$ rpki-client -vvf rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/40C4FB74AB3A11EEA3CBE616C4F9AE02.roa File: 40C4FB74AB3A11EEA3CBE616C4F9AE02.roa (raw, json) Hash identifier: u1e6gHKsFUwrQu/7FKxWIy7of4aafsukFg7L7eS89eQ= Subject key identifier: 38:50:5D:82:E2:C6:4A:F9:FF:F4:F4:61:68:8D:BE:D8:1F:36:24:6F Certificate issuer: /CN=A919DCD2/serialNumber=26C3E7136207639A06DC708308E011747BA271CB Certificate serial: 02 Authority key identifier: 26:C3:E7:13:62:07:63:9A:06:DC:70:83:08:E0:11:74:7B:A2:71:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JsPnE2IHY5oG3HCDCOARdHuiccs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/40C4FB74AB3A11EEA3CBE616C4F9AE02.roa Signing time: Thu 04 Jan 2024 19:48:38 +0000 ROA not before: Thu 04 Jan 2024 19:48:38 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 393262 IP address blocks: 103.142.222.0/24 maxlen: 24 103.142.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/JsPnE2IHY5oG3HCDCOARdHuiccs.crl rsync://rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/JsPnE2IHY5oG3HCDCOARdHuiccs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JsPnE2IHY5oG3HCDCOARdHuiccs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DCD2/serialNumber=26C3E7136207639A06DC708308E011747BA271CB Validity Not Before: Jan 4 19:48:38 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65970b96-2039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:ab:dd:2d:bb:cb:b0:98:e0:97:6e:f2:a5: 4a:84:0d:da:b0:ae:46:18:01:cc:83:6d:7a:16:01: 83:fd:ed:19:38:84:b3:ac:27:7e:db:8e:11:0b:9d: d0:09:96:12:66:dd:6a:80:6f:7d:d1:e1:89:98:92: ed:fe:1d:56:1f:9f:48:50:d5:f7:3b:4e:93:a8:c5: 18:e3:2e:2a:b7:53:da:00:96:29:4d:e8:d9:80:ff: 9b:f4:a4:14:7e:27:96:5e:ed:2b:a9:3f:05:29:3f: 55:60:ea:dc:d4:60:9a:2e:b5:4c:28:55:d9:06:4f: 54:65:a0:f0:83:e2:13:24:f4:92:68:6d:cf:cc:ba: bc:fd:f3:88:65:20:7b:da:0c:43:88:96:95:ea:ce: da:4c:86:d7:0b:ac:b1:70:5b:7e:b4:d7:c3:cc:c4: d8:ef:77:9e:bb:f1:8f:52:2f:c3:10:ad:c9:22:b7: b5:73:fb:1f:b4:3d:73:5a:a4:09:ea:d7:df:ae:1f: a4:51:67:90:7e:57:33:06:b0:45:ab:4a:35:38:85: 31:3b:34:cb:e7:8a:6e:f9:08:04:10:e0:a4:3d:cb: 3b:2b:06:94:9f:89:91:f5:be:19:0b:98:3a:01:0e: ca:3f:41:5d:ca:da:48:2f:70:09:9e:66:83:69:a6: 19:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:50:5D:82:E2:C6:4A:F9:FF:F4:F4:61:68:8D:BE:D8:1F:36:24:6F X509v3 Authority Key Identifier: keyid:26:C3:E7:13:62:07:63:9A:06:DC:70:83:08:E0:11:74:7B:A2:71:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/JsPnE2IHY5oG3HCDCOARdHuiccs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JsPnE2IHY5oG3HCDCOARdHuiccs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DCD2/EE51E5DCAB3911EEA1AB2316C4F9AE02/40C4FB74AB3A11EEA3CBE616C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.222.0/23 