$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa File: 20322C32233F11EB9E4D160EC4F9AE02.roa (raw, json) Hash identifier: /GtxOnDeziIDDP1H37kSVjJNNo/6F1o0ugOAiFIHVrc= Subject key identifier: D0:BD:60:CB:11:85:21:40:DE:2C:67:6C:CB:50:1C:B0:A5:E9:39:8B Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 0695 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa Signing time: Mon 01 Apr 2024 00:02:28 +0000 ROA not before: Mon 01 Apr 2024 00:02:28 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38880 IP address blocks: 103.198.40.0/24 maxlen: 24 103.198.41.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Apr 1 00:02:28 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6609f994-b23e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:28:d3:35:ce:86:b9:b4:5c:f2:65:d9:50:a9: b2:fa:02:1e:45:df:f9:fc:04:bd:fb:23:d4:fe:dd: 54:fc:38:8f:12:96:89:82:f1:41:ab:90:12:db:49: 24:80:cb:b5:91:cc:97:74:d8:2b:e4:0f:6f:45:c6: ed:ba:82:e3:06:98:78:7f:d6:fd:8f:24:02:5a:63: c4:89:e3:27:59:47:47:e9:1c:55:40:34:69:97:43: 4e:4a:c9:5d:99:6a:01:19:96:1b:b3:54:1c:2c:14: 12:e3:4d:bf:ff:33:7b:75:9a:c4:e3:89:ad:0f:db: 89:71:a4:2d:a8:65:7e:c0:f5:f4:d1:91:63:ff:8a: 4e:cd:68:e1:1b:2e:9a:d0:09:6b:1e:45:db:e6:3e: 6e:d7:6e:16:e1:2f:f9:70:4d:12:eb:95:20:21:0d: 82:a5:d7:d6:cd:11:e0:5f:41:c0:b8:d2:c3:a7:4a: b5:a0:a6:40:7e:55:61:39:41:d1:1b:1b:4e:b8:00: ba:83:5b:73:68:23:e1:db:08:ea:68:9c:10:f1:f5: 8a:ad:74:25:c1:eb:0f:31:ab:97:a0:4e:ae:a9:90: ed:b8:fb:c2:9f:47:84:9c:27:0a:db:95:b1:54:e6: 92:2c:d1:aa:ba:ee:a7:65:7e:a3:df:c1:9e:31:85: 06:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BD:60:CB:11:85:21:40:DE:2C:67:6C:CB:50:1C:B0:A5:E9:39:8B X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.40.0/23 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption d5:5a:28:d0:bb:ba:48:ac:c7:d2:d7:0c:34:98:05:d1:b5:2c: c9:9c:c5:c2:ca:93:ba:36:cc:a3:a1:f3:5c:6a:ab:ac:59:4f: 0e:17:a3:e6:96:dc:d0:ad:8e:6a:ff:6b:f1:5a:2f:5b:f7:27: 92:61:70:fa:40:66:5a:ca:00:0f:dc:57:5f:ed:1a:ee:57:00: 0a:d2:fd:81:75:fc:df:e0:f4:5a:44:23:60:ac:f8:08:2f:be: c2:37:72:ac:c9:ae:a3:2d:a9:d9:86:7c:d2:b3:66:5c:40:90: a8:8a:b5:6d:53:13:9b:9a:1a:f6:2a:45:44:67:85:bc:dc:eb: 62:c2:62:93:ee:1f:a4:5e:00:34:52:e4:2b:a2:dd:48:a1:53: ac:21:1c:3a:79:17:27:61:5b:7b:db:b9:03:56:4c:57:61:dc: ec:d7:e2:ec:6e:62:dd:29:d5:13:1f:69:7b:c4:7c:27:f2:09: 65:a2:50:c2:29:d1:6d:05:a9:2c:f3:ef:84:4a:98:5f:1f:fc: 5e:c6:8a:e7:28:81:e8:71:12:e5:14:4b:ab:2c:2f:45:b8:34: 22:d5:34:46:ac:12:be:04:86:2d:6b:b5:ec:41:3b:4f:71:01: f6:9c:42:ea:95:bf:c8:47:ec:c2:00:98:19:98:51:d3:23:1c: 7d:07:fa:e1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjQwNDAxMDAwMjI4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5Zjk5NC1iMjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyjTNc6GubRc8mXZUKmy+gIeRd/5/AS9+yPU/t1U/DiPEpaJgvFBq5AS20kk gMu1kcyXdNgr5A9vRcbtuoLjBph4f9b9jyQCWmPEieMnWUdH6RxVQDRpl0NOSsld mWoBGZYbs1QcLBQS402//zN7dZrE44mtD9uJcaQtqGV+wPX00ZFj/4pOzWjhGy6a 0AlrHkXb5j5u124W4S/5cE0S65UgIQ2CpdfWzRHgX0HAuNLDp0q1oKZAflVhOUHR GxtOuAC6g1tzaCPh2wjqaJwQ8fWKrXQlwesPMauXoE6uqZDtuPvCn0eEnCcK25Wx VOaSLNGquu6nZX6j38GeMYUGEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNC9YMsR hSFA3ixnbMtQHLCl6TmLMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvMjAzMjJDMzIy MzNGMTFFQjlFNEQxNjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnxigDBALKgfQwDQYJKoZIhvcNAQELBQADggEBANVaKNC7 ukisx9LXDDSYBdG1LMmcxcLKk7o2zKOh81xqq6xZTw4Xo+aW3NCtjmr/a/FaL1v3 J5JhcPpAZlrKAA/cV1/tGu5XAArS/YF1/N/g9FpEI2Cs+AgvvsI3cqzJrqMtqdmG fNKzZlxAkKiKtW1TE5uaGvYqRURnhbzc62LCYpPuH6ReADRS5Cui3UihU6whHDp5 FydhW3vbuQNWTFdh3OzX4uxuYt0p1RMfaXvEfCfyCWWiUMIp0W0FqSzz74RKmF8f /F7GiucogehxEuUUS6ssL0W4NCLVNEasEr4Ehi1rtexBO09xAfacQuqVv8hH7MIA mBmYUdMjHH0H+uE= -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org