$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa File: 46D6261876A511EB82E04A2FC4F9AE02.roa (raw, json) Hash identifier: gC4gg1ZUgwHjwNJbB1fuTyNn+hrI+gW04vRuOq62AhY= Subject key identifier: 2C:12:EA:D9:C2:0F:57:96:3A:0E:92:1E:22:91:B7:40:76:15:B9:6A Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0687 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa Signing time: Thu 31 Aug 2023 22:29:39 +0000 ROA not before: Thu 31 Aug 2023 22:29:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45843 IP address blocks: 117.20.16.0/24 maxlen: 24 117.20.19.0/24 maxlen: 24 119.63.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Aug 31 22:29:39 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f11452-9c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:97:bd:67:d5:49:b5:49:67:17:36:76:24: 0d:f0:59:c9:00:c2:94:11:ea:58:e9:af:3d:04:6b: 99:bc:e3:59:c7:09:fc:4d:74:4a:3f:ac:df:30:3b: 05:ad:9c:14:c4:58:91:6a:6a:33:24:78:5f:7e:74: b5:a4:a9:b8:3a:39:59:3e:76:64:34:26:8c:ff:53: f3:c1:a8:34:4c:ee:7f:9b:75:09:aa:8f:d2:ad:a7: de:fa:87:ba:cf:fc:0e:13:c6:53:7a:30:ea:27:5b: 26:08:22:58:8f:56:ac:c0:b5:a0:e1:e1:8a:93:38: 60:09:fc:d8:24:d7:80:e9:24:f5:0c:a6:90:d6:cb: 79:74:c0:91:67:90:42:3b:73:ad:0f:36:16:7d:c6: c2:0c:cf:7c:31:00:84:19:7d:01:09:df:7d:79:14: 57:7e:dd:e6:58:1b:60:3a:84:15:0a:ec:9a:4b:53: 12:8c:0f:7e:02:8d:d7:66:44:16:6a:ad:28:53:15: b1:5c:17:ec:fa:34:01:75:92:ce:76:2e:67:1a:3a: e4:75:e9:85:26:5a:f5:ec:f5:1c:c7:a1:17:86:da: 82:be:64:07:13:90:58:22:1a:19:fb:28:7d:62:70: 31:61:eb:0f:56:35:44:7b:70:3a:3f:b7:ab:1f:ea: 4a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:12:EA:D9:C2:0F:57:96:3A:0E:92:1E:22:91:B7:40:76:15:B9:6A X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.20.16.0/24 117.20.19.0/24 119.63.132.0/24 Signature Algorithm: sha256WithRSAEncryption 67:c2:c5:38:cd:4a:c9:1b:dd:a9:d9:14:5e:e8:40:18:c2:a5: 38:42:d1:69:af:53:32:68:af:5f:41:4a:da:21:7f:cf:17:6c: a4:a3:c5:92:cc:de:c7:9f:a0:fd:ec:d4:17:ba:34:b7:af:27: ab:9f:1c:00:f3:51:98:93:dc:ab:25:03:32:2e:66:72:fd:99: a1:da:22:c9:bb:eb:44:be:c2:61:45:84:98:29:1f:57:52:86: 4a:c4:39:1c:8e:04:b2:03:2b:26:7e:b7:fe:d3:7d:e7:ac:95: 84:25:74:cc:df:04:1c:28:64:5a:ab:c7:f5:40:80:07:ba:5d: 3d:9f:1a:25:4d:d7:58:44:70:c1:0a:52:e6:45:99:10:fd:51: ee:21:2c:80:ad:1e:9a:ef:a4:f8:d0:12:e7:13:ba:4f:85:e6: 50:1f:5c:a7:63:d2:10:d5:b1:f3:8b:1b:de:76:2a:64:91:01: 5a:4f:67:4a:18:55:12:f9:a9:20:77:27:40:e6:93:0a:e4:a0: dc:1d:bb:68:a6:25:f2:42:09:be:60:30:ee:b1:35:d2:5e:2c: 43:d5:5b:3e:e2:02:3a:78:26:b1:67:21:f1:aa:f8:49:d7:e1: 11:f3:f4:74:4d:31:16:6c:17:a0:78:7c:ba:08:83:3c:ac:97: 93:26:05:c2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjMwODMxMjIyOTM5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxMTQ1Mi05Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGCXvWfVSbVJZxc2diQN8FnJAMKUEepY6a89BGuZvONZxwn8TXRKP6zfMDsF rZwUxFiRamozJHhffnS1pKm4OjlZPnZkNCaM/1Pzwag0TO5/m3UJqo/Srafe+oe6 z/wOE8ZTejDqJ1smCCJYj1aswLWg4eGKkzhgCfzYJNeA6ST1DKaQ1st5dMCRZ5BC O3OtDzYWfcbCDM98MQCEGX0BCd99eRRXft3mWBtgOoQVCuyaS1MSjA9+Ao3XZkQW aq0oUxWxXBfs+jQBdZLOdi5nGjrkdemFJlr17PUcx6EXhtqCvmQHE5BYIhoZ+yh9 YnAxYesPVjVEe3A6P7erH+pKdQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCwS6tnC D1eWOg6SHiKRt0B2FblqMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvNDZENjI2MTg3 NkE1MTFFQjgyRTA0QTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAB1FBADBAB1FBMDBAB3P4QwDQYJKoZIhvcNAQELBQADggEB AGfCxTjNSskb3anZFF7oQBjCpThC0WmvUzJor19BStohf88XbKSjxZLM3sefoP3s 1Be6NLevJ6ufHADzUZiT3KslAzIuZnL9maHaIsm760S+wmFFhJgpH1dShkrEORyO BLIDKyZ+t/7TfeeslYQldMzfBBwoZFqrx/VAgAe6XT2fGiVN11hEcMEKUuZFmRD9 Ue4hLICtHprvpPjQEucTuk+F5lAfXKdj0hDVsfOLG952KmSRAVpPZ0oYVRL5qSB3 J0DmkwrkoNwdu2imJfJCCb5gMO6xNdJeLEPVWz7iAjp4JrFnIfGq+EnX4RHz9HRN MRZsF6B4fLoIgzysl5MmBcI= -----END CERTIFICATE-----Generated at Sat Jun 1 00:32:59 2024 by rpki-client on console-fra.rpki-client.org