$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/3812172A9EEA11EEA87D017FC4F9AE02.roa File: 3812172A9EEA11EEA87D017FC4F9AE02.roa (raw, json) Hash identifier: WH71W6v4z62eEUi2VOWvu9HZUj4UGtzkB/NlqT3/O3U= Subject key identifier: 6E:93:0D:7A:E4:84:53:E4:24:E6:0E:55:6F:51:84:65:C2:5F:65:D9 Certificate issuer: /CN=A91A1E13/serialNumber=C3AEAC96EDB28C288DD7A5500B512985F1DA3714 Certificate serial: 0605 Authority key identifier: C3:AE:AC:96:ED:B2:8C:28:8D:D7:A5:50:0B:51:29:85:F1:DA:37:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w66slu2yjCiN16VQC1EphfHaNxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/3812172A9EEA11EEA87D017FC4F9AE02.roa Signing time: Mon 02 Dec 2024 22:32:38 +0000 ROA not before: Mon 02 Dec 2024 22:32:38 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 23720 IP address blocks: 27.111.76.0/22 maxlen: 22 103.1.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/w66slu2yjCiN16VQC1EphfHaNxQ.crl rsync://rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/w66slu2yjCiN16VQC1EphfHaNxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w66slu2yjCiN16VQC1EphfHaNxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E13, serialNumber=C3AEAC96EDB28C288DD7A5500B512985F1DA3714 Validity Not Before: Dec 2 22:32:38 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674e3585-0e89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2c:fb:ed:f4:9b:3b:fa:86:bd:08:19:13:ec: f8:e7:d4:6b:74:c5:e4:6c:a9:a2:b6:c2:b2:a1:e9: 00:6f:7b:19:e3:9b:3c:98:e7:96:7c:fc:17:f7:90: b7:dd:c5:3e:54:fb:52:6a:82:2e:dd:0c:2c:cb:4b: 53:06:1a:88:31:8a:e2:34:20:5d:9e:b7:4c:05:89: 6d:b9:13:c4:18:c9:f1:2c:a2:87:54:7f:cc:ca:a3: c9:c4:cc:07:b5:3d:58:40:fc:01:f6:29:31:35:52: c4:72:1a:36:d2:8b:45:e1:e8:13:51:d6:31:00:65: c9:21:d3:7d:ef:cd:99:50:93:57:22:ab:a8:33:48: c4:ec:17:ba:1d:09:0b:9b:7c:38:84:62:a2:20:f8: 8d:8a:4e:4f:7f:b2:c0:b0:ef:51:57:83:0a:13:b2: 61:bb:81:d4:4f:f5:97:07:88:d7:5d:ba:a1:e0:7e: ab:98:7a:b3:62:24:5a:0a:4f:75:e5:6b:c1:d9:8d: b9:3b:27:f3:c4:59:5f:c7:a7:76:2e:68:f4:c4:95: ab:6e:84:7d:97:84:f3:4f:67:44:70:96:9c:e0:94: 1f:c7:d3:62:48:f7:38:1d:26:10:a8:1c:b3:2f:66: ef:d7:0b:0a:7e:f1:71:1c:40:00:30:16:23:f1:d4: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:93:0D:7A:E4:84:53:E4:24:E6:0E:55:6F:51:84:65:C2:5F:65:D9 X509v3 Authority Key Identifier: keyid:C3:AE:AC:96:ED:B2:8C:28:8D:D7:A5:50:0B:51:29:85:F1:DA:37:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/w66slu2yjCiN16VQC1EphfHaNxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w66slu2yjCiN16VQC1EphfHaNxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E13/18F096E0866B11EB9BFD4F32C4F9AE02/3812172A9EEA11EEA87D017FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.76.0/22 