$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/46E49D1CE79811EEA89C5E56C4F9AE02.roa File: 46E49D1CE79811EEA89C5E56C4F9AE02.roa (raw, json) Hash identifier: rsCbbM2tRTk90LXW35QYw6yMV2rL7FbVaUSFW5YPqYA= Subject key identifier: 07:B1:9F:A1:DF:86:7D:22:53:BF:1A:EC:65:EB:1D:31:20:86:66:00 Certificate issuer: /CN=A91862F9/serialNumber=BE6341A7CC0CA0F6C1A15E0466EC7155B8283C9D Certificate serial: 77 Authority key identifier: BE:63:41:A7:CC:0C:A0:F6:C1:A1:5E:04:66:EC:71:55:B8:28:3C:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/46E49D1CE79811EEA89C5E56C4F9AE02.roa Signing time: Thu 21 Mar 2024 15:32:51 +0000 ROA not before: Thu 21 Mar 2024 15:32:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135365 IP address blocks: 103.253.176.0/24 maxlen: 24 2401:25e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.crl rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F9/serialNumber=BE6341A7CC0CA0F6C1A15E0466EC7155B8283C9D Validity Not Before: Mar 21 15:32:51 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65fc5322-de7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cf:34:94:62:93:24:e4:f8:87:4e:24:13:61: 3a:34:88:bc:7d:54:47:75:fd:0c:e4:d0:c8:7e:e9: 0c:c7:46:95:b6:47:ea:bb:a9:58:12:69:ce:05:56: 8b:8a:60:9b:5d:db:4c:e8:71:a6:87:29:d5:74:dc: 49:b2:7d:67:bc:a3:a9:40:38:a5:09:79:48:a3:a3: f7:3a:2e:18:e8:1b:a8:2f:08:0b:6d:1e:21:ad:58: c6:dd:0f:58:03:e6:9b:90:b3:d2:a8:a8:59:8e:6f: ee:d5:be:96:4b:62:d0:15:0e:f6:d6:7c:64:0e:ab: b5:77:c9:a5:88:d3:27:96:f7:0b:d0:87:a3:88:04: aa:79:0b:89:c0:f7:7c:0e:93:0a:2f:95:b4:1b:c2: fb:3f:77:b3:ea:77:cb:9e:c3:59:a9:87:68:c0:d1: 25:8a:a2:92:ff:b4:55:d2:cb:e6:fb:43:12:f6:af: 62:bf:3e:b4:2d:05:90:9a:f9:f5:6c:f5:a5:2b:2d: ad:99:c7:d6:26:a7:f6:af:0c:64:9a:9f:aa:97:32: f0:d1:d1:94:73:29:3f:54:b1:ee:11:af:4e:a5:a7: 92:51:a2:6e:d8:f4:65:3a:15:2d:58:ac:c7:14:87: ea:fa:80:07:77:e0:87:78:1d:7b:89:88:19:0d:28: 72:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B1:9F:A1:DF:86:7D:22:53:BF:1A:EC:65:EB:1D:31:20:86:66:00 X509v3 Authority Key Identifier: keyid:BE:63:41:A7:CC:0C:A0:F6:C1:A1:5E:04:66:EC:71:55:B8:28:3C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/46E49D1CE79811EEA89C5E56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.176.0/24 IPv6: 2401:25e0::/32 Signature Algorithm: sha256WithRSAEncryption 08:1c:4e:04:85:f3:c6:82:e7:61:dc:7d:c4:37:3f:6e:e4:e1: 