSAEncryption 43:d4:bf:88:4e:9a:8f:61:df:ab:c3:8b:11:de:2b:49:50:b0: b4:55:44:2e:59:52:cf:3d:f0:33:63:d3:97:d1:2b:30:ec:11: 1b:6a:5e:fb:ce:8c:53:68:16:43:ff:ee:3f:40:fc:07:d7:bd: 08:b1:80:f1:d4:67:00:0f:5d:99:a3:ee:54:32:3b:23:a1:7a: ad:48:e8:1b:1a:e5:b2:31:95:e4:3c:07:c7:06:86:0f:c6:77: f3:b8:0f:28:2d:92:2b:75:fb:c2:3f:c7:36:1c:d0:16:18:46: 0d:3d:49:e2:a4:e0:08:77:8c:8d:8e:a1:75:49:6e:96:81:92: a7:94:ff:aa:19:f6:b3:55:60:dd:be:b0:7a:0b:89:7e:50:06: c5:02:62:37:0a:a9:b7:9f:88:0a:a7:44:92:94:de:e3:a3:3d: 8c:38:11:e6:95:8e:02:4c:ba:0c:5a:e6:15:62:71:7f:37:a4: 7c:07:cc:dc:54:c7:39:24:d6:df:f2:6c:b7:16:de:f0:2b:49: 08:50:4e:f7:d5:a7:9f:e4:32:b7:e6:5c:bf:71:67:15:09:26: d2:11:0d:87:d8:ac:d5:c3:64:09:61:a7:b6:85:95:91:a3:85: de:c1:37:85:cf:40:bb:d4:b6:9f:be:0e:8f:e4:f5:85:e1:d5: c5:8a:1f:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzU3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxZC01YzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoldBr7r7zQV2XST25IvMZNu0vj89MU8u3NNjRkXlG/MKnfCy4FkEWCpQJm4o o5SU7iMm0bw5AiUFQtZLe2sfUo8ZQhlqn6g8ZJnYPYL6DUq6fLqt0fr7gcS/467O zuZS/44P4Jp8DY+SnsXAzCdqz3rO0OVrDUkJQ560ZkqpMkXDM/8oc2Z3k3yfXOSD co21oVffpnu3M93I+YoHMvmn6jBSkbqwj3Sz4grp45BoblFfeoy2y/zdZ9pAG2Ub agE8CW2JlMvaJSBHw0Y2ebTzI6m4uMpXD3aD4JXS9s+uyGcUnK5oR0e+8SEpVtdB 9u9pc6+ns7XLco4OSh73q/RutQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEg6ukM Kkz08UjBvTHShhgmGEReMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvMjdBODRCMDBB MUNDMTFFRDhEREI3ODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbbuMwDQYJKoZIhvcNAQELBQADggEBAEPUv4hOmo9h36vD ixHeK0lQsLRVRC5ZUs898DNj05fRKzDsERtqXvvOjFNoFkP/7j9A/AfXvQixgPHU ZwAPXZmj7lQyOyOheq1I6Bsa5bIxleQ8B8cGhg/Gd/O4Dygtkit1+8I/xzYc0BYY Rg09SeKk4Ah3jI2OoXVJbpaBkqeU/6oZ9rNVYN2+sHoLiX5QBsUCYjcKqbefiAqn RJKU3uOjPYw4EeaVjgJMugxa5hVicX83pHwHzNxUxzkk1t/ybLcW3vArSQhQTvfV p5/kMrfmXL9xZxUJJtIRDYfYrNXDZAlhp7aFlZGjhd7BN4XPQLvUtp++Do/k9YXh 1cWKHxs= -----END CERTIFICATE-----Generated at Thu May 2 17:43:51 2024 by rpki-client on console-fra.rpki-client.org