Signature Algorithm: sha256WithRSAEncryption 10:b0:48:e3:b1:88:17:0d:20:d5:8d:ef:eb:00:86:5c:61:01: fc:89:4c:78:3a:49:41:c5:76:2d:b4:ae:7e:df:c4:91:07:0e: 6c:e6:6c:1d:ba:c7:e8:87:0f:fd:63:74:44:c4:ef:9d:2b:56: c1:9f:a0:00:38:ec:11:f8:aa:f8:2c:22:c7:ad:d7:26:15:a0: 3c:8a:b9:bd:b0:98:82:79:42:85:2b:c3:54:a3:bf:11:21:3b: e1:16:00:3b:d2:ef:09:ff:77:b2:de:e8:54:74:30:95:50:85: 27:6b:4a:ea:61:cb:8b:8b:f8:ae:d2:67:98:e2:2c:d1:db:53: bb:4b:6a:b6:34:98:d9:31:a2:8d:0d:a4:4a:3b:2f:9a:fa:e8: 0d:f6:d8:37:e3:85:89:aa:db:8c:3d:a7:d3:19:1b:4f:5e:8a: d6:6f:62:57:58:df:c5:5d:ec:78:37:dd:9d:1b:36:31:4f:f8: 00:9f:5d:0c:ac:8a:a2:d0:fd:91:df:ff:f1:30:7e:cf:bb:f0: e5:3e:d8:e5:e4:9b:b1:e3:f8:b4:3e:d4:6e:73:30:ec:0a:01: e4:9a:23:90:59:53:49:de:d5:cd:e6:2f:35:6e:c7:13:77:c3: d6:23:d0:73:f3:4f:0a:f8:74:ea:cd:24:dd:2b:54:1e:80:b2: 6d:5c:2c:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RENEMjExMC8GA1UEBRMoMjZDM0U3MTM2MjA3NjM5QTA2REM3MDgzMDhFMDExNzQ3 QkEyNzFDQjAeFw0yNDAxMDQxOTQ4MzhaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTcwYjk2LTIwMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn8qvdLbvLsJjgl27ypUqEDdqwrkYYAcyDbXoWAYP97Rk4hLOsJ37bjhELndAJ lhJm3WqAb33R4YmYku3+HVYfn0hQ1fc7TpOoxRjjLiq3U9oAlilN6NmA/5v0pBR+ J5Ze7SupPwUpP1Vg6tzUYJoutUwoVdkGT1RloPCD4hMk9JJobc/Murz984hlIHva DEOIlpXqztpMhtcLrLFwW36018PMxNjvd5678Y9SL8MQrckit7Vz+x+0PXNapAnq 19+uH6RRZ5B+VzMGsEWrSjU4hTE7NMvnim75CAQQ4KQ9yzsrBpSfiZH1vhkLmDoB Dso/QV3K2kgvcAmeZoNpphl5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOFBdguLG Svn/9PRhaI2+2B82JG8wHwYDVR0jBBgwFoAUJsPnE2IHY5oG3HCDCOARdHuiccsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQ0QyL0VFNTFFNURDQUIz OTExRUVBMUFCMjMxNkM0RjlBRTAyL0pzUG5FMklIWTVvRzNIQ0RDT0FSZEh1aWNj cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSnNQbkUySUhZNW9HM0hDRENPQVJkSHVpY2NzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RENEMi9FRTUxRTVEQ0FCMzkxMUVFQTFBQjIzMTZDNEY5QUUwMi80MEM0RkI3NEFC M0ExMUVFQTNDQkU2MTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeO3jANBgkqhkiG9w0BAQsFAAOCAQEAELBI47GIFw0g1Y3v 6wCGXGEB/IlMeDpJQcV2LbSuft/EkQcObOZsHbrH6IcP/WN0RMTvnStWwZ+gADjs Efiq+Cwix63XJhWgPIq5vbCYgnlChSvDVKO/ESE74RYAO9LvCf93st7oVHQwlVCF J2tK6mHLi4v4rtJnmOIs0dtTu0tqtjSY2TGijQ2kSjsvmvroDfbYN+OFiarbjD2n 0xkbT16K1m9iV1jfxV3seDfdnRs2MU/4AJ9dDKyKotD9kd//8TB+z7vw5T7Y5eSb seP4tD7UbnMw7AoB5JojkFlTSd7VzeYvNW7HE3fD1iPQc/NPCvh06s0k3StUHoCy bVwssg== -----END CERTIFICATE-----Generated at Sun May 5 09:37:52 2024 by rpki-client on console-ams.rpki-client.org