$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa File: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (raw, json) Hash identifier: B66tTp9UFLxg89e1Yp4kvRmQAE6WLkVvDIK8MS/7riQ= Subject key identifier: 48:BB:8E:B7:CD:97:46:F4:B6:C0:3C:D9:FA:CD:0A:1F:40:86:73:5A Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: AB Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa Signing time: Thu 23 Nov 2023 05:15:19 +0000 ROA not before: Thu 23 Nov 2023 05:15:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 63834 IP address blocks: 103.40.208.0/22 maxlen: 22 103.40.208.0/24 maxlen: 24 103.40.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Nov 23 05:15:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655edfe7-28fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:6e:e2:2e:fe:8b:a4:2b:41:89:06:91:d3: 91:cc:79:72:71:94:7d:63:a6:6c:30:d9:2c:1d:f8: 6a:4e:36:51:93:14:12:c7:6d:f3:ec:53:ee:5a:70: dc:de:2a:8f:46:93:a2:1c:a3:e2:68:dc:a3:2d:cc: 3f:2b:44:5d:a2:31:24:cc:a0:0b:96:a0:54:3b:e7: ab:ef:34:af:71:c8:a9:7d:1c:a5:fb:c8:26:45:a9: c4:5c:a2:ee:47:af:78:6c:8d:f7:4a:59:12:35:aa: 98:e1:6e:ac:23:dd:f1:43:1d:81:45:99:ea:b0:68: 00:64:e1:fb:56:95:a8:7b:36:f6:ed:78:9a:3a:d4: 7f:a2:aa:52:87:32:fc:a5:c5:39:be:4f:8c:ec:de: d6:1f:e0:cd:e7:86:7f:66:bd:14:9c:44:2d:fc:6b: 65:72:b3:b4:4d:4b:7f:7c:a2:a9:1d:3e:9d:c5:79: 71:26:29:a4:a7:72:8e:ad:57:87:0c:56:c3:f6:22: c6:f7:41:1d:7f:7e:eb:29:cd:d6:9e:b8:89:8f:e2: 9a:3f:1e:a0:9c:dd:14:97:7c:e5:4a:54:ea:85:a0: 12:80:78:a4:77:55:31:a7:58:96:51:20:bd:57:a3: fe:0d:2d:b9:85:bb:a0:d6:31:1a:ed:99:fe:96:56: 42:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BB:8E:B7:CD:97:46:F4:B6:C0:3C:D9:FA:CD:0A:1F:40:86:73:5A X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/819F7A60CF8B11EDAE77B351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.208.0/22 Signature Algorithm: sha256WithRSAEncryption 33:51:37:8a:38:1e:ce:0c:55:a2:a5:f4:27:29:e2:36:96:80: 44:90:de:a4:f2:fc:ce:9d:dc:ec:1c:b7:92:0e:33:90:64:81: df:40:42:b4:b2:af:45:e8:bb:dc:33:87:e4:d6:0f:d3:ae:c9: e8:4a:c3:ee:0e:6a:d1:a4:58:17:0c:eb:c7:e1:e2:85:60:52: 3e:c6:2d:f8:ee:76:1d:4e:65:1a:58:4c:da:68:14:73:95:f7: 42:36:ff:ae:22:61:93:2e:41:8d:be:f8:eb:76:d2:21:7f:22: 7a:5b:52:47:e2:b9:09:80:a7:9c:8c:13:de:67:bd:99:43:43: c9:1b:2c:a3:6a:fb:e7:6c:b2:84:4f:41:d6:91:2a:05:fc:36: 7b:4c:25:b4:62:ae:c9:e4:d0:c1:11:03:c7:76:5d:ab:e5:8b: f2:79:e4:22:4d:44:33:af:ba:5b:74:a0:e4:9e:63:7b:5a:c6: 7c:29:62:5c:d8:c0:cd:63:c9:f0:61:0c:87:98:57:97:bf:c7: 6e:20:7c:74:2d:df:ae:38:a5:fa:46:cd:aa:0e:cc:9c:41:4f: 9b:b4:34:6f:b7:22:09:14:61:7c:5f:b7:68:f6:03:33:74:c6: 73:01:49:a7:e1:42:7f:e9:7f:83:26:76:e7:49:59:d6:cd:07: 03:f0:1f:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjMxMTIzMDUxNTE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlZGZlNy0yOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Bu4i7+i6QrQYkGkdORzHlycZR9Y6ZsMNksHfhqTjZRkxQSx23z7FPuWnDc 3iqPRpOiHKPiaNyjLcw/K0RdojEkzKALlqBUO+er7zSvccipfRyl+8gmRanEXKLu R694bI33SlkSNaqY4W6sI93xQx2BRZnqsGgAZOH7VpWoezb27XiaOtR/oqpShzL8 pcU5vk+M7N7WH+DN54Z/Zr0UnEQt/GtlcrO0TUt/fKKpHT6dxXlxJimkp3KOrVeH DFbD9iLG90Edf37rKc3WnriJj+KaPx6gnN0Ul3zlSlTqhaASgHikd1Uxp1iWUSC9 V6P+DS25hbug1jEa7Zn+llZCVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEi7jrfN l0b0tsA82frNCh9AhnNaMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCM0UvREFCMUMzQTY4Q0ZCMTFFRDkyRTI1QjYxQzRGOUFFMDIvODE5RjdBNjBD RjhCMTFFREFFNzdCMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKNAwDQYJKoZIhvcNAQELBQADggEBADNRN4o4Hs4MVaKl 9Ccp4jaWgESQ3qTy/M6d3Owct5IOM5Bkgd9AQrSyr0Xou9wzh+TWD9OuyehKw+4O atGkWBcM68fh4oVgUj7GLfjudh1OZRpYTNpoFHOV90I2/64iYZMuQY2++Ot20iF/ InpbUkfiuQmAp5yME95nvZlDQ8kbLKNq++dssoRPQdaRKgX8NntMJbRirsnk0MER A8d2Xavli/J55CJNRDOvult0oOSeY3taxnwpYlzYwM1jyfBhDIeYV5e/x24gfHQt 3644pfpGzaoOzJxBT5u0NG+3IgkUYXxft2j2AzN0xnMBSafhQn/pf4MmdudJWdbN BwPwHx4= -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:01 2024 by rpki-client on console-ams.rpki-client.org