103.1.140.0/22 Signature Algorithm: sha256WithRSAEncryption bd:a6:d8:b6:93:11:fd:14:c8:5b:a0:17:63:b3:a1:cd:e8:c7: c6:02:02:d9:c9:23:48:96:71:9b:e6:a6:07:4f:c6:5a:0f:b1: 68:ef:92:dc:a5:9f:8e:43:9f:92:25:e3:e0:b2:76:a4:f2:e8: 3f:46:cf:c8:a8:11:8a:5c:cd:2c:2e:b7:64:5b:5d:ec:cc:33: ac:25:f7:b7:ed:83:17:bd:69:4a:42:25:2f:3b:31:ea:f9:f3: f1:fc:80:a9:83:a6:fe:cb:22:5f:fa:91:d2:0d:8f:3b:9e:a9: e2:6a:5f:6d:47:4a:95:c0:99:70:03:ed:8c:da:2c:60:f2:bf: 81:7b:dc:7e:77:d8:d1:37:03:0c:89:37:fe:f9:bc:13:a4:09: 86:ea:94:25:56:3a:1b:06:03:64:c9:b0:08:b3:f3:59:f9:df: 49:39:fe:b7:40:17:7f:70:fa:a2:6a:50:05:bc:3b:8a:db:8d: 3b:02:20:6a:6c:c2:77:dc:d9:70:6b:1f:04:b4:01:c8:ab:7e: bb:fa:76:f0:58:7d:25:2e:29:22:46:dd:fa:29:fe:79:2d:7f: a7:4a:0b:4a:0b:25:f1:7c:81:13:51:55:0f:84:51:8b:b6:e9: 2a:40:65:bc:94:0b:a8:92:eb:44:f6:e7:91:5a:46:45:72:f6: 4b:84:85:ca -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFMTMxMTAvBgNVBAUTKEMzQUVBQzk2RURCMjhDMjg4REQ3QTU1MDBCNTEyOTg1 RjFEQTM3MTQwHhcNMjQxMjAyMjIzMjM4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlMzU4NS0wZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyz77fSbO/qGvQgZE+z459RrdMXkbKmitsKyoekAb3sZ45s8mOeWfPwX95C3 3cU+VPtSaoIu3Qwsy0tTBhqIMYriNCBdnrdMBYltuRPEGMnxLKKHVH/MyqPJxMwH tT1YQPwB9ikxNVLEcho20otF4egTUdYxAGXJIdN9782ZUJNXIquoM0jE7Be6HQkL m3w4hGKiIPiNik5Pf7LAsO9RV4MKE7Jhu4HUT/WXB4jXXbqh4H6rmHqzYiRaCk91 5WvB2Y25OyfzxFlfx6d2Lmj0xJWrboR9l4TzT2dEcJac4JQfx9NiSPc4HSYQqByz L2bv1wsKfvFxHEAAMBYj8dTppQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG6TDXrk hFPkJOYOVW9RhGXCX2XZMB8GA1UdIwQYMBaAFMOurJbtsowojdelUAtRKYXx2jcU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUUxMy8xOEYwOTZFMDg2 NkIxMUVCOUJGRDRGMzJDNEY5QUUwMi93NjZzbHUyeWpDaU4xNlZRQzFFcGhmSGFO eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c2NnNsdTJ5akNpTjE2VlFDMUVwaGZIYU54US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFFMTMvMThGMDk2RTA4NjZCMTFFQjlCRkQ0RjMyQzRGOUFFMDIvMzgxMjE3MkE5 RUVBMTFFRUE4N0QwMTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIbb0wDBAJnAYwwDQYJKoZIhvcNAQELBQADggEBAL2m2LaT Ef0UyFugF2Ozoc3ox8YCAtnJI0iWcZvmpgdPxloPsWjvktyln45Dn5Il4+CydqTy 6D9Gz8ioEYpczSwut2RbXezMM6wl97ftgxe9aUpCJS87Mer58/H8gKmDpv7LIl/6 kdINjzueqeJqX21HSpXAmXAD7YzaLGDyv4F73H532NE3AwyJN/75vBOkCYbqlCVW OhsGA2TJsAiz81n530k5/rdAF39w+qJqUAW8O4rbjTsCIGpswnfc2XBrHwS0Acir frv6dvBYfSUuKSJG3fop/nktf6dKC0oLJfF8gRNRVQ+EUYu26SpAZbyUC6iS60T2 55FaRkVy9kuEhco= -----END CERTIFICATE-----Generated at Sat Apr 26 15:05:40 2025 by rpki-client