$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa File: 8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa (raw, json) Hash identifier: 6DnvLHwkOsmNheO3/dmZL+mDrT6py3IBbzDfl6LMYsc= Subject key identifier: FF:C4:FE:43:79:A4:16:74:76:91:2F:28:B6:A8:C9:43:8E:63:A2:D6 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: 05 Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa Signing time: Thu 18 Apr 2024 08:15:52 +0000 ROA not before: Thu 18 Apr 2024 08:15:52 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38713 IP address blocks: 103.121.40.0/22 maxlen: 22 103.121.40.0/24 maxlen: 24 103.121.41.0/24 maxlen: 24 103.121.42.0/24 maxlen: 24 103.121.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Apr 18 08:15:52 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6620d6b8-bc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f6:04:cb:47:9c:ef:5e:b8:6e:a4:4f:f7:58: 51:ff:3f:c1:c2:78:f2:df:4b:2d:34:4b:a1:6c:54: 59:1b:99:0a:cd:a1:21:e9:cb:76:7c:a5:ab:ae:4a: 3c:9d:75:f1:56:b4:10:4b:51:b8:7d:9a:87:df:c7: 95:8d:b9:f0:49:cc:76:64:8a:29:79:26:79:87:71: df:59:f0:70:90:d4:9e:f3:b6:3b:22:40:cb:41:56: fa:4e:77:56:98:28:ec:4d:ec:d7:46:66:18:43:6f: 98:44:36:e4:0f:1a:31:ce:2e:47:69:e2:47:fe:fc: 74:10:9f:85:82:0b:41:a8:c4:ae:31:51:35:87:31: 38:d3:d5:a1:ca:77:79:9d:36:21:11:cc:6f:44:22: e5:49:72:51:4d:af:50:31:85:b3:95:23:ee:f9:64: b8:00:4d:c0:5c:cf:00:31:10:ca:16:e4:90:6e:ea: 6a:f3:2c:52:69:22:be:e5:f4:90:c0:07:98:89:f2: bb:84:ad:fa:c8:7c:32:47:f3:42:f9:54:11:66:2b: 57:0d:33:e4:92:64:b7:4d:d5:ae:5e:58:fe:e1:8a: 17:70:e2:a7:79:5b:ad:b4:00:b8:dd:98:69:8e:26: 06:05:50:9f:59:27:3e:5c:c8:5f:77:5b:96:a9:39: bf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C4:FE:43:79:A4:16:74:76:91:2F:28:B6:A8:C9:43:8E:63:A2:D6 X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.40.0/22 Signature Algorithm: sha256WithRSAEncryption 56:1a:dd:12:a8:ff:86:f3:be:37:2b:0a:8d:cc:43:12:cf:6c: 4f:c0:14:3b:59:fc:58:59:f6:45:13:63:7d:75:c5:b8:bd:cc: 2f:8e:c1:a5:cb:46:f9:d3:81:1e:d0:f1:8c:bb:a0:d8:50:e9: 97:14:55:38:5c:f8:2d:2a:ce:10:20:3c:5e:eb:97:7a:e7:1e: 57:87:9d:02:3b:69:82:16:38:15:bb:8e:30:c8:8f:a6:bd:aa: 71:9b:ec:c1:0a:34:49:24:6d:76:fe:7a:d1:69:07:ca:5c:de: 47:de:97:13:35:e3:78:42:bc:9f:4b:36:ff:f2:47:7c:b1:42: 71:78:25:09:cb:96:2f:e8:99:7e:db:88:f4:a3:50:72:16:54: e6:26:f1:a0:54:f4:5c:43:3a:54:76:8d:e1:49:d7:19:ab:82: db:05:c9:e9:73:50:0c:4e:0d:4a:86:ac:72:40:a9:8f:2c:f6: 07:95:1a:00:a0:ec:e0:c0:15:a5:b3:ce:b1:da:4e:e6:ed:7e: 12:35:65:e6:79:23:f8:ae:33:bd:a7:5c:95:6c:6f:c4:cc:f7: 55:70:75:1f:55:fc:5d:d0:68:10:dd:b5:82:ec:19:b0:6e:44: 31:9c:58:a5:b0:44:0d:10:2a:02:fc:b9:34:bd:fb:c3:2e:03: b8:40:3b:59 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzEwRjExMC8GA1UEBRMoQTNFQjUxRDI5OTlCQkI0NDY1OUJEREE2QkUxRTEwRkE1 NTFFMjI2NTAeFw0yNDA0MTgwODE1NTJaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MjBkNmI4LWJjNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe9gTLR5zvXrhupE/3WFH/P8HCePLfSy00S6FsVFkbmQrNoSHpy3Z8pauuSjyd dfFWtBBLUbh9moffx5WNufBJzHZkiil5JnmHcd9Z8HCQ1J7ztjsiQMtBVvpOd1aY KOxN7NdGZhhDb5hENuQPGjHOLkdp4kf+/HQQn4WCC0GoxK4xUTWHMTjT1aHKd3md NiERzG9EIuVJclFNr1AxhbOVI+75ZLgATcBczwAxEMoW5JBu6mrzLFJpIr7l9JDA B5iJ8ruErfrIfDJH80L5VBFmK1cNM+SSZLdN1a5eWP7hihdw4qd5W620ALjdmGmO JgYFUJ9ZJz5cyF93W5apOb+JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/8T+Q3mk FnR2kS8otqjJQ45jotYwHwYDVR0jBBgwFoAUo+tR0pmbu0Rlm92mvh4Q+lUeImUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDMTBGLzlBNzU4MEM4RkQ0 QTExRUU4MDlCMDczMEM0RjlBRTAyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUlt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvby10UjBwbWJ1MFJsbTkybXZoNFEtbFVlSW1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi84QzdGQTlDMEZE NEIxMUVFQUJBQjBCNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd5KDANBgkqhkiG9w0BAQsFAAOCAQEAVhrdEqj/hvO+NysK jcxDEs9sT8AUO1n8WFn2RRNjfXXFuL3ML47BpctG+dOBHtDxjLug2FDplxRVOFz4 LSrOECA8XuuXeuceV4edAjtpghY4FbuOMMiPpr2qcZvswQo0SSRtdv560WkHylze R96XEzXjeEK8n0s2//JHfLFCcXglCcuWL+iZftuI9KNQchZU5ibxoFT0XEM6VHaN 4UnXGauC2wXJ6XNQDE4NSoasckCpjyz2B5UaAKDs4MAVpbPOsdpO5u1+EjVl5nkj +K4zvadclWxvxMz3VXB1H1X8XdBoEN21guwZsG5EMZxYpbBEDRAqAvy5NL37wy4D uEA7WQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:17 2024 by rpki-client on console-ams.rpki-client.org