$ rpki-client -vvf rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa File: 046B33A4431C11EE8DDA391AC4F9AE02.roa (raw, json) Hash identifier: n8VX91JedlAvIqLFu7Bl3QhQfuPAxDc2ekOd4lvr+ec= Subject key identifier: 8C:73:41:1D:9A:C3:4B:24:DE:DE:1A:13:39:25:39:D9:0B:BA:B5:D0 Certificate issuer: /CN=A918A996/serialNumber=8386BE861BDBDB6D0165087DC044A07FA4D4F089 Certificate serial: 014D Authority key identifier: 83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa Signing time: Wed 05 Feb 2025 03:16:32 +0000 ROA not before: Wed 05 Feb 2025 03:16:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 10118 IP address blocks: 117.103.144.0/20 maxlen: 20 117.103.144.0/20 maxlen: 24 117.103.152.0/23 maxlen: 23 117.103.156.0/24 maxlen: 24 117.103.157.0/24 maxlen: 24 117.103.158.0/24 maxlen: 24 117.103.159.0/24 maxlen: 24 124.217.128.0/18 maxlen: 24 180.188.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.crl rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A996, serialNumber=8386BE861BDBDB6D0165087DC044A07FA4D4F089 Validity Not Before: Feb 5 03:16:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2d810-ed15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:e2:d2:a8:09:65:e9:b7:c4:0a:f8:96:6e: 00:d2:89:96:37:fb:82:f7:b4:b2:67:64:e6:8d:56: a2:ec:11:84:6d:ff:f9:63:04:8b:26:c8:dd:3e:29: b3:24:2f:c9:18:92:53:55:97:fa:0f:e9:19:31:47: e9:f6:8e:b9:1a:99:9b:20:50:da:b6:01:0a:cd:ae: 46:91:a4:c3:08:88:30:cc:0f:60:c8:d3:83:53:c0: 1c:27:68:f1:b5:04:6d:4a:f3:24:f0:bd:cf:49:10: 5c:ed:52:6c:6b:d3:1d:3d:cd:03:73:65:7c:26:01: 35:d6:42:f0:7a:d0:dd:64:1f:95:09:f5:b6:94:67: c1:4e:cc:0a:56:49:d1:84:18:b7:50:73:88:82:4e: 8f:d6:c2:ac:b9:7d:64:ee:44:63:ca:49:ba:f4:35: bb:e3:d8:c0:cd:c7:f7:53:fd:ae:bc:66:b5:aa:8c: 46:43:f3:05:8e:a3:92:1c:08:46:92:3a:d9:70:67: 3a:e8:96:f2:8d:95:a5:9e:16:b5:c7:39:80:52:d9: 96:b0:dd:47:4b:ee:d7:2b:81:f4:95:8a:8b:ad:50: 56:d5:c5:40:2a:44:6d:b8:2b:ac:0c:2b:b5:2a:80: 51:0b:94:26:3c:a4:c9:9f:70:c8:f7:e7:d3:3f:0c: e0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:73:41:1D:9A:C3:4B:24:DE:DE:1A:13:39:25:39:D9:0B:BA:B5:D0 X509v3 Authority Key Identifier: keyid:83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.103.144.0/20 124.217.128.0/18 180.188.128.0/18 Signature Algorithm: sha256WithRSAEncryption 68:35:c1