$ rpki-client -vvf rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa File: 46D954B6F5A811EEA84E8049C4F9AE02.roa (raw, json) Hash identifier: p1SssvY6SOrULQhmO9jpxYD94HPLlt6Ruhw6hVa4svI= Subject key identifier: 2A:0B:09:22:9C:BE:EC:1C:DB:E7:D7:DE:BB:3B:26:C2:62:AA:06:F8 Certificate issuer: /CN=A91984AC/serialNumber=FBC55B2C0BE0AB234748FBC361547F64BFA75197 Certificate serial: 43 Authority key identifier: FB:C5:5B:2C:0B:E0:AB:23:47:48:FB:C3:61:54:7F:64:BF:A7:51:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa Signing time: Fri 09 Aug 2024 06:37:42 +0000 ROA not before: Fri 09 Aug 2024 06:37:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 31898 IP address blocks: 103.159.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.crl rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91984AC/serialNumber=FBC55B2C0BE0AB234748FBC361547F64BFA75197 Validity Not Before: Aug 9 06:37:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b5b936-3663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:47:57:88:c8:6d:30:62:0f:de:a6:10:f1:c7: ae:7b:1f:13:9d:33:df:c0:47:f4:bf:62:1f:94:a2: c6:73:21:dd:84:c6:27:ff:26:3f:32:ac:00:81:9c: 45:cb:81:d0:b6:47:5a:ef:70:8a:95:5a:3f:7b:df: 41:68:92:bf:13:2e:46:4c:f8:7c:a6:d8:2d:64:51: 72:1e:f0:73:89:df:6e:8b:12:03:f7:80:8e:90:89: 7f:f2:f8:cb:df:c6:bc:21:61:f1:6c:f2:da:73:50: 7f:41:d1:67:0a:d0:fd:ac:34:39:e3:91:8b:5f:53: d7:cb:91:c7:91:51:ad:28:3a:d5:9b:29:44:e1:33: a4:a8:79:0f:cc:76:90:7f:02:4c:fe:9b:9b:64:2f: a4:41:1e:12:17:35:87:02:23:c0:1d:ec:81:39:96: 68:e3:d4:dc:ed:58:76:cc:7f:88:5d:52:7c:65:6c: bb:0c:91:f2:71:f5:be:11:48:08:19:b9:f3:88:3f: 9a:a0:a9:a8:6f:77:5e:c8:8b:50:d4:d7:d4:87:5a: 0d:59:0f:2f:25:ae:9c:76:77:74:d9:a3:49:a9:bd: 58:a7:7b:17:57:c4:76:5f:b6:5d:3e:bd:cb:cd:1b: 11:b7:22:81:17:15:5f:b1:09:f1:2d:11:51:e0:4a: 73:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0B:09:22:9C:BE:EC:1C:DB:E7:D7:DE:BB:3B:26:C2:62:AA:06:F8 X509v3 Authority Key Identifier: keyid:FB:C5:5B:2C:0B:E0:AB:23:47:48:FB:C3:61:54:7F:64:BF:A7:51:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.76.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:0e:69:4e:ee:5e:e7:d4:6e:8b:11:8e:8a:b8:ee:ba:63:d5: 56:82:be:44:4f:b6:4c:0f:68:fd:f0:3d:31:ed:ad:93:da:a7: 9c:40:09:a5:5b:7c:02:51:80:d8:29:32:67:48:39:46:2a:26: 71:36:d4:0a:03:b4:e0:2b:b8:0c:1d:f1:dc:c6:4c:8c:b0:05: 05:69:72:af:e7:38:59:ff:48:c7:e1:32:65:7c:96:c2:83:00: a1:1d:1d:0e:47:f0:63:23:d7:a5:be:29:ab:01:56:b8:2c:d2: aa:ad:f5:23:79:8f:29:9c:a5:b4:1c:7f:b5:2f:6e:ef:32:d5: 13:f3:95:bc:a6:e1:6e:1c:ac:7c:f9:88:c0:91:ee:93:b5:a3: 3e:a8:a6:a4:30:07:bf:fc:7d:27:a6:69:35:28:1f:44:69:a2: 79:b7:e3:25:db:18:76:0c:49:9e:3b:26:15:aa:99:4c:59:d9: 1d:73:d9:24:2e:44:1f:ac:f2:fd:ec:9f:94:e4:d3:7b:6e:b1: 74:03:91:6a:2a:7f:55:a5:4a:fe:b0:d3:a7:39:c0:92:f7:fa: 2d:ea:bd:84:22:b1:65:02:c3:d2:c0:ce:34:66:93:13:6c:85: 2c:d6:68:f5:25:da:da:e8:58:4a:f9:7d:a1:57:90:a9:7e:af: 57:b6:e7:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODRBQzExMC8GA1UEBRMoRkJDNTVCMkMwQkUwQUIyMzQ3NDhGQkMzNjE1NDdGNjRC RkE3NTE5NzAeFw0yNDA4MDkwNjM3NDJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjViOTM2LTM2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTR1eIyG0wYg/ephDxx657HxOdM9/AR/S/Yh+UosZzId2Exif/Jj8yrACBnEXL gdC2R1rvcIqVWj9730Fokr8TLkZM+Hym2C1kUXIe8HOJ326LEgP3gI6QiX/y+Mvf xrwhYfFs8tpzUH9B0WcK0P2sNDnjkYtfU9fLkceRUa0oOtWbKUThM6SoeQ/MdpB/ Akz+m5tkL6RBHhIXNYcCI8Ad7IE5lmjj1NztWHbMf4hdUnxlbLsMkfJx9b4RSAgZ ufOIP5qgqahvd17Ii1DU19SHWg1ZDy8lrpx2d3TZo0mpvVinexdXxHZftl0+vcvN GxG3IoEXFV+xCfEtEVHgSnP1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKgsJIpy+ 7Bzb59feuzsmwmKqBvgwHwYDVR0jBBgwFoAU+8VbLAvgqyNHSPvDYVR/ZL+nUZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NEFDLzZEMDI2Q0VDRjVB MTExRUU5OERCQ0QxMUM0RjlBRTAyLy04VmJMQXZncXlOSFNQdkRZVlJfWkwtblVa Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLThWYkxBdmdxeU5IU1B2RFlWUl9aTC1uVVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODRBQy82RDAyNkNFQ0Y1QTExMUVFOThEQkNEMTFDNEY5QUUwMi80NkQ5NTRCNkY1 QTgxMUVFQTg0RTgwNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGefTDANBgkqhkiG9w0BAQsFAAOCAQEAKw5pTu5e59RuixGO irjuumPVVoK+RE+2TA9o/fA9Me2tk9qnnEAJpVt8AlGA2CkyZ0g5RiomcTbUCgO0 4Cu4DB3x3MZMjLAFBWlyr+c4Wf9Ix+EyZXyWwoMAoR0dDkfwYyPXpb4pqwFWuCzS qq31I3mPKZyltBx/tS9u7zLVE/OVvKbhbhysfPmIwJHuk7WjPqimpDAHv/x9J6Zp NSgfRGmiebfjJdsYdgxJnjsmFaqZTFnZHXPZJC5EH6zy/eyflOTTe26xdAORaip/ VaVK/rDTpznAkvf6Leq9hCKxZQLD0sDONGaTE2yFLNZo9SXa2uhYSvl9oVeQqX6v V7bnAA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:35 2024 by rpki-client on console-ams.rpki-client.org