$ rpki-client -vvf rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/46A6690EB41911EFA68E0826C4F9AE02.roa File: 46A6690EB41911EFA68E0826C4F9AE02.roa (raw, json) Hash identifier: 8xVme3gCmPdfKt+x4zDr/XrfAGwH3vnJGiPzKA2L3io= Subject key identifier: 06:5A:F3:E9:E9:0C:9D:02:2C:03:6C:7D:5A:1E:87:06:9F:1F:02:E1 Certificate issuer: /CN=A9129757/serialNumber=D3BA44DA5CBDC1CC5125E2C1007B6CDB7DDCDC85 Certificate serial: 03 Authority key identifier: D3:BA:44:DA:5C:BD:C1:CC:51:25:E2:C1:00:7B:6C:DB:7D:DC:DC:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07pE2ly9wcxRJeLBAHts233c3IU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/46A6690EB41911EFA68E0826C4F9AE02.roa Signing time: Fri 06 Dec 2024 21:30:12 +0000 ROA not before: Fri 06 Dec 2024 21:30:12 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17481 IP address blocks: 203.79.16.0/24 maxlen: 24 203.79.17.0/24 maxlen: 24 203.79.18.0/24 maxlen: 24 203.79.19.0/24 maxlen: 24 203.79.20.0/24 maxlen: 24 203.79.21.0/24 maxlen: 24 203.79.22.0/24 maxlen: 24 203.79.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/07pE2ly9wcxRJeLBAHts233c3IU.crl rsync://rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/07pE2ly9wcxRJeLBAHts233c3IU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07pE2ly9wcxRJeLBAHts233c3IU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129757/serialNumber=D3BA44DA5CBDC1CC5125E2C1007B6CDB7DDCDC85 Validity Not Before: Dec 6 21:30:12 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=67536ce4-a2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ed:fc:33:38:50:dc:2a:9d:30:7e:6d:eb:99: bc:31:69:aa:70:33:3e:5b:2a:26:2f:f9:a3:7b:fd: 51:2d:4d:f0:ae:55:1f:81:5e:87:57:64:05:9c:8e: 2f:94:86:2c:ef:94:f5:af:d6:59:d8:2c:dc:98:65: 73:87:f1:72:39:b7:d7:8b:35:62:55:52:57:50:d6: 3b:44:f2:9c:46:07:56:b4:60:fc:17:7e:53:dd:7d: 68:26:b6:41:93:ee:44:a6:d0:7c:6a:7d:4b:c1:c2: 68:47:15:32:19:64:33:6c:0f:08:88:2f:32:ef:13: 09:66:f5:ea:95:05:de:e2:8d:c6:89:13:92:54:35: 2f:c8:6b:21:0f:55:dd:7d:37:b1:9b:99:41:c0:58: f4:9a:0a:2c:37:8a:7d:c0:da:cc:29:8d:50:b8:71: 75:4f:63:54:61:59:1c:32:31:20:e8:e1:6a:83:3d: d1:79:a3:ec:98:73:2f:63:ad:81:a0:94:e5:8c:56: 44:f4:1f:84:b6:28:43:eb:09:05:18:e0:0b:9b:d3: 57:45:ce:39:f3:32:b0:5b:cf:c0:f8:e9:33:7a:f7: 70:13:1c:13:0a:1e:34:fe:1f:91:20:5c:c0:bb:03: bd:ef:ef:29:ab:24:9e:0f:55:80:ee:c8:f6:0a:99: 09:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5A:F3:E9:E9:0C:9D:02:2C:03:6C:7D:5A:1E:87:06:9F:1F:02:E1 X509v3 Authority Key Identifier: