$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa File: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (raw, json) Hash identifier: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA= Subject key identifier: 23:B8:03:5D:C7:2B:AA:F5:A2:A2:32:8E:59:DE:3E:1B:84:75:A5:E1 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 0175 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa Signing time: Wed 09 Oct 2024 02:46:13 +0000 ROA not before: Wed 09 Oct 2024 02:46:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136957 IP address blocks: 103.100.46.0/23 maxlen: 23 103.100.46.0/24 maxlen: 24 103.100.47.0/24 maxlen: 24 2001:df3:2b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Oct 9 02:46:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6705ee75-89e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:94:ed:93:77:09:89:4a:51:33:a2:22:9d:46: 48:83:54:91:e4:d7:71:a1:e6:6c:84:30:72:bf:32: 67:59:75:24:93:b0:0b:a6:bb:b6:07:fa:d1:a9:55: 35:8b:0e:45:4d:7f:4b:f1:a9:67:2d:90:72:bc:2a: b9:90:c0:df:fc:a4:30:7e:22:e6:fe:d4:ed:17:8f: 34:02:01:95:55:ed:3a:9b:33:85:53:df:3b:65:18: 8a:32:d8:11:60:57:d4:e4:b2:8d:62:a3:ae:38:35: 5a:13:be:a1:5d:67:fa:e7:4b:b8:f5:33:4c:43:a6: 92:2e:b9:4d:16:c1:9a:a2:a2:ea:05:0d:05:00:1f: 64:fa:6d:f3:cf:8f:90:93:f9:81:9a:80:e9:3a:b6: 7d:d2:6b:5d:6a:1c:f3:69:7e:ad:de:3e:c5:ef:f8: 7a:4f:84:47:cc:67:df:bc:52:a6:34:f0:fe:4b:95: 43:f8:54:b6:11:cf:6c:1c:4d:bd:58:1e:86:6b:d0: a0:a8:53:bb:e7:6f:b5:77:f3:b0:41:a3:5c:23:09: f3:ea:d9:ea:fe:38:fc:95:c9:f6:2e:41:33:b7:1f: 3d:33:b0:3c:69:bb:e1:88:d2:29:f1:89:82:98:f6: f4:48:1b:2e:16:c8:01:e8:99:a9:5b:cd:ec:d1:2e: ec:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B8:03:5D:C7:2B:AA:F5:A2:A2:32:8E:59:DE:3E:1B:84:75:A5:E1 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.46.0/23 IPv6: 2001:df3:2b00::/48 Signature Algorithm: sha256WithRSAEncryption 98:f3:85:dd:3a:d6:bd:5d:63:c2:a0:f9:64:b9:23:25:a3:ce: 6e:6a:55:85:52:85:18:2b:52:cb:1d:4f:dc:eb:70:a2:14:1f: 8a:13:8c:1e:59:13:35:07:bc:be:dc:af:06:df:69:29:e5:fa: 58:16:df:ee:df:6d:15:40:97:05:44:a5:d8:97:90:47:c9:47: 38:79:83:72:61:71:bf:18:6e:9a:29:aa:b0:2f:5d:85:e8:3d: a6:56:29:95:80:d2:c3:01:98:2a:81:66:e9:b5:84:50:91:a5: ca:c5:37:70:44:f0:ec:f2:57:de:65:88:35:16:fa:34:fa:a3: a6:a5:86:ed:42:62:3f:fa:a1:1f:cc:79:b6:1c:a3:b1:06:43: f4:2d:ac:aa:da:55:fe:ae:f3:60:e4:e4:6d:e7:0f:42:70:4f: 80:dc:3e:ee:fb:aa:cb:f4:a0:0f:aa:cc:a7:cf:f8:bb:51:95: 88:38:be:c1:41:9e:4d:f5:b7:41:e6:c2:21:a3:97:db:65:48: 5a:e8:d9:71:90:e9:86:18:24:b7:ea:f6:d7:47:a9:94:3c:a7: 4b:01:43:80:f1:38:98:17:ce:0e:e8:cd:29:93:ee:89:54:21: 07:e9:a0:f9:85:30:d3:e2:f6:30:68:d2:a4:86:6c:70:c8:c7: 02:ea:c4:65 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjQxMDA5MDI0NjEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1ZWU3NS04OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55Ttk3cJiUpRM6IinUZIg1SR5NdxoeZshDByvzJnWXUkk7ALpru2B/rRqVU1 iw5FTX9L8alnLZByvCq5kMDf/KQwfiLm/tTtF480AgGVVe06mzOFU987ZRiKMtgR YFfU5LKNYqOuODVaE76hXWf650u49TNMQ6aSLrlNFsGaoqLqBQ0FAB9k+m3zz4+Q k/mBmoDpOrZ90mtdahzzaX6t3j7F7/h6T4RHzGffvFKmNPD+S5VD+FS2Ec9sHE29 WB6Ga9CgqFO752+1d/OwQaNcIwnz6tnq/jj8lcn2LkEztx89M7A8abvhiNIp8YmC mPb0SBsuFsgB6JmpW83s0S7sAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCO4A13H K6r1oqIyjlnePhuEdaXhMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZFNDkvQjMzQUE3QTY1MzgxMTFFRDhBQTk4Rjc3QzRGOUFFMDIvOThGRDhBMEU1 Mzg0MTFFRDhENzgxQzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnZC4wDwQCAAIwCQMHACABDfMrADANBgkqhkiG9w0BAQsF AAOCAQEAmPOF3TrWvV1jwqD5ZLkjJaPObmpVhVKFGCtSyx1P3OtwohQfihOMHlkT NQe8vtyvBt9pKeX6WBbf7t9tFUCXBUSl2JeQR8lHOHmDcmFxvxhumimqsC9dheg9 plYplYDSwwGYKoFm6bWEUJGlysU3cETw7PJX3mWINRb6NPqjpqWG7UJiP/qhH8x5 thyjsQZD9C2sqtpV/q7zYOTkbecPQnBPgNw+7vuqy/SgD6rMp8/4u1GViDi+wUGe TfW3QebCIaOX22VIWujZcZDphhgkt+r210eplDynSwFDgPE4mBfODujNKZPuiVQh B+mg+YUw0+L2MGjSpIZscMjHAurEZQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:51 2024 by rpki-client on console-ams.rpki-client.org