$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa File: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (raw, json) Hash identifier: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM= Subject key identifier: F4:E4:FC:B1:DC:F7:5E:1D:61:2E:98:80:B7:B3:33:D0:58:F1:AB:4C Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 0155 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa Signing time: Thu 17 Oct 2024 03:06:24 +0000 ROA not before: Thu 17 Oct 2024 03:06:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 63834 IP address blocks: 103.40.208.0/22 maxlen: 22 103.40.208.0/24 maxlen: 24 103.40.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Oct 17 03:06:24 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67107f30-e2d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:0f:cf:90:35:4d:91:db:73:3b:24:79:aa: ad:35:0b:1c:b1:b3:93:ba:69:79:0a:d7:8f:c9:62: d8:bf:b7:ff:ed:53:dc:a9:ae:f3:ee:81:05:0a:ee: 02:14:38:5e:7c:1c:c4:37:05:1b:5e:7d:6f:ef:c0: c5:2b:df:cb:f2:fb:9e:9c:8d:28:cf:79:6d:7c:32: c2:dc:8f:80:ba:12:b6:dd:62:13:40:9b:96:50:00: 2e:ad:b9:97:27:94:18:cc:1c:04:34:13:9a:86:eb: 88:ed:1f:8b:14:2a:14:62:06:04:ff:87:bf:6a:2f: 04:d1:a2:75:cb:60:d1:39:06:e3:c2:b5:0e:06:48: 19:11:b4:4a:27:d2:a5:f0:51:62:96:57:08:14:25: ff:40:cc:c3:28:d5:ea:b6:17:b8:85:36:f6:7e:75: c6:01:10:30:c3:aa:2b:6c:5c:ba:43:d0:69:7b:bd: 10:0a:17:8f:77:88:71:78:f0:b7:f7:94:0c:aa:09: 0c:45:05:73:6b:d4:7f:53:f8:b9:6c:0c:26:24:54: bf:30:3e:d1:42:5f:bd:03:b0:6f:22:33:62:1e:ee: 3e:93:cd:1f:10:6d:7f:74:eb:81:40:e1:cb:9a:0d: 94:88:14:20:85:c3:9c:0c:be:22:f4:51:75:af:a8: 0c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E4:FC:B1:DC:F7:5E:1D:61:2E:98:80:B7:B3:33:D0:58:F1:AB:4C X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.208.0/22 Signature Algorithm: sha256WithRSAEncryption 92:67:6d:56:7b:4b:1c:7b:54:d9:09:2a:e8:1e:57:cc:21:b4: 39:38:fe:3e:b9:db:6d:5f:90:19:cb:cd:fa:97:54:64:b7:be: c6:af:ca:9e:01:4f:34:e7:bb:82:6c:8f:a0:37:c4:38:52:c6: f2:d3:f8:3f:e0:b9:c9:83:df:48:9c:77:b6:68:35:68:25:14: e2:6c:b3:1d:ff:83:f6:98:df:ec:45:ef:6f:6f:25:14:77:3e: 84:ab:00:bf:91:6c:94:0d:4e:e7:bd:eb:d3:2e:e2:b3:a9:80: 85:f4:9b:a7:ae:a6:fe:b1:7d:b3:38:eb:ef:d9:3a:74:e3:84: 66:8d:ec:50:44:ba:74:ec:84:c9:86:9f:e9:8c:b2:9e:fd:37: 94:db:96:21:c2:e7:32:19:32:04:32:a1:bf:5d:ee:c3:9a:51: 6a:0c:36:e7:af:76:a1:74:51:54:96:c1:c4:b2:27:2e:7d:b1: 52:6b:75:75:c5:9b:65:65:63:51:64:28:a5:d9:0d:92:51:0c: 47:66:ed:32:fd:d3:86:45:bc:2a:c3:56:8a:6c:5e:48:60:d5: 57:b5:2a:67:55:20:f1:2b:2d:45:c7:81:b0:21:32:cd:04:c6: 2c:87:74:76:cd:3a:bb:6a:cb:cd:34:9d:a6:e7:88:ad:50:9e: 6f:98:4a:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjQxMDE3MDMwNjI0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwN2YzMC1lMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JcPz5A1TZHbczskeaqtNQscsbOTuml5CtePyWLYv7f/7VPcqa7z7oEFCu4C FDhefBzENwUbXn1v78DFK9/L8vuenI0oz3ltfDLC3I+AuhK23WITQJuWUAAurbmX J5QYzBwENBOahuuI7R+LFCoUYgYE/4e/ai8E0aJ1y2DROQbjwrUOBkgZEbRKJ9Kl 8FFillcIFCX/QMzDKNXqthe4hTb2fnXGARAww6orbFy6Q9Bpe70QChePd4hxePC3 95QMqgkMRQVza9R/U/i5bAwmJFS/MD7RQl+9A7BvIjNiHu4+k80fEG1/dOuBQOHL mg2UiBQghcOcDL4i9FF1r6gMbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPTk/LHc 914dYS6YgLezM9BY8atMMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCM0UvREFCMUMzQTY4Q0ZCMTFFRDkyRTI1QjYxQzRGOUFFMDIvODE5RjdBNjBD RjhCMTFFREFFNzdCMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKNAwDQYJKoZIhvcNAQELBQADggEBAJJnbVZ7Sxx7VNkJ KugeV8whtDk4/j65221fkBnLzfqXVGS3vsavyp4BTzTnu4Jsj6A3xDhSxvLT+D/g ucmD30icd7ZoNWglFOJssx3/g/aY3+xF729vJRR3PoSrAL+RbJQNTue969Mu4rOp gIX0m6eupv6xfbM46+/ZOnTjhGaN7FBEunTshMmGn+mMsp79N5TbliHC5zIZMgQy ob9d7sOaUWoMNuevdqF0UVSWwcSyJy59sVJrdXXFm2VlY1FkKKXZDZJRDEdm7TL9 04ZFvCrDVopsXkhg1Ve1KmdVIPErLUXHgbAhMs0ExiyHdHbNOrtqy800nabniK1Q nm+YSno= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org