$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa File: 46A2104603CF11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: X8TS/dUIvy3XOI0UnJtA1d7RV1bb4SxZ7U2o6VOp3BA= Subject key identifier: BC:03:A8:51:50:62:48:A9:51:ED:CE:7A:35:19:F2:BC:69:AE:4F:7A Certificate issuer: /CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Certificate serial: 0498 Authority key identifier: 9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa Signing time: Sat 07 Sep 2024 01:13:47 +0000 ROA not before: Sat 07 Sep 2024 01:13:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 146956 IP address blocks: 103.172.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Validity Not Before: Sep 7 01:13:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66dba8cb-b996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:aa:b9:77:77:11:50:0f:f6:3c:76:33:16: b8:71:5c:99:d9:86:82:1b:3a:9a:fd:ca:4e:b1:68: 9d:28:6a:e1:cb:e0:48:69:a1:62:2d:c0:d2:56:72: a9:25:7f:2f:ab:56:79:78:2b:80:b9:57:bc:21:ff: 77:da:85:a6:92:d5:73:9c:4a:fb:67:e9:c2:2e:f4: 86:68:79:69:6c:c4:3e:fb:57:d8:c7:a7:c1:90:d3: 82:ca:5c:a8:e4:c1:49:b6:53:7d:86:6d:44:04:a7: 87:fb:15:4c:df:47:bf:d1:99:47:a0:c8:cb:47:9a: 35:34:35:ce:5e:21:cd:38:fa:ab:99:c2:0c:b4:aa: d3:2d:52:fa:08:01:e5:30:8c:39:5d:6a:6d:03:91: 80:67:db:69:02:b9:34:26:cd:66:11:a7:3f:42:4b: f4:a8:69:93:7d:e7:41:10:51:7c:43:50:30:41:f5: 63:73:83:8b:79:6f:51:71:ec:7b:5a:4e:2a:84:5b: 5f:de:09:09:db:86:ac:7d:f3:84:25:48:3f:bd:64: 0b:3e:0d:5e:dc:f5:42:7e:fc:51:8a:43:d7:6f:5b: 6d:2a:f8:22:6d:d8:04:f8:35:7b:4b:79:a5:48:cf: 67:2d:95:90:5c:37:f2:eb:ff:2f:a0:4b:29:ab:69: f3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:03:A8:51:50:62:48:A9:51:ED:CE:7A:35:19:F2:BC:69:AE:4F:7A X509v3 Authority Key Identifier: keyid:9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/46A2104603CF11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.28.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:c2:bc:d2:24:b8:60:66:0d:9d:f5:2f:e0:de:9d:4d:44:e1: 3c:27:bf:1b:6c:78:73:bc:f9:8d:76:7b:32:a6:97:f3:7d:9b: dd:a1:a8:fb:c9:1d:b8:4a:cd:29:e8:40:ea:84:02:c1:7b:d8: d4:6c:fa:9a:5e:40:20:cb:d7:e4:f9:95:16:9a:fc:96:c4:e2: e5:13:a3:3b:0a:30:d6:0e:28:f2:fb:9d:83:39:f6:c2:4e:a6: e0:af:a2:06:80:21:45:4e:5f:af:18:66:93:32:a3:8c:9e:18: d6:e3:ba:b1:40:94:8b:15:53:51:5d:0e:be:ee:d4:78:73:b3: 6e:37:72:7d:de:2f:dd:be:02:14:66:52:57:38:23:19:1b:8c: 26:f9:6b:38:3c:ba:0e:db:a8:05:fe:34:64:1d:94:48:a1:28: f6:5e:26:9d:b4:e2:ae:26:78:eb:37:00:0a:91:3b:62:a9:e1: 73:fc:a7:1f:8a:fb:3d:87:76:c6:c1:1e:18:ec:fc:de:45:81: 50:dc:91:35:5a:96:8b:70:ea:3d:fb:a2:52:42:0a:a6:24:c3: f7:9d:0b:c4:d7:a7:83:7d:e0:57:45:c2:42:1d:d9:f8:5c:fc: 3d:60:2e:92:7a:45:b1:a7:a7:19:1a:c9:fa:38:4d:33:02:77: e6:af:d4:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4NUExMTAvBgNVBAUTKDlEOUMwMDhBMTJBMkY3QTYwRkVGRjk2MjI2NkIwNTAy QTFDQTBCQTIwHhcNMjQwOTA3MDExMzQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiYThjYi1iOTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7uquXd3EVAP9jx2Mxa4cVyZ2YaCGzqa/cpOsWidKGrhy+BIaaFiLcDSVnKp JX8vq1Z5eCuAuVe8If932oWmktVznEr7Z+nCLvSGaHlpbMQ++1fYx6fBkNOCylyo 5MFJtlN9hm1EBKeH+xVM30e/0ZlHoMjLR5o1NDXOXiHNOPqrmcIMtKrTLVL6CAHl MIw5XWptA5GAZ9tpArk0Js1mEac/Qkv0qGmTfedBEFF8Q1AwQfVjc4OLeW9Rcex7 Wk4qhFtf3gkJ24asffOEJUg/vWQLPg1e3PVCfvxRikPXb1ttKvgibdgE+DV7S3ml SM9nLZWQXDfy6/8voEspq2nzEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLwDqFFQ YkipUe3OejUZ8rxprk96MB8GA1UdIwQYMBaAFJ2cAIoSovemD+/5YiZrBQKhygui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjg1QS8xODVDMzlCNjAz Q0QxMUVDQUJDRTY5N0JDNEY5QUUwMi9uWndBaWhLaTk2WVA3X2xpSm1zRkFxSEtD NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25ad0FpaEtpOTZZUDdfbGlKbXNGQXFIS0M2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4NUEvMTg1QzM5QjYwM0NEMTFFQ0FCQ0U2OTdCQzRGOUFFMDIvNDZBMjEwNDYw M0NGMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrBwwDQYJKoZIhvcNAQELBQADggEBACrCvNIkuGBmDZ31 L+DenU1E4TwnvxtseHO8+Y12ezKml/N9m92hqPvJHbhKzSnoQOqEAsF72NRs+ppe QCDL1+T5lRaa/JbE4uUTozsKMNYOKPL7nYM59sJOpuCvogaAIUVOX68YZpMyo4ye GNbjurFAlIsVU1FdDr7u1Hhzs243cn3eL92+AhRmUlc4IxkbjCb5azg8ug7bqAX+ NGQdlEihKPZeJp204q4meOs3AAqRO2Kp4XP8px+K+z2HdsbBHhjs/N5FgVDckTVa lotw6j37olJCCqYkw/edC8TXp4N94FdFwkId2fhc/D1gLpJ6RbGnpxkayfo4TTMC d+av1I8= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org