$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa File: 4865DD00A13B11E687921078C4F9AE02.roa (raw, json) Hash identifier: l4TIlLgUtanRqCnFA7wAF3Zw9sbQUKuQo+OfishIyNI= Subject key identifier: 06:F4:93:EA:C8:27:EC:AC:81:09:A4:B5:0F:41:F8:56:2F:35:22:CE Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1CB1 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa Signing time: Fri 02 Feb 2024 16:34:09 +0000 ROA not before: Fri 02 Feb 2024 16:34:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133896 IP address blocks: 103.46.216.0/22 maxlen: 22 103.46.216.0/23 maxlen: 23 103.46.216.0/24 maxlen: 24 103.46.217.0/24 maxlen: 24 103.46.218.0/23 maxlen: 23 103.46.218.0/24 maxlen: 24 103.46.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7345 (0x1cb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Feb 2 16:34:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd1980-dbb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:44:8f:26:0e:68:c4:60:bf:2c:f7:37:8b:2f: 91:fb:7a:4e:89:56:28:f7:85:55:a6:ab:1d:79:48: e2:17:a4:f2:8e:a6:42:15:1a:1b:c7:86:6e:61:a9: 3c:22:22:2f:b2:67:dc:2f:4f:89:b0:49:eb:bd:ab: 98:03:b9:7d:ba:33:34:ca:4b:b0:29:9a:fa:d4:9a: 90:12:39:ea:df:18:17:51:71:d0:28:f0:19:ab:c7: ea:07:53:38:b8:8f:14:2a:35:3b:47:94:3d:1a:50: d6:40:7e:7d:33:73:28:2a:fb:87:07:86:b9:c9:8a: 59:eb:d2:c7:50:77:b9:cf:89:63:16:95:e7:14:a2: a5:4b:59:a9:59:df:b8:b4:75:2d:12:8a:a5:a3:59: b0:f0:36:d3:51:97:20:f7:c4:19:19:36:76:ff:5f: 2c:32:8c:9f:a1:90:85:70:c6:f2:3b:23:a3:5f:9e: 4c:8f:40:8b:a1:65:cd:3f:8f:8e:fc:0d:39:f6:34: ab:ea:d7:84:68:6b:74:73:11:80:16:d1:cf:f7:93: 63:a5:ba:06:8c:42:94:cf:56:f7:c0:ea:d2:02:d1: f7:8e:88:84:6d:cd:43:d6:cd:01:d3:9d:7c:ac:a4: 92:c8:6a:3b:c4:18:aa:d5:93:cb:b0:b5:0e:c2:81: a9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F4:93:EA:C8:27:EC:AC:81:09:A4:B5:0F:41:F8:56:2F:35:22:CE X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.46.216.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:47:6c:7e:60:39:45:e7:d7:7e:20:ac:5d:9c:94:10:46:ed: ca:56:29:de:b2:d5:06:e0:5d:09:d7:21:39:83:f4:84:85:32: 52:bc:63:24:8b:4b:b2:30:9a:ff:05:e7:fb:83:b0:80:8f:95: fc:fd:bc:0e:52:02:c8:46:3d:79:85:af:f9:f3:82:e1:77:23: a0:98:90:3e:18:50:6c:d6:89:0a:e4:9f:16:3b:fd:e5:c9:bd: 7a:ea:6a:e2:17:29:6d:b2:00:1f:3a:7b:ce:ec:86:50:a0:1a: 51:4f:e5:a3:db:25:e4:80:d8:cf:14:59:01:0c:f2:5a:c2:ab: c4:d3:d5:fd:7a:60:16:08:26:41:ad:a4:66:29:03:30:99:23: 62:d0:42:c0:04:1b:5b:b3:39:33:f1:08:72:10:e2:ed:ae:61: 17:6f:f3:4a:89:41:bc:6a:7a:7a:fe:f8:12:fe:49:9b:07:22: 4a:69:86:9e:e3:78:00:08:98:9d:b1:45:d6:2b:65:48:8f:e1: 9c:9f:5c:54:6a:54:d8:33:a0:6b:0f:6b:04:84:57:50:01:46: b8:ab:78:a1:2f:ee:0d:10:a0:99:a2:b6:7b:4f:3e:06:69:2b: 2e:f7:45:84:a1:e0:74:ba:1a:6f:4a:47:9b:50:9e:45:7c:6d: 35:7f:dd:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjQwMjAyMTYzNDA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMTk4MC1kYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUSPJg5oxGC/LPc3iy+R+3pOiVYo94VVpqsdeUjiF6TyjqZCFRobx4ZuYak8 IiIvsmfcL0+JsEnrvauYA7l9ujM0ykuwKZr61JqQEjnq3xgXUXHQKPAZq8fqB1M4 uI8UKjU7R5Q9GlDWQH59M3MoKvuHB4a5yYpZ69LHUHe5z4ljFpXnFKKlS1mpWd+4 tHUtEoqlo1mw8DbTUZcg98QZGTZ2/18sMoyfoZCFcMbyOyOjX55Mj0CLoWXNP4+O /A059jSr6teEaGt0cxGAFtHP95NjpboGjEKUz1b3wOrSAtH3joiEbc1D1s0B0518 rKSSyGo7xBiq1ZPLsLUOwoGpkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAb0k+rI J+ysgQmktQ9B+FYvNSLOMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYxQjcvNUZBMUVEMzA5RUYwMTFFNjgxMTAyNzMzQzRGOUFFMDIvNDg2NUREMDBB MTNCMTFFNjg3OTIxMDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnLtgwDQYJKoZIhvcNAQELBQADggEBAI1HbH5gOUXn134g rF2clBBG7cpWKd6y1QbgXQnXITmD9ISFMlK8YySLS7Iwmv8F5/uDsICPlfz9vA5S AshGPXmFr/nzguF3I6CYkD4YUGzWiQrknxY7/eXJvXrqauIXKW2yAB86e87shlCg GlFP5aPbJeSA2M8UWQEM8lrCq8TT1f16YBYIJkGtpGYpAzCZI2LQQsAEG1uzOTPx CHIQ4u2uYRdv80qJQbxqenr++BL+SZsHIkpphp7jeAAImJ2xRdYrZUiP4ZyfXFRq VNgzoGsPawSEV1ABRrireKEv7g0QoJmitntPPgZpKy73RYSh4HS6Gm9KR5tQnkV8 bTV/3do= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:04 2024 by rpki-client on console-fra.rpki-client.org