$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa File: 46A2104603CF11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: uEUCdVpssQbDsyH148j9fHL3eQ9b5lWk+qpOvr2o/UY= Subject key identifier: 04:1D:17:95:AC:F4:DF:7F:CF:52:D5:8F:99:D5:F4:ED:7A:0B:DE:78 Certificate issuer: /CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Certificate serial: 03D2 Authority key identifier: 9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa Signing time: Fri 25 Aug 2023 01:02:07 +0000 ROA not before: Fri 25 Aug 2023 01:02:07 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 146956 IP address blocks: 103.172.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Validity Not Before: Aug 25 01:02:07 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e7fd8f-a816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:32:99:c8:e7:36:e6:32:3c:df:d9:81:01:c8: 10:43:f2:9c:d0:b5:84:b2:63:36:ae:08:14:e5:6a: 9c:08:07:82:6b:35:48:c6:f5:bd:a7:59:95:f7:8f: 15:f8:6a:cc:df:1f:fd:e7:25:1a:7d:7c:f6:03:1e: 1c:60:b8:6a:b2:da:71:e3:0f:bb:cf:ef:e2:4d:c0: 37:07:2f:53:05:be:c8:4d:46:8f:b1:ec:1e:11:06: 6d:1c:46:83:d3:c8:16:fc:dc:0b:75:6f:3d:2f:4b: 8d:8e:d7:e5:0c:41:56:07:25:68:5d:04:61:a9:f6: bd:0c:c0:3a:8c:81:ef:ca:a1:33:f3:f1:62:8a:a9: 06:6d:3b:c2:8b:d6:58:dd:c1:da:49:16:a8:f5:4d: e3:e1:f4:42:11:fa:ce:fd:51:f5:33:35:53:8e:33: 69:10:23:2a:fc:d5:02:e4:84:57:74:bb:91:e3:c5: 1a:28:72:d3:46:97:19:a4:df:6d:e8:b2:52:b8:2f: f9:dd:4a:ff:93:5b:fb:a7:30:59:b1:f9:b5:98:3c: 69:c2:ad:90:29:22:f9:91:f5:0d:77:c8:da:03:a0: ee:1d:4c:1e:d3:a3:0c:7f:c3:d6:81:34:67:9f:28: 33:3d:90:31:81:42:57:57:3e:10:68:bb:75:25:20: ae:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1D:17:95:AC:F4:DF:7F:CF:52:D5:8F:99:D5:F4:ED:7A:0B:DE:78 X509v3 Authority Key Identifier: keyid:9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.28.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:71:73:b9:21:f2:0f:ba:8c:5f:1d:f8:06:65:ec:da:e7:6d: 92:02:cc:0d:9f:a7:17:7d:25:03:2a:b1:eb:a9:ce:09:48:a2: e3:e7:ce:3a:c3:9b:6b:92:4d:3d:d8:5f:e4:9c:b9:48:fc:81: 43:56:ed:29:36:ce:e0:63:01:f7:69:17:55:28:a9:35:98:48: ce:b7:5f:5d:2e:b2:51:b7:03:e3:5f:d7:ff:58:19:ca:62:17: cc:42:ec:f4:9b:f6:c2:94:5a:9c:73:20:62:08:e7:07:44:b1: 69:a8:ab:6f:ae:42:c6:cb:d1:2c:17:0d:44:66:6c:67:76:67: e0:e7:df:8b:cf:b2:20:44:92:f4:e9:5d:a1:46:28:22:14:48: 50:c1:e9:9a:b9:ed:1d:b9:f6:f0:d0:06:7e:f9:6f:f9:d8:9e: ea:08:5a:ab:d4:9b:e9:81:19:b0:05:45:e5:0a:fe:66:98:79: 57:26:ca:65:74:3c:82:c8:ad:30:6d:2a:95:b8:83:7d:c4:2e: ab:e8:00:a7:88:8d:c8:90:1f:3f:99:eb:28:72:9c:ec:26:a6: dc:1c:86:9e:44:47:9f:9e:24:3a:5d:64:eb:54:a1:7e:ef:34: 92:33:dd:59:51:27:21:1b:1b:8b:11:36:99:c9:e5:d3:3b:cf: 79:51:79:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4NUExMTAvBgNVBAUTKDlEOUMwMDhBMTJBMkY3QTYwRkVGRjk2MjI2NkIwNTAy QTFDQTBCQTIwHhcNMjMwODI1MDEwMjA3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3ZmQ4Zi1hODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TKZyOc25jI839mBAcgQQ/Kc0LWEsmM2rggU5WqcCAeCazVIxvW9p1mV948V +GrM3x/95yUafXz2Ax4cYLhqstpx4w+7z+/iTcA3By9TBb7ITUaPseweEQZtHEaD 08gW/NwLdW89L0uNjtflDEFWByVoXQRhqfa9DMA6jIHvyqEz8/FiiqkGbTvCi9ZY 3cHaSRao9U3j4fRCEfrO/VH1MzVTjjNpECMq/NUC5IRXdLuR48UaKHLTRpcZpN9t 6LJSuC/53Ur/k1v7pzBZsfm1mDxpwq2QKSL5kfUNd8jaA6DuHUwe06MMf8PWgTRn nygzPZAxgUJXVz4QaLt1JSCuJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAQdF5Ws 9N9/z1LVj5nV9O16C954MB8GA1UdIwQYMBaAFJ2cAIoSovemD+/5YiZrBQKhygui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjg1QS8xODVDMzlCNjAz Q0QxMUVDQUJDRTY5N0JDNEY5QUUwMi9uWndBaWhLaTk2WVA3X2xpSm1zRkFxSEtD NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25ad0FpaEtpOTZZUDdfbGlKbXNGQXFIS0M2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4NUEvMTg1QzM5QjYwM0NEMTFFQ0FCQ0U2OTdCQzRGOUFFMDIvNDZBMjEwNDYw M0NGMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrBwwDQYJKoZIhvcNAQELBQADggEBAEpxc7kh8g+6jF8d +AZl7NrnbZICzA2fpxd9JQMqseupzglIouPnzjrDm2uSTT3YX+ScuUj8gUNW7Sk2 zuBjAfdpF1UoqTWYSM63X10uslG3A+Nf1/9YGcpiF8xC7PSb9sKUWpxzIGII5wdE sWmoq2+uQsbL0SwXDURmbGd2Z+Dn34vPsiBEkvTpXaFGKCIUSFDB6Zq57R259vDQ Bn75b/nYnuoIWqvUm+mBGbAFReUK/maYeVcmymV0PILIrTBtKpW4g33ELqvoAKeI jciQHz+Z6yhynOwmptwchp5ER5+eJDpdZOtUoX7vNJIz3VlRJyEbG4sRNpnJ5dM7 z3lRecw= -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org