$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa File: 46654408C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: YDV59vkDGMUjv69JwCXS0TevAXxNgXIE57WFOFZhJBo= Subject key identifier: B3:2F:22:42:BF:42:3D:56:4B:F6:38:C8:B0:D5:EF:9D:2B:D2:93:5A Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 02C4 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa Signing time: Fri 25 Oct 2024 01:45:13 +0000 ROA not before: Fri 25 Oct 2024 01:45:13 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132742 IP address blocks: 43.248.64.0/22 maxlen: 24 103.39.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Oct 25 01:45:13 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671af828-eea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:49:25:a4:04:02:58:89:8d:95:57:1a:e3:f9: c6:0b:24:34:db:0c:cd:87:25:fa:c5:3e:ae:53:96: c5:e0:f4:61:d2:71:be:ca:5d:7d:57:0c:0b:46:12: 30:52:03:70:c1:22:ac:99:74:3f:01:a1:54:67:4f: d7:4c:f0:4b:33:6b:83:67:54:f2:6f:ae:19:82:06: 03:de:40:d9:c0:53:f3:d5:19:b5:26:44:b9:d7:2b: 68:ef:da:96:79:11:f8:dc:b5:60:5d:ae:9c:f1:14: d8:b1:47:c6:db:38:9f:04:d1:07:d6:f6:2c:8c:31: 4e:92:45:5c:ff:c2:72:16:8d:22:e0:e7:fa:b7:33: 1a:e1:9b:7b:4a:e6:37:5b:fd:67:fb:c1:1a:51:7a: 74:cd:5e:c6:2d:65:05:16:a8:f3:f3:35:6c:60:84: ae:80:cb:9b:32:18:6f:ac:47:ef:bf:09:df:2c:8a: a8:b7:b4:04:ec:7c:5d:22:cd:df:bd:9f:bb:fb:59: 14:70:6e:1e:6c:32:91:2c:d0:28:c6:a3:2a:2f:a3: 21:35:23:01:36:6f:59:e0:3b:a7:93:ff:dd:46:ef: d7:45:48:bf:07:21:16:82:de:5e:68:1f:f2:7c:36: 6e:5d:e7:42:40:f1:88:dc:8e:2d:ee:24:98:50:7a: aa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2F:22:42:BF:42:3D:56:4B:F6:38:C8:B0:D5:EF:9D:2B:D2:93:5A X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/46654408C6CB11ECB185E43EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.64.0/22 103.39.152.0/22 Signature Algorithm: sha256WithRSAEncryption 98:e5:8c:86:22:87:3f:0f:bf:9e:00:96:20:ce:8f:ee:ce:2b: b1:2c:1a:e3:85:9d:4a:e6:2a:67:3f:91:58:75:5a:b5:9f:9a: d8:fb:f5:ec:06:14:7d:a1:fa:4c:6e:dc:b2:ae:13:2c:b8:02: da:03:92:21:73:5b:6f:08:27:85:d7:7d:ac:66:e6:e6:f0:97: aa:f1:e7:fe:82:f5:ff:14:61:e4:1f:01:31:48:72:5d:7e:c2: 0e:b6:2d:33:49:ca:65:f6:75:b4:fd:d2:7e:eb:07:97:1b:85: a5:48:ca:ea:69:af:51:a8:9c:8e:b2:c4:13:59:0f:a1:9c:1c: 82:0b:4f:90:e5:68:58:57:d7:e6:4e:4e:24:15:a2:e0:a7:3c: 97:08:d8:77:67:2b:57:5c:31:80:6f:95:1d:69:94:4e:2f:7b: fc:11:64:3d:44:25:50:9f:5f:20:b2:df:1e:3a:00:a5:64:12: 6f:9b:7e:cb:c5:a5:37:5c:7e:90:10:ee:c4:e9:58:64:ad:b7: 4c:f5:7c:70:0c:04:3f:bf:2c:32:a8:28:cf:fe:22:23:27:f0: 53:ed:c0:36:5d:da:7c:13:9b:bc:78:80:04:3e:24:16:3a:13: cb:74:e3:37:01:f5:da:e7:b9:e0:b8:c6:d1:b7:1e:e4:e1:b2: fd:82:0b:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjQxMDI1MDE0NTEzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZjgyOC1lZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30klpAQCWImNlVca4/nGCyQ02wzNhyX6xT6uU5bF4PRh0nG+yl19VwwLRhIw UgNwwSKsmXQ/AaFUZ0/XTPBLM2uDZ1Tyb64ZggYD3kDZwFPz1Rm1JkS51yto79qW eRH43LVgXa6c8RTYsUfG2zifBNEH1vYsjDFOkkVc/8JyFo0i4Of6tzMa4Zt7SuY3 W/1n+8EaUXp0zV7GLWUFFqjz8zVsYISugMubMhhvrEfvvwnfLIqot7QE7HxdIs3f vZ+7+1kUcG4ebDKRLNAoxqMqL6MhNSMBNm9Z4Dunk//dRu/XRUi/ByEWgt5eaB/y fDZuXedCQPGI3I4t7iSYUHqqRwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLMvIkK/ Qj1WS/Y4yLDV750r0pNaMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QwMEMvQ0FBODg2MUVDNjAxMTFFQzk1RkYxRTExQzRGOUFFMDIvNDY2NTQ0MDhD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+EADBAJnJ5gwDQYJKoZIhvcNAQELBQADggEBAJjljIYi hz8Pv54AliDOj+7OK7EsGuOFnUrmKmc/kVh1WrWfmtj79ewGFH2h+kxu3LKuEyy4 AtoDkiFzW28IJ4XXfaxm5ubwl6rx5/6C9f8UYeQfATFIcl1+wg62LTNJymX2dbT9 0n7rB5cbhaVIyuppr1GonI6yxBNZD6GcHIILT5DlaFhX1+ZOTiQVouCnPJcI2Hdn K1dcMYBvlR1plE4ve/wRZD1EJVCfXyCy3x46AKVkEm+bfsvFpTdcfpAQ7sTpWGSt t0z1fHAMBD+/LDKoKM/+IiMn8FPtwDZd2nwTm7x4gAQ+JBY6E8t04zcB9drnueC4 xtG3HuThsv2CC7I= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:51 2024 by rpki-client on console-ams.rpki-client.org