$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46D6F4EA76ED11EDB8F27034C4F9AE02.roa File: 46D6F4EA76ED11EDB8F27034C4F9AE02.roa (raw, json) Hash identifier: wnzjCIQKwBgy9x5qjQTypjinfBVwzshi7ToKiLelhGU= Subject key identifier: A8:E2:02:1F:3B:26:3F:12:27:8D:77:4E:B3:14:CA:1F:62:13:7C:21 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7101 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46D6F4EA76ED11EDB8F27034C4F9AE02.roa Signing time: Wed 10 May 2023 16:46:11 +0000 ROA not before: Wed 10 May 2023 16:46:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150573 IP address blocks: 103.42.220.0/23 maxlen: 24 2400:c560::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28929 (0x7101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:46:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca53-11ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:60:50:a0:28:b7:27:6c:6e:a1:5a:7e:fb:7d: 0e:cc:9e:59:ed:54:53:72:6b:f5:94:9f:70:db:03: 96:30:66:ea:4d:d2:15:28:a2:01:e3:ce:f3:e9:ee: 09:25:4a:45:d8:c3:9c:27:ba:30:57:64:06:e6:31: 96:fa:a2:a0:0a:fe:a5:d9:8a:c2:2f:92:e2:4b:73: d2:ef:7b:da:15:dc:2f:07:b0:c8:73:45:16:0a:49: 97:4a:64:24:21:09:46:d6:1d:e2:d4:e7:f2:df:13: 79:f7:b4:97:86:47:33:79:58:4f:b5:86:df:f5:00: a0:70:2b:e8:12:30:5f:b0:93:a5:a2:3c:60:97:5c: 4e:90:36:6b:db:2f:cf:aa:d8:56:3f:7d:7d:4b:c1: 78:ea:1e:87:0b:a3:b4:74:4f:62:bc:2c:99:59:93: f8:d6:dd:f1:08:c0:46:4b:a9:fe:93:8f:c9:db:20: 46:03:b9:75:cf:31:ec:24:ec:01:3d:dc:bc:11:10: 4a:a6:e0:ea:b1:ba:83:ba:bd:60:42:c3:e5:85:b7: 53:ea:52:76:20:a3:2d:e2:cb:11:6b:42:cf:bc:d4: 1d:34:c2:9e:36:da:78:20:f4:9e:7a:51:64:cf:9d: 56:4b:57:b0:39:09:b5:ff:c6:29:53:c8:77:2b:1f: de:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E2:02:1F:3B:26:3F:12:27:8D:77:4E:B3:14:CA:1F:62:13:7C:21 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46D6F4EA76ED11EDB8F27034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.220.0/23 IPv6: 2400:c560::/32 Signature Algorithm: sha256WithRSAEncryption 41:9c:f7:9b:bb:29:26:27:2b:d0:68:2a:0e:3a:74:d8:e4:03: f7:8e:13:17:78:db:2a:8e:0a:06:62:ba:22:32:00:df:21:2e: dc:4d:d2:15:da:17:3f:33:ff:6a:ae:ce:ba:2d:70:b1:80:42: ec:95:9e:77:c8:48:d9:e8:17:41:e5:ed:49:5f:da:f5:8c:36: a9:c5:ee:41:48:e0:8d:5a:db:c5:45:58:90:7e:45:a8:09:dd: 52:6f:25:e6:ef:3d:48:8f:b5:1d:22:e1:2c:ad:b4:ea:0f:a6: ae:f8:3a:b1:1a:3c:d7:52:bc:ee:20:27:f2:9a:ac:bd:3e:4d: b7:9b:e0:60:53:36:79:2f:02:3a:2d:d0:fa:ce:55:61:a4:98: fa:5f:45:cb:cb:7f:87:1b:c8:51:b8:bf:51:67:9d:79:3e:d4: f6:e7:7c:e0:32:2b:1e:2b:ff:ab:62:b7:e7:67:a7:c4:93:97: ce:db:dc:71:67:02:32:a1:37:6a:0a:0b:bf:e2:1c:8a:e5:26: d3:30:06:3d:d5:ce:5d:14:7c:f4:a1:d1:20:81:38:1b:72:ef: 15:01:bb:50:84:25:95:17:31:d8:da:9e:0a:07:2b:d9:e1:22: 18:ba:1a:21:c4:67:5b:3d:c1:e2:b8:84:ef:63:68:e1:05:cb: 3c:ac:b5:7b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICcQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NjExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E1My0xMWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmBQoCi3J2xuoVp++30OzJ5Z7VRTcmv1lJ9w2wOWMGbqTdIVKKIB487z6e4J JUpF2MOcJ7owV2QG5jGW+qKgCv6l2YrCL5LiS3PS73vaFdwvB7DIc0UWCkmXSmQk IQlG1h3i1Ofy3xN597SXhkczeVhPtYbf9QCgcCvoEjBfsJOlojxgl1xOkDZr2y/P qthWP319S8F46h6HC6O0dE9ivCyZWZP41t3xCMBGS6n+k4/J2yBGA7l1zzHsJOwB Pdy8ERBKpuDqsbqDur1gQsPlhbdT6lJ2IKMt4ssRa0LPvNQdNMKeNtp4IPSeelFk z51WS1ewOQm1/8YpU8h3Kx/ehQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKjiAh87 Jj8SJ413TrMUyh9iE3whMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDZENkY0RUE3 NkVEMTFFREI4RjI3MDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnKtwwDQQCAAIwBwMFACQAxWAwDQYJKoZIhvcNAQELBQAD ggEBAEGc95u7KSYnK9BoKg46dNjkA/eOExd42yqOCgZiuiIyAN8hLtxN0hXaFz8z /2quzrotcLGAQuyVnnfISNnoF0Hl7Ulf2vWMNqnF7kFI4I1a28VFWJB+RagJ3VJv JebvPUiPtR0i4SyttOoPpq74OrEaPNdSvO4gJ/KarL0+Tbeb4GBTNnkvAjot0PrO VWGkmPpfRcvLf4cbyFG4v1FnnXk+1PbnfOAyKx4r/6tit+dnp8STl87b3HFnAjKh N2oKC7/iHIrlJtMwBj3Vzl0UfPSh0SCBOBty7xUBu1CEJZUXMdjangoHK9nhIhi6 GiHEZ1s9weK4hO9jaOEFyzystXs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org