keyid:D3:BA:44:DA:5C:BD:C1:CC:51:25:E2:C1:00:7B:6C:DB:7D:DC:DC:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/07pE2ly9wcxRJeLBAHts233c3IU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07pE2ly9wcxRJeLBAHts233c3IU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129757/32934CECB37A11EF9C07C65BC4F9AE02/46A6690EB41911EFA68E0826C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.79.16.0/21 Signature Algorithm: sha256WithRSAEncryption 00:36:49:95:cd:07:5f:a0:a1:10:58:eb:04:b7:41:e7:62:e3: 05:6e:4b:35:5b:de:cc:51:b5:ba:41:52:9d:7d:40:20:a4:15: b5:1c:81:2c:58:f2:70:8e:64:b9:5a:26:97:70:31:3f:f8:19: c5:53:4c:a7:c8:c7:c6:a8:73:0d:a6:2a:f2:6e:4a:4a:97:45: e8:aa:a8:1b:91:c3:44:6b:fc:05:4f:f0:e4:34:3b:ba:be:3b: e0:7a:ed:cb:e8:b8:b0:c9:c6:d4:50:da:d3:dc:b1:49:e0:60: d7:8e:be:fc:be:d0:39:65:33:79:72:c2:99:ff:10:44:c7:08: 7c:1f:f7:c5:a8:85:b9:70:c3:75:ed:bd:2d:5f:0c:0b:81:9d: 3f:99:7b:51:62:04:1e:bf:4f:a8:a3:38:47:df:38:22:a0:a0: c9:9b:0e:8a:08:36:8a:26:f5:12:ac:41:a5:18:dd:b3:99:fa: 0c:ef:3d:c1:5e:ad:5a:b1:1a:d3:9e:d4:87:2f:9a:d6:f1:88: 24:a3:eb:4e:db:07:15:9c:68:8f:69:41:ca:2c:43:cf:f5:4a: 08:27:6f:4c:58:70:4b:54:01:2f:c5:82:6f:9b:d8:f3:24:66: d3:0c:95:3e:ec:fa:ce:38:eb:9a:2c:08:cf:76:a6:95:9a:31: 68:42:e1:a4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OTc1NzExMC8GA1UEBRMoRDNCQTQ0REE1Q0JEQzFDQzUxMjVFMkMxMDA3QjZDREI3 RERDREM4NTAeFw0yNDEyMDYyMTMwMTJaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTM2Y2U0LWEyZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV7fwzOFDcKp0wfm3rmbwxaapwMz5bKiYv+aN7/VEtTfCuVR+BXodXZAWcji+U hizvlPWv1lnYLNyYZXOH8XI5t9eLNWJVUldQ1jtE8pxGB1a0YPwXflPdfWgmtkGT 7kSm0HxqfUvBwmhHFTIZZDNsDwiILzLvEwlm9eqVBd7ijcaJE5JUNS/IayEPVd19 N7GbmUHAWPSaCiw3in3A2swpjVC4cXVPY1RhWRwyMSDo4WqDPdF5o+yYcy9jrYGg lOWMVkT0H4S2KEPrCQUY4Aub01dFzjnzMrBbz8D46TN693ATHBMKHjT+H5EgXMC7 A73v7ymrJJ4PVYDuyPYKmQkrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBlrz6ekM nQIsA2x9Wh6HBp8fAuEwHwYDVR0jBBgwFoAU07pE2ly9wcxRJeLBAHts233c3IUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI5NzU3LzMyOTM0Q0VDQjM3 QTExRUY5QzA3QzY1QkM0RjlBRTAyLzA3cEUybHk5d2N4UkplTEJBSHRzMjMzYzNJ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDdwRTJseTl3Y3hSSmVMQkFIdHMyMzNjM0lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc1Ny8zMjkzNENFQ0IzN0ExMUVGOUMwN0M2NUJDNEY5QUUwMi80NkE2NjkwRUI0 MTkxMUVGQTY4RTA4MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8tPEDANBgkqhkiG9w0BAQsFAAOCAQEAADZJlc0HX6ChEFjr BLdB52LjBW5LNVvezFG1ukFSnX1AIKQVtRyBLFjycI5kuVoml3AxP/gZxVNMp8jH xqhzDaYq8m5KSpdF6KqoG5HDRGv8BU/w5DQ7ur474Hrty+i4sMnG1FDa09yxSeBg 146+/L7QOWUzeXLCmf8QRMcIfB/3xaiFuXDDde29LV8MC4GdP5l7UWIEHr9PqKM4 R984IqCgyZsOigg2iib1EqxBpRjds5n6DO89wV6tWrEa057Uhy+a1vGIJKPrTtsH FZxoj2lByixDz/VKCCdvTFhwS1QBL8WCb5vY8yRm0wyVPuz6zjjrmiwIz3amlZox aELhpA== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:08 2024 by rpki-client on console-fra.rpki-client.org