$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa File: 460AA4AE03CF11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: Gk9zFIrI4hfeJ0HReT17DaXTFk6xr6upAecBQ6JDnHs= Subject key identifier: 2C:E2:09:AC:20:38:81:29:16:25:C2:21:EC:B0:33:BA:FD:B5:5F:EB Certificate issuer: /CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Certificate serial: 0497 Authority key identifier: 9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa Signing time: Sat 07 Sep 2024 01:13:46 +0000 ROA not before: Sat 07 Sep 2024 01:13:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137967 IP address blocks: 103.172.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Validity Not Before: Sep 7 01:13:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66dba8ca-653d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c7:2a:06:04:56:dc:78:54:b6:a4:23:83:58: 7e:5f:70:d0:fa:81:a8:24:52:70:b3:84:7f:d6:b7: 6d:ec:29:db:40:b8:d5:99:7b:64:f7:ee:63:9f:d7: a2:f8:8b:9e:33:0d:43:fd:1e:f1:2e:71:78:da:12: 3e:14:5c:e8:46:6a:35:d1:25:79:8a:98:26:0d:65: c9:ad:18:ec:ec:3a:b9:61:e3:9f:43:d8:a1:d9:d9: ca:2c:22:6f:b6:91:99:7b:02:b0:41:8d:1a:93:e0: 01:7c:a5:1e:2a:be:98:6e:76:3e:c1:53:65:30:e1: 4d:5a:fd:31:eb:bf:5e:59:6c:bc:62:35:96:61:a4: ac:86:28:0c:aa:a0:18:43:ed:4d:de:e3:65:5e:ff: a2:a7:9a:ed:01:c4:6c:77:7a:cc:19:69:ae:ed:d5: 04:28:e5:97:13:92:0b:c0:f4:5e:f8:2f:fd:6d:5a: 0c:5c:24:18:fc:ad:31:13:b8:67:ae:b8:b5:c4:f3: 45:2f:af:32:13:11:43:14:8b:1b:c2:dd:cb:38:05: 67:e1:80:3a:97:e0:3d:b9:60:67:aa:f4:cd:26:c5: bb:f4:d3:ac:72:b2:cd:61:79:9e:a8:fa:15:b3:e4: 10:4a:80:1c:5a:81:41:81:bd:4f:b3:5f:2b:a9:70: 6e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E2:09:AC:20:38:81:29:16:25:C2:21:EC:B0:33:BA:FD:B5:5F:EB X509v3 Authority Key Identifier: keyid:9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.29.0/24 Signature Algorithm: sha256WithRSAEncryption 06:cd:d7:d4:ba:d2:1c:6c:b1:9c:d8:cc:97:91:99:bd:f6:a8: 7e:1d:7f:ff:21:7a:c8:a7:8e:de:b8:59:0e:56:dc:66:34:3d: 7f:87:bd:12:36:dd:f8:b2:35:ed:e3:da:b3:17:a1:f9:0b:11: 88:46:bc:ba:45:65:3f:39:ac:48:01:72:bb:b6:42:39:4f:a1: 37:f0:28:b3:04:44:4a:81:eb:e4:da:55:11:f0:9a:67:b0:4c: 74:a6:c6:1f:ab:f2:f0:c0:20:f1:82:84:de:d3:36:5d:db:84: 7a:49:f6:da:3f:59:39:e9:03:9a:a1:52:bc:c5:61:b6:8d:8e: 7a:e3:40:a9:cf:65:cd:58:46:81:d0:1b:f9:83:73:d3:53:01: bf:17:13:e5:c5:dd:01:4b:69:dd:ee:b8:09:95:11:92:86:ba: 80:a0:ec:cc:df:09:c0:78:60:2b:8c:f5:58:de:78:e6:59:6c: ee:e9:80:99:75:cc:ec:99:9b:75:cf:8f:a6:9a:c6:58:a5:bc: e0:c0:3c:74:6b:e7:bc:1a:3d:75:3e:f2:32:77:f3:04:89:3a: 9c:46:fe:36:4a:e2:7e:92:95:e0:30:55:00:88:06:73:4f:59: ab:76:d8:4e:2b:f8:05:c1:be:e8:1a:ca:71:a5:3b:6e:a6:84: 9f:76:81:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4NUExMTAvBgNVBAUTKDlEOUMwMDhBMTJBMkY3QTYwRkVGRjk2MjI2NkIwNTAy QTFDQTBCQTIwHhcNMjQwOTA3MDExMzQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiYThjYS02NTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtscqBgRW3HhUtqQjg1h+X3DQ+oGoJFJws4R/1rdt7CnbQLjVmXtk9+5jn9ei +IueMw1D/R7xLnF42hI+FFzoRmo10SV5ipgmDWXJrRjs7Dq5YeOfQ9ih2dnKLCJv tpGZewKwQY0ak+ABfKUeKr6YbnY+wVNlMOFNWv0x679eWWy8YjWWYaSshigMqqAY Q+1N3uNlXv+ip5rtAcRsd3rMGWmu7dUEKOWXE5ILwPRe+C/9bVoMXCQY/K0xE7hn rri1xPNFL68yExFDFIsbwt3LOAVn4YA6l+A9uWBnqvTNJsW79NOscrLNYXmeqPoV s+QQSoAcWoFBgb1Ps18rqXBuSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCziCawg OIEpFiXCIeywM7r9tV/rMB8GA1UdIwQYMBaAFJ2cAIoSovemD+/5YiZrBQKhygui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjg1QS8xODVDMzlCNjAz Q0QxMUVDQUJDRTY5N0JDNEY5QUUwMi9uWndBaWhLaTk2WVA3X2xpSm1zRkFxSEtD NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25ad0FpaEtpOTZZUDdfbGlKbXNGQXFIS0M2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4NUEvMTg1QzM5QjYwM0NEMTFFQ0FCQ0U2OTdCQzRGOUFFMDIvNDYwQUE0QUUw M0NGMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrB0wDQYJKoZIhvcNAQELBQADggEBAAbN19S60hxssZzY zJeRmb32qH4df/8hesinjt64WQ5W3GY0PX+HvRI23fiyNe3j2rMXofkLEYhGvLpF ZT85rEgBcru2QjlPoTfwKLMEREqB6+TaVRHwmmewTHSmxh+r8vDAIPGChN7TNl3b hHpJ9to/WTnpA5qhUrzFYbaNjnrjQKnPZc1YRoHQG/mDc9NTAb8XE+XF3QFLad3u uAmVEZKGuoCg7MzfCcB4YCuM9VjeeOZZbO7pgJl1zOyZm3XPj6aaxlilvODAPHRr 57waPXU+8jJ38wSJOpxG/jZK4n6SleAwVQCIBnNPWat22E4r+AXBvugaynGlO26m hJ92gRA= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org