$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa File: 46C5452E0DD711EF85707821C4F9AE02.roa (raw, json) Hash identifier: 6P120RTOYh1dh3p0j/PnZa8QUh9Ahz+uTKm0Bzmq0rM= Subject key identifier: 42:1B:8B:06:9D:69:C0:EC:FA:3B:03:64:7C:19:EB:9E:4F:E1:EA:55 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0B24 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa Signing time: Mon 20 May 2024 05:44:48 +0000 ROA not before: Mon 20 May 2024 05:44:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 58504 IP address blocks: 103.28.84.0/22 maxlen: 22 103.28.84.0/24 maxlen: 24 103.28.85.0/24 maxlen: 24 103.28.86.0/24 maxlen: 24 103.28.87.0/24 maxlen: 24 150.107.204.0/22 maxlen: 22 150.107.204.0/24 maxlen: 24 150.107.205.0/24 maxlen: 24 150.107.206.0/24 maxlen: 24 150.107.207.0/24 maxlen: 24 2406:b700::/32 maxlen: 32 2406:b700::/48 maxlen: 48 2406:b700:2::/48 maxlen: 48 2406:b700:3::/48 maxlen: 48 2406:b700:4::/48 maxlen: 48 2406:b700:5::/48 maxlen: 48 2406:b700:6::/48 maxlen: 48 2406:b700:7::/48 maxlen: 48 2406:b700:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: May 20 05:44:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=664ae350-c6fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:0c:b5:cf:f1:1a:97:91:85:09:cb:41:cb: 5d:4d:a4:af:6a:91:b5:56:bd:ea:d7:b0:8a:0c:80: cd:c3:dc:3f:46:1b:5b:d1:8a:ec:84:a6:e8:b7:6d: 65:13:a4:89:d9:7e:3e:5a:d2:d5:29:61:88:07:2b: da:a9:bd:3c:2d:e3:b1:46:a4:8a:2f:1c:3f:70:c5: 0a:1a:a6:5d:cc:43:a9:9a:3d:1a:dc:7b:23:df:93: be:be:ac:32:e0:b2:0e:74:80:ca:fa:98:05:79:31: d8:e2:ee:89:fd:6f:c3:d6:a5:c6:e5:07:89:2c:c5: 75:e6:3e:95:49:54:4b:2b:42:02:a0:7b:8f:12:4a: 97:6c:89:49:bf:a3:19:fe:d5:45:c8:00:75:ee:67: 42:91:48:61:a1:91:6b:1c:e8:d6:cf:c6:c6:0e:08: 9f:e5:0f:08:61:79:3c:86:1e:bb:51:43:79:db:77: 72:21:d9:51:53:5c:57:18:bd:bd:f8:87:71:c8:25: 3d:84:9c:41:3c:c1:91:84:7a:3b:eb:99:bc:c8:cc: 65:68:90:8e:70:ea:db:4e:f8:ae:5c:09:51:3b:4c: 5b:bc:1e:21:74:b9:67:a3:64:42:6c:ac:d9:05:a9: ed:aa:3c:51:58:08:cf:88:cf:48:b4:f4:6e:58:89: 51:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:1B:8B:06:9D:69:C0:EC:FA:3B:03:64:7C:19:EB:9E:4F:E1:EA:55 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.84.0/22 150.107.204.0/22 IPv6: 2406:b700::/32 Signature Algorithm: sha256WithRSAEncryption 6f:68:8f:59:7f:a8:03:cd:5a:40:85:d8:77:ac:6d:40:ad:8b: 52:5b:29:b7:14:41:f4:e7:c9:43:31:c6:b7:ef:47:3e:ac:f8: 3b:1e:af:6b:00:ad:62:60:5f:b2:69:69:ad:6c:22:e6:67:31: 51:ac:f8:64:6c:78:e2:63:37:6f:4b:14:47:0b:01:31:28:62: d9:e5:80:59:54:77:29:fe:16:fd:b5:47:4b:31:0f:3b:eb:c7: e8:58:ee:f9:df:0b:31:53:e1:7a:5b:89:3c:a8:fd:3b:85:73: b2:b1:03:eb:d2:b8:35:ff:d0:43:d7:77:e7:7c:00:13:30:38: 81:32:d4:b2:13:7d:9a:fe:fc:39:0e:c3:23:f9:67:be:1d:8d: fa:ce:8e:bc:64:a7:71:60:25:a5:a3:15:89:7e:a4:c6:f1:46: 5b:8a:7b:e1:e1:54:23:6a:b2:6b:f1:3f:7a:80:23:7e:35:e2: 86:23:99:22:4c:b3:cd:aa:1c:ac:e0:11:d2:43:75:92:18:2b: 47:01:49:99:df:9b:21:71:5e:53:57:fa:65:63:f8:47:87:6e: d4:a1:90:87:d8:dd:0d:a5:d8:30:c0:0e:c6:d2:87:5c:00:1d: 29:b7:ae:84:f9:51:f9:58:7b:60:53:84:83:16:1f:d6:0a:a3: 23:51:65:16 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjQwNTIwMDU0NDQ4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRhZTM1MC1jNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2wMtc/xGpeRhQnLQctdTaSvapG1Vr3q17CKDIDNw9w/Rhtb0YrshKbot21l E6SJ2X4+WtLVKWGIByvaqb08LeOxRqSKLxw/cMUKGqZdzEOpmj0a3Hsj35O+vqwy 4LIOdIDK+pgFeTHY4u6J/W/D1qXG5QeJLMV15j6VSVRLK0ICoHuPEkqXbIlJv6MZ /tVFyAB17mdCkUhhoZFrHOjWz8bGDgif5Q8IYXk8hh67UUN523dyIdlRU1xXGL29 +IdxyCU9hJxBPMGRhHo765m8yMxlaJCOcOrbTviuXAlRO0xbvB4hdLlno2RCbKzZ BantqjxRWAjPiM9ItPRuWIlR9wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEIbiwad acDs+jsDZHwZ655P4epVMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwMUUvNzg1RDdFRDIxQzA4MTFFQTg1NzZCMTUxQzRGOUFFMDIvNDZDNTQ1MkUw REQ3MTFFRjg1NzA3ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnHFQDBAKWa8wwDQQCAAIwBwMFACQGtwAwDQYJKoZIhvcN AQELBQADggEBAG9oj1l/qAPNWkCF2HesbUCti1JbKbcUQfTnyUMxxrfvRz6s+Dse r2sArWJgX7Jpaa1sIuZnMVGs+GRseOJjN29LFEcLATEoYtnlgFlUdyn+Fv21R0sx Dzvrx+hY7vnfCzFT4XpbiTyo/TuFc7KxA+vSuDX/0EPXd+d8ABMwOIEy1LITfZr+ /DkOwyP5Z74djfrOjrxkp3FgJaWjFYl+pMbxRluKe+HhVCNqsmvxP3qAI3414oYj mSJMs82qHKzgEdJDdZIYK0cBSZnfmyFxXlNX+mVj+EeHbtShkIfY3Q2l2DDADsbS h1wAHSm3roT5UflYe2BThIMWH9YKoyNRZRY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org