$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa File: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (raw, json) Hash identifier: E8TF17FZ+hElw8daIlNLJu6deo+xubevfbPk03QKuzM= Subject key identifier: 59:43:A8:82:4C:F4:A8:42:F6:73:48:0B:26:0A:E2:F7:C1:07:13:5C Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 027E Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa Signing time: Mon 19 Feb 2024 03:25:02 +0000 ROA not before: Mon 19 Feb 2024 03:25:02 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137995 IP address blocks: 103.84.136.0/22 maxlen: 24 2400:a040:a::/48 maxlen: 48 2400:a040:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Feb 19 03:25:02 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d2ca0e-7fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fa:0a:81:27:d2:3a:9d:96:e7:d0:8b:44:f5: f7:cd:f8:9a:6b:89:bf:40:b7:1a:5d:58:be:f9:6a: ae:b0:ca:07:e8:d8:93:b5:30:90:fb:55:2b:6f:0e: e3:30:57:fb:67:2d:0e:2e:69:8c:63:7a:f8:9f:46: ba:b3:e6:9e:fc:9b:dd:ac:e9:52:03:21:ba:07:df: 83:d2:a3:83:21:fa:94:a1:d0:74:ef:d6:7e:ad:24: 57:6b:92:a0:d9:61:71:25:51:07:17:2b:66:4e:5a: ea:18:ee:dc:27:b0:4c:fe:45:3d:35:25:f5:e0:bb: f3:33:b8:0f:14:d6:ba:21:64:fd:74:e6:92:16:f4: bf:66:69:20:05:fd:bd:2e:55:27:10:e5:d5:67:62: 17:de:41:e1:d4:80:3a:a3:92:54:82:9f:78:99:56: 19:21:de:18:05:24:ca:e7:70:00:a3:86:bb:a7:a6: 9f:45:5e:16:12:1d:20:d7:5f:c6:97:d3:68:22:40: 04:18:8f:7e:22:eb:e9:f5:61:ca:85:5d:f6:0e:42: e7:00:23:ba:9e:da:69:ea:84:52:7a:77:bb:86:55: 2b:20:40:4a:49:b7:d5:f6:9b:5f:b8:48:22:ca:fe: b8:8c:78:f6:10:bf:45:bd:3c:36:ac:39:17:3e:1a: f3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:43:A8:82:4C:F4:A8:42:F6:73:48:0B:26:0A:E2:F7:C1:07:13:5C X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.136.0/22 IPv6: 2400:a040:a::/48 2400:a040:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 4c:b6:ed:48:88:31:fa:74:b6:4c:07:51:9d:a8:8b:3a:eb:47: a9:18:a7:3f:d7:21:9b:37:ec:a2:34:02:75:3c:8d:73:64:2d: 56:f9:4d:0d:50:af:d9:af:81:e4:8b:f4:89:e6:7b:a1:b2:4c: d5:d5:4f:50:be:60:60:53:66:f2:96:a7:ca:f4:55:f6:76:a5: 15:05:01:8e:2f:8d:77:6b:e4:60:0c:ba:f2:b8:44:a0:04:86: 73:53:57:3f:d9:a9:38:52:86:09:16:b2:56:fc:84:2e:ad:cc: bc:87:c1:d2:a9:41:e3:a1:c2:d2:8a:61:13:7f:a0:0b:8b:de: 67:07:ba:49:a1:86:08:f0:98:a7:22:4b:ce:c3:0d:10:3c:0a: 81:b9:4a:92:85:1c:98:ca:e3:0f:99:dc:a3:26:df:d6:bf:de: 0a:52:d3:cc:e1:21:39:9f:01:ed:dd:1d:3c:4a:94:c1:81:39: 20:98:3b:e0:03:be:be:9f:24:ef:58:8d:53:42:1e:82:58:96: 8f:e6:cb:bf:7b:7a:db:d4:27:38:42:49:ae:07:08:51:0a:13: 66:ec:0e:9c:6a:16:ae:a6:ba:5a:ff:c3:e8:eb:4f:64:9e:a8: 9e:cf:ac:3b:2f:8c:98:c6:17:4a:7a:c0:ab:25:f6:f1:9f:d0: 96:af:de:10 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjQwMjE5MDMyNTAyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQyY2EwZS03ZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/oKgSfSOp2W59CLRPX3zfiaa4m/QLcaXVi++WqusMoH6NiTtTCQ+1Urbw7j MFf7Zy0OLmmMY3r4n0a6s+ae/JvdrOlSAyG6B9+D0qODIfqUodB079Z+rSRXa5Kg 2WFxJVEHFytmTlrqGO7cJ7BM/kU9NSX14LvzM7gPFNa6IWT9dOaSFvS/ZmkgBf29 LlUnEOXVZ2IX3kHh1IA6o5JUgp94mVYZId4YBSTK53AAo4a7p6afRV4WEh0g11/G l9NoIkAEGI9+Iuvp9WHKhV32DkLnACO6ntpp6oRSene7hlUrIEBKSbfV9ptfuEgi yv64jHj2EL9FvTw2rDkXPhrzpQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFFlDqIJM 9KhC9nNICyYK4vfBBxNcMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzMzkvNDUyNjc5NzBCMkZBMTFFQ0I1NzRDRTdGQzRGOUFFMDIvMkZDQUMzQUND NDgzMTFFQ0FBQUFDQzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnVIgwGAQCAAIwEgMHACQAoEAACgMHACQAoED//zANBgkq hkiG9w0BAQsFAAOCAQEATLbtSIgx+nS2TAdRnaiLOutHqRinP9chmzfsojQCdTyN c2QtVvlNDVCv2a+B5Iv0ieZ7obJM1dVPUL5gYFNm8panyvRV9nalFQUBji+Nd2vk YAy68rhEoASGc1NXP9mpOFKGCRayVvyELq3MvIfB0qlB46HC0ophE3+gC4veZwe6 SaGGCPCYpyJLzsMNEDwKgblKkoUcmMrjD5ncoybf1r/eClLTzOEhOZ8B7d0dPEqU wYE5IJg74AO+vp8k71iNU0IegliWj+bLv3t629QnOEJJrgcIUQoTZuwOnGoWrqa6 Wv/D6OtPZJ6ons+sOy+MmMYXSnrAqyX28Z/Qlq/eEA== -----END CERTIFICATE-----Generated at Tue May 7 04:35:41 2024 by rpki-client on console-ams.rpki-client.org