$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa File: 27DB37683BD211EE8094355FC4F9AE02.roa (raw, json) Hash identifier: Fv5yzaRaYXm7EcaxJ9d0RT5up4myTdlO4UPvIXp3L88= Subject key identifier: 17:5A:6C:5F:86:6A:C4:73:F8:07:76:D4:FE:26:EF:89:4D:E0:FF:44 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: F9 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa Signing time: Sun 03 Nov 2024 03:37:18 +0000 ROA not before: Sun 03 Nov 2024 03:37:18 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133093 IP address blocks: 103.126.80.0/24 maxlen: 24 103.126.81.0/24 maxlen: 24 103.243.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Nov 3 03:37:18 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726efee-6e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:49:72:b7:84:a3:da:5a:ae:ca:4a:14:57:df: 77:82:57:fd:84:32:b5:9b:b0:a9:e9:24:44:d7:5b: b7:e0:11:4c:1b:56:ad:e5:ba:de:57:93:1e:c4:29: c4:52:5b:93:82:b7:c1:c8:52:3c:97:07:59:52:48: a3:be:a9:26:8e:04:ef:69:21:42:1c:cc:16:01:8a: 6c:3e:75:b8:32:86:c9:ff:53:ba:3c:0b:f0:3f:71: 74:4e:d2:3d:16:8e:fd:21:0e:3b:24:94:1e:4b:cb: 3e:bc:85:f5:03:15:a5:1a:ca:4a:da:e2:4c:db:b0: dd:83:27:31:9a:a8:c5:cd:3d:33:a5:b1:73:c2:a7: 97:c2:70:88:ec:fe:8d:9b:83:43:b8:72:fb:9f:74: 7d:78:79:a3:ae:fe:32:09:d8:03:6a:d7:0d:4b:86: ab:d7:b9:ad:92:d2:75:f7:07:5a:d2:aa:90:f7:56: 71:1a:6e:59:e1:25:01:65:f2:0d:1a:35:0e:93:ca: ae:ce:af:4e:88:f1:df:fc:21:6a:a1:53:1b:8d:a5: 6e:fb:51:30:35:e3:81:3c:11:58:4f:5d:92:6f:b1: d0:1c:29:75:45:76:65:de:ac:b0:90:af:3c:4b:48: c9:9c:70:1f:f1:a6:7a:7b:cf:3e:25:2c:2a:19:b1: b4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5A:6C:5F:86:6A:C4:73:F8:07:76:D4:FE:26:EF:89:4D:E0:FF:44 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.80.0/23 103.243.17.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:11:b6:11:6b:f6:c3:f9:bc:b9:2b:46:01:a7:06:ec:ab:a5: f0:cc:76:84:33:e2:d7:7a:77:38:67:fe:b7:09:c8:da:35:e4: 3e:3d:ed:cc:20:bb:50:c1:45:ab:13:13:66:16:e5:22:c2:39: 08:05:d8:10:db:15:40:fb:c8:97:3d:17:e7:83:92:78:6a:72: 8d:98:d9:09:ba:b7:74:1a:41:6f:15:19:3e:88:93:4c:aa:a5: 70:54:61:04:34:d5:da:47:1d:65:7b:7e:2e:b5:0d:02:56:e6: f9:4b:d4:8c:2f:82:7f:b9:45:e2:01:53:1f:cc:cb:79:e1:4a: ef:69:b6:0a:db:c5:e5:14:6d:11:7d:87:2d:3a:38:0a:b5:58: 43:70:88:1c:9c:a3:c4:42:6c:ca:43:ea:4d:21:99:1f:5d:18: 74:17:d0:cf:d8:e8:db:e4:3a:55:90:a4:7d:97:ea:e1:15:83: 5c:56:b9:81:16:cd:27:b9:3d:5b:98:b7:4e:f7:cc:ea:fe:ae: eb:62:e2:cc:a4:76:37:4e:d7:58:83:c2:fe:fa:e7:17:7f:ce: 2c:c4:86:cc:ca:88:30:81:7e:86:77:ed:92:d7:5c:25:27:18: 75:b5:9e:f3:90:d2:16:f8:24:f7:cf:3a:37:19:ce:90:a8:70: 0c:bb:03:31 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjQxMTAzMDMzNzE4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZWZlZS02ZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArElyt4Sj2lquykoUV993glf9hDK1m7Cp6SRE11u34BFMG1at5breV5MexCnE UluTgrfByFI8lwdZUkijvqkmjgTvaSFCHMwWAYpsPnW4MobJ/1O6PAvwP3F0TtI9 Fo79IQ47JJQeS8s+vIX1AxWlGspK2uJM27DdgycxmqjFzT0zpbFzwqeXwnCI7P6N m4NDuHL7n3R9eHmjrv4yCdgDatcNS4ar17mtktJ19wda0qqQ91ZxGm5Z4SUBZfIN GjUOk8quzq9OiPHf/CFqoVMbjaVu+1EwNeOBPBFYT12Sb7HQHCl1RXZl3qywkK88 S0jJnHAf8aZ6e88+JSwqGbG0lQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBdabF+G asRz+Ad21P4m74lN4P9EMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRERDEvNjhDMUQ0OTYzQkQwMTFFRThCQUMzNTFBQzRGOUFFMDIvMjdEQjM3Njgz QkQyMTFFRTgwOTQzNTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnflADBABn8xEwDQYJKoZIhvcNAQELBQADggEBAE4RthFr 9sP5vLkrRgGnBuyrpfDMdoQz4td6dzhn/rcJyNo15D497cwgu1DBRasTE2YW5SLC OQgF2BDbFUD7yJc9F+eDknhqco2Y2Qm6t3QaQW8VGT6Ik0yqpXBUYQQ01dpHHWV7 fi61DQJW5vlL1Iwvgn+5ReIBUx/My3nhSu9ptgrbxeUUbRF9hy06OAq1WENwiByc o8RCbMpD6k0hmR9dGHQX0M/Y6NvkOlWQpH2X6uEVg1xWuYEWzSe5PVuYt073zOr+ ruti4sykdjdO11iDwv765xd/zizEhszKiDCBfoZ37ZLXXCUnGHW1nvOQ0hb4JPfP OjcZzpCocAy7AzE= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org