$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa File: 46D6261876A511EB82E04A2FC4F9AE02.roa (raw, json) Hash identifier: Z0HHcyxz7rmGLBYwcIWDSL9D03AdZbtYiS469aOTikg= Subject key identifier: B9:BD:16:B5:D2:27:D9:BC:71:80:22:C8:90:BF:80:83:56:B0:1A:19 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 076A Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa Signing time: Sat 26 Oct 2024 07:10:12 +0000 ROA not before: Sat 26 Oct 2024 07:10:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45843 IP address blocks: 103.86.38.0/24 maxlen: 24 117.20.16.0/24 maxlen: 24 117.20.19.0/24 maxlen: 24 119.63.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Oct 26 07:10:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=671c95d3-25d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:49:2f:a6:d2:a4:5d:fc:5b:e1:d5:2f:d9: 3c:24:ef:4e:d0:00:64:90:5b:f2:ed:50:03:a1:bd: 21:a4:45:cc:4f:0d:30:dc:2a:1a:84:51:b2:c2:81: 7e:c7:5c:75:3a:69:55:8b:b7:07:30:10:50:e3:c1: 9c:9f:72:33:41:22:41:0c:93:fa:05:05:d6:dc:60: 27:89:dc:22:84:8d:5f:c2:c7:c7:7c:ba:08:ae:ba: ad:1f:d7:c1:ea:5d:1b:41:7d:7c:bf:87:1f:92:1f: a1:2b:37:a7:ac:c2:96:b2:7b:c0:5b:58:97:13:20: 2a:a9:d5:0d:47:bb:4d:30:f4:92:fc:90:76:d3:2b: 9e:9e:5c:b9:8b:c8:48:fc:71:31:4b:ae:b1:8d:cd: 82:25:b6:32:9f:fa:f1:9e:41:1e:ca:2e:8f:79:9a: 65:b8:16:36:bb:ce:24:b1:6d:11:31:e9:30:34:41: b3:e3:13:27:80:8c:97:56:cd:b5:5a:65:ae:6d:61: 6e:2a:7f:26:8e:19:e5:c2:fe:60:3d:02:6b:9b:e7: 0d:6c:00:de:be:df:e3:f3:cf:e9:ea:41:59:b7:2c: cf:f0:06:93:68:d5:24:f1:60:3b:db:c9:91:a3:e4: 27:e1:86:c3:25:ab:6c:5c:73:84:4a:cb:54:9b:a5: f6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BD:16:B5:D2:27:D9:BC:71:80:22:C8:90:BF:80:83:56:B0:1A:19 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.38.0/24 117.20.16.0/24 117.20.19.0/24 119.63.132.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:17:79:0c:38:e5:2f:b3:05:1d:fe:d3:82:43:49:d8:d3:88: 49:b0:b4:c9:af:88:cd:39:90:7d:c0:4a:0d:cf:89:3a:4b:01: d2:b6:a3:53:88:b2:79:55:7b:cd:38:ab:41:a2:12:51:ca:39: c1:6f:9d:d0:a2:26:22:89:28:d6:bc:aa:72:a4:ee:e6:7c:42: b7:97:21:bd:9f:34:71:1f:e2:87:fe:a4:68:42:23:0b:35:03: 88:e7:e6:7b:89:76:d1:a5:91:ba:91:dc:39:d5:bc:d3:0a:33: 91:ec:26:02:b7:6c:67:60:db:1f:72:fa:03:23:8e:68:c3:e5: 46:02:f4:71:36:ac:a1:fc:fc:f9:89:6e:5d:d5:0d:a8:e8:55: ac:55:e0:81:0f:7c:4c:ea:c0:e8:c4:ca:e2:42:6b:36:bb:c8: 70:87:c3:3f:1f:e4:52:31:07:eb:48:db:93:88:e1:da:27:6d: ad:08:9a:a9:c9:56:31:11:52:c6:7f:a6:4f:ce:57:37:af:82: 22:95:85:8c:20:14:a9:af:dc:72:8b:56:85:13:83:b8:c0:cf: c0:5f:d0:c0:40:df:97:dc:28:72:d1:24:83:0f:64:48:39:f2: 21:58:ae:e8:0e:bc:c3:36:56:cd:df:2c:46:84:29:49:4d:d7: 40:51:ad:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjQxMDI2MDcxMDEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFjOTVkMy0yNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2tJL6bSpF38W+HVL9k8JO9O0ABkkFvy7VADob0hpEXMTw0w3CoahFGywoF+ x1x1OmlVi7cHMBBQ48Gcn3IzQSJBDJP6BQXW3GAnidwihI1fwsfHfLoIrrqtH9fB 6l0bQX18v4cfkh+hKzenrMKWsnvAW1iXEyAqqdUNR7tNMPSS/JB20yuenly5i8hI /HExS66xjc2CJbYyn/rxnkEeyi6PeZpluBY2u84ksW0RMekwNEGz4xMngIyXVs21 WmWubWFuKn8mjhnlwv5gPQJrm+cNbADevt/j88/p6kFZtyzP8AaTaNUk8WA728mR o+Qn4YbDJatsXHOESstUm6X2OQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFLm9FrXS J9m8cYAiyJC/gINWsBoZMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvNDZENjI2MTg3 NkE1MTFFQjgyRTA0QTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnViYDBAB1FBADBAB1FBMDBAB3P4QwDQYJKoZIhvcNAQEL BQADggEBAIwXeQw45S+zBR3+04JDSdjTiEmwtMmviM05kH3ASg3PiTpLAdK2o1OI snlVe804q0GiElHKOcFvndCiJiKJKNa8qnKk7uZ8QreXIb2fNHEf4of+pGhCIws1 A4jn5nuJdtGlkbqR3DnVvNMKM5HsJgK3bGdg2x9y+gMjjmjD5UYC9HE2rKH8/PmJ bl3VDajoVaxV4IEPfEzqwOjEyuJCaza7yHCHwz8f5FIxB+tI25OI4donba0ImqnJ VjERUsZ/pk/OVzevgiKVhYwgFKmv3HKLVoUTg7jAz8Bf0MBA35fcKHLRJIMPZEg5 8iFYrugOvMM2Vs3fLEaEKUlN10BRrQI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org