7b:d9:f8:50:67:97:7f:8a:15:97:05:a0:07:09:1c:b1:99:bc: cd:e1:ef:ed:9a:25:cc:b6:c4:cb:96:2a:09:09:a7:8c:20:f9: 90:02:82:91:e6:f4:48:8c:ef:72:e3:65:ff:70:aa:de:db:4a: 87:24:f1:23:94:f0:c2:2a:9e:2a:54:9c:50:69:f8:22:8a:4d: 1d:6b:2c:c6:f9:d8:dd:ae:6d:58:77:48:96:cd:b3:45:18:17: 4e:74:16:69:a6:ca:5b:8c:a7:17:b1:89:f6:31:16:81:3e:0d: 76:1d:8f:96:3f:51:97:21:d7:7e:62:db:b2:97:be:85:26:ce: 23:52:28:2f:80:74:62:73:1e:92:fa:18:d8:a9:6e:82:29:0e: 1f:0b:16:a2:b4:9f:a8:f1:9d:cd:5c:af:0a:9b:f9:9c:04:2c: 10:4e:9a:bb:fd:45:94:4d:29:a2:1a:21:c7:91:6a:7a:60:03: 35:50:77:e4:17:66:a2:7f:a8:9d:72:38:66:6a:5c:3f:95:9a: b1:29:a9:b5:91:d8:07:b5:8a:19:cd:d5:26:16:17:bb:3f:ac: f9:c1:f6:70:8f:e5:4e:f4:6f:d0:46:92:27:2b:46:2d:7f:75: c3:6c:32:da -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NjJGOTExMC8GA1UEBRMoQkU2MzQxQTdDQzBDQTBGNkMxQTE1RTA0NjZFQzcxNTVC ODI4M0M5RDAeFw0yNDAzMjExNTMyNTFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmM1MzIyLWRlN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJzzSUYpMk5PiHTiQTYTo0iLx9VEd1/Qzk0Mh+6QzHRpW2R+q7qVgSac4FVouK YJtd20zocaaHKdV03EmyfWe8o6lAOKUJeUijo/c6LhjoG6gvCAttHiGtWMbdD1gD 5puQs9KoqFmOb+7VvpZLYtAVDvbWfGQOq7V3yaWI0yeW9wvQh6OIBKp5C4nA93wO kwovlbQbwvs/d7Pqd8uew1mph2jA0SWKopL/tFXSy+b7QxL2r2K/PrQtBZCa+fVs 9aUrLa2Zx9Ymp/avDGSan6qXMvDR0ZRzKT9Use4Rr06lp5JRom7Y9GU6FS1YrMcU h+r6gAd34Id4HXuJiBkNKHK1AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUB7Gfod+G fSJTvxrsZesdMSCGZgAwHwYDVR0jBBgwFoAUvmNBp8wMoPbBoV4EZuxxVbgoPJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2MkY5LzRFNjA5QTcyM0I3 RDExRUU5NjU2RkM2NEM0RjlBRTAyL3ZtTkJwOHdNb1BiQm9WNEVadXh4VmJnb1BK MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdm1OQnA4d01vUGJCb1Y0RVp1eHhWYmdvUEowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGOS80RTYwOUE3MjNCN0QxMUVFOTY1NkZDNjRDNEY5QUUwMi80NkU0OUQxQ0U3 OTgxMUVFQTg5QzVFNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAGf9sDANBAIAAjAHAwUAJAEl4DANBgkqhkiG9w0BAQsFAAOC AQEACBxOBIXzxoLnYdx9xDc/buThe9n4UGeXf4oVlwWgBwkcsZm8zeHv7ZolzLbE y5YqCQmnjCD5kAKCkeb0SIzvcuNl/3Cq3ttKhyTxI5TwwiqeKlScUGn4IopNHWss xvnY3a5tWHdIls2zRRgXTnQWaabKW4ynF7GJ9jEWgT4Ndh2Plj9RlyHXfmLbspe+ hSbOI1IoL4B0YnMekvoY2KlugikOHwsWorSfqPGdzVyvCpv5nAQsEE6au/1FlE0p ohohx5FqemADNVB35Bdmon+onXI4ZmpcP5WasSmptZHYB7WKGc3VJhYXuz+s+cH2 cI/lTvRv0EaSJytGLX91w2wy2g== -----END CERTIFICATE-----Generated at Wed May 29 09:16:22 2024 by rpki-client on console-fra.rpki-client.org