$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa File: 46654408C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: 7AJiWB5i1exJOytnE6TLvGsYPNV8jidCTvpcJ1RxeFM= Subject key identifier: 28:DD:DB:19:30:23:AF:57:20:F7:57:54:98:E8:CA:A1:C9:E4:38:EC Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0200 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa Signing time: Mon 09 Oct 2023 02:54:49 +0000 ROA not before: Mon 09 Oct 2023 02:54:49 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132742 IP address blocks: 43.248.64.0/22 maxlen: 24 103.39.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 02:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Oct 9 02:54:49 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65236b78-5257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a0:76:61:73:dd:01:71:4d:e6:f8:86:34:90: 6c:09:b9:d9:e5:01:79:aa:e9:de:70:bf:ea:75:4a: 9f:83:df:b2:58:83:39:e5:07:3d:a7:d4:fc:10:03: 97:cc:2b:8b:0b:9b:be:54:9a:b6:5c:ce:01:86:df: 73:d8:ba:a7:c6:27:9a:44:f3:b5:aa:e3:84:db:e8: b2:7e:ad:80:a8:49:39:8f:ef:57:d5:12:f1:87:10: ca:81:5d:53:82:7a:3d:44:76:db:56:ab:0f:ca:53: 86:38:5c:b6:ed:68:70:13:a7:c6:66:61:fc:f3:bb: d1:b9:db:5a:0d:f5:bf:50:a5:54:35:43:df:49:5b: 3b:c5:d2:3b:dc:4c:9d:b0:9b:ff:43:0e:34:a8:c2: 07:93:0e:a9:c4:18:04:0d:19:f3:b8:47:e1:cd:e5: 54:bd:32:0a:7b:99:a8:bf:3e:d1:b0:ca:8b:40:47: 6a:5d:d1:6d:7e:11:49:9f:d2:49:99:29:66:b4:e2: e1:8f:72:5d:d4:06:c1:cb:82:ed:ff:76:70:c8:f8: 0f:e2:e8:26:e8:43:6b:89:75:ed:d9:75:29:48:4e: 12:05:43:f3:c0:3e:5e:b0:d8:17:fa:19:71:08:4b: 27:2a:14:61:bf:f8:bb:25:31:ad:bd:77:6f:9a:b9: de:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DD:DB:19:30:23:AF:57:20:F7:57:54:98:E8:CA:A1:C9:E4:38:EC X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.64.0/22 103.39.152.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:b1:83:47:93:dc:4c:28:64:9e:55:f9:6e:c5:07:fa:54:b0: 21:b6:6c:fb:90:b4:df:62:1a:0f:f3:03:7a:a9:b3:87:69:a6: 20:f9:71:e3:78:eb:09:56:71:ea:12:23:07:00:5a:a5:61:00: 90:72:bc:40:74:dd:98:d2:44:5d:4c:af:ee:d1:57:7f:a9:2d: 95:ae:6b:c3:b7:e0:ec:ab:fe:46:4e:9c:f4:75:a8:92:e0:f7: f0:68:3c:3d:d6:cd:be:3c:57:91:98:20:67:06:e3:13:07:44: d9:d2:03:71:a1:a4:79:17:5f:d8:a2:a4:f2:aa:5e:35:19:0f: ec:38:41:4c:66:71:34:01:83:c0:24:f2:15:de:1d:c9:ac:87: 1f:68:36:5d:6e:87:16:03:e2:72:38:ce:29:42:66:5d:3a:f9: e5:ba:69:23:b7:71:fd:03:6b:12:dd:50:cd:26:c8:ad:36:47: 2f:64:df:d4:ee:ba:55:14:72:d1:2b:3b:c4:db:40:56:b6:a4: c1:66:e4:9d:1f:32:26:58:81:7f:ec:6f:2d:50:42:54:9d:5f: e9:5c:93:3e:78:ae:87:8e:46:fd:f1:f2:25:8c:32:b3:ca:99: c6:f7:7d:9d:d2:58:5d:a8:2d:05:9b:d3:a5:eb:c1:8c:a6:96: 4b:4f:a9:1c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjMxMDA5MDI1NDQ5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIzNmI3OC01MjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6B2YXPdAXFN5viGNJBsCbnZ5QF5qunecL/qdUqfg9+yWIM55Qc9p9T8EAOX zCuLC5u+VJq2XM4Bht9z2LqnxieaRPO1quOE2+iyfq2AqEk5j+9X1RLxhxDKgV1T gno9RHbbVqsPylOGOFy27WhwE6fGZmH887vRudtaDfW/UKVUNUPfSVs7xdI73Eyd sJv/Qw40qMIHkw6pxBgEDRnzuEfhzeVUvTIKe5movz7RsMqLQEdqXdFtfhFJn9JJ mSlmtOLhj3Jd1AbBy4Lt/3ZwyPgP4ugm6ENriXXt2XUpSE4SBUPzwD5esNgX+hlx CEsnKhRhv/i7JTGtvXdvmrneGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCjd2xkw I69XIPdXVJjoyqHJ5DjsMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QwMEMvQ0FBODg2MUVDNjAxMTFFQzk1RkYxRTExQzRGOUFFMDIvNDY2NTQ0MDhD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+EADBAJnJ5gwDQYJKoZIhvcNAQELBQADggEBAB6xg0eT 3EwoZJ5V+W7FB/pUsCG2bPuQtN9iGg/zA3qps4dppiD5ceN46wlWceoSIwcAWqVh AJByvEB03ZjSRF1Mr+7RV3+pLZWua8O34Oyr/kZOnPR1qJLg9/BoPD3Wzb48V5GY IGcG4xMHRNnSA3GhpHkXX9iipPKqXjUZD+w4QUxmcTQBg8Ak8hXeHcmshx9oNl1u hxYD4nI4zilCZl06+eW6aSO3cf0DaxLdUM0myK02Ry9k39TuulUUctErO8TbQFa2 pMFm5J0fMiZYgX/sby1QQlSdX+lckz54roeORv3x8iWMMrPKmcb3fZ3SWF2oLQWb 06XrwYymlktPqRw= -----END CERTIFICATE-----Generated at Tue Jun 25 06:05:21 2024 by rpki-client on console-fra.rpki-client.org