$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/46C1646C781611ECADCDAB0EC4F9AE02.roa File: 46C1646C781611ECADCDAB0EC4F9AE02.roa (raw, json) Hash identifier: iQ/vrHsjX2+tHZEpTj8rOF7TVYl+rxcjNmL10uTq7dk= Subject key identifier: 52:C6:43:C2:BE:EB:B9:ED:3B:F5:96:02:48:6E:DC:E8:A0:9D:DA:D8 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 0304 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/46C1646C781611ECADCDAB0EC4F9AE02.roa Signing time: Thu 01 Feb 2024 02:54:40 +0000 ROA not before: Thu 01 Feb 2024 02:54:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149310 IP address blocks: 103.178.118.0/23 maxlen: 23 103.178.118.0/24 maxlen: 24 103.178.119.0/24 maxlen: 24 2400:4660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 772 (0x304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Feb 1 02:54:40 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bb07f0-6c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8c:8b:bd:7f:f7:d1:c4:0d:28:78:25:61:50: 15:dd:5e:2c:a1:21:a3:85:c6:e7:48:74:43:65:28: ad:f8:c3:eb:8f:c2:67:1f:b6:c8:d2:5d:8a:ee:ff: 76:5f:ed:1c:7e:63:26:46:42:1c:e5:aa:bf:e5:d7: 6a:48:0a:dc:55:1a:f9:79:b5:02:b3:f7:29:06:e4: 38:5b:15:09:e7:78:10:5d:e1:91:66:d7:c8:7e:a2: f7:98:25:f4:43:ba:9e:7e:eb:fb:2d:77:1c:e7:ab: 36:b3:5d:fe:9a:47:64:dd:8a:ea:f3:5b:75:0e:4c: 1f:1d:aa:bf:97:72:0a:09:4d:65:73:24:70:af:1c: 51:5f:b9:45:2e:0d:e5:03:1f:d2:6b:e1:d8:87:76: 7b:1a:8d:5e:71:8f:92:9f:ae:55:58:ee:26:dc:35: 59:ba:38:d3:5e:83:bf:7e:9a:3d:2f:4a:f4:e3:cb: b7:46:cc:1d:e4:de:25:a5:cb:80:b3:6e:1e:c3:c3: 5f:78:0c:28:b5:a4:2d:f2:43:62:f3:3c:0c:15:bc: 56:2d:dd:7a:93:3e:0a:7f:f4:9b:f5:3c:f3:e5:27: 31:cd:0f:3c:02:65:8c:4f:e3:e2:17:52:8e:90:c3: f5:cb:34:94:70:3e:87:d8:22:19:04:a8:f5:37:18: b5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C6:43:C2:BE:EB:B9:ED:3B:F5:96:02:48:6E:DC:E8:A0:9D:DA:D8 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/46C1646C781611ECADCDAB0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.118.0/23 IPv6: 2400:4660::/32 Signature Algorithm: sha256WithRSAEncryption 6c:a7:41:55:ba:0f:7e:3f:0a:79:41:4c:a2:6d:8a:70:31:3e: a9:06:8a:29:3a:06:75:8a:52:ac:4f:37:2a:f0:0b:9d:00:1e: e8:cf:1a:c4:ae:ed:d3:95:1e:5a:97:c8:2b:96:cb:c2:58:e7: 91:00:38:62:da:1e:0d:cd:eb:50:b6:04:fe:9b:6b:72:c8:fb: 0f:61:46:93:6a:7a:50:73:e5:91:25:3e:a7:6a:72:8b:75:a6: 5b:6e:c5:54:ba:ae:a2:d7:17:23:de:b2:93:54:75:dc:4f:64: 23:16:13:6f:6e:52:fe:1a:58:72:7a:34:9d:22:76:c1:72:99: 8d:b8:a0:49:6e:9f:94:f8:f1:c8:86:b2:bd:72:d7:37:7b:bc: 57:6b:12:76:0e:9f:65:88:0f:5d:23:fc:54:68:f6:ab:dd:36: 4e:97:43:58:26:79:a6:86:0d:30:68:74:0a:aa:db:33:7e:8f: c3:be:b3:a5:47:93:27:2c:79:87:52:a6:15:b6:d7:86:7c:1a: c7:c7:08:d6:23:7b:c1:09:70:88:92:5b:d7:02:db:01:7f:54: 7e:5e:09:e5:46:0a:f9:6a:b4:b8:e1:e2:d2:59:1e:a9:0e:ed: aa:eb:d3:82:0d:c3:fe:d9:98:d8:71:d1:bb:a8:a4:42:82:f1: a3:3b:ab:73 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjQwMjAxMDI1NDQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMDdmMC02YzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYyLvX/30cQNKHglYVAV3V4soSGjhcbnSHRDZSit+MPrj8JnH7bI0l2K7v92 X+0cfmMmRkIc5aq/5ddqSArcVRr5ebUCs/cpBuQ4WxUJ53gQXeGRZtfIfqL3mCX0 Q7qefuv7LXcc56s2s13+mkdk3Yrq81t1DkwfHaq/l3IKCU1lcyRwrxxRX7lFLg3l Ax/Sa+HYh3Z7Go1ecY+Sn65VWO4m3DVZujjTXoO/fpo9L0r048u3Rswd5N4lpcuA s24ew8NfeAwotaQt8kNi8zwMFbxWLd16kz4Kf/Sb9Tzz5ScxzQ88AmWMT+PiF1KO kMP1yzSUcD6H2CIZBKj1Nxi1SwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFLGQ8K+ 67ntO/WWAkhu3OigndrYMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg0MDAvRjY4MUJCQTQ3ODExMTFFQ0EzOTdEMDM0QzRGOUFFMDIvNDZDMTY0NkM3 ODE2MTFFQ0FEQ0RBQjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsnYwDQQCAAIwBwMFACQARmAwDQYJKoZIhvcNAQELBQAD ggEBAGynQVW6D34/CnlBTKJtinAxPqkGiik6BnWKUqxPNyrwC50AHujPGsSu7dOV HlqXyCuWy8JY55EAOGLaHg3N61C2BP6ba3LI+w9hRpNqelBz5ZElPqdqcot1pltu xVS6rqLXFyPespNUddxPZCMWE29uUv4aWHJ6NJ0idsFymY24oElun5T48ciGsr1y 1zd7vFdrEnYOn2WID10j/FRo9qvdNk6XQ1gmeaaGDTBodAqq2zN+j8O+s6VHkycs eYdSphW214Z8GsfHCNYje8EJcIiSW9cC2wF/VH5eCeVGCvlqtLjh4tJZHqkO7arr 04INw/7ZmNhx0buopEKC8aM7q3M= -----END CERTIFICATE-----Generated at Tue May 7 03:53:40 2024 by rpki-client on console-fra.rpki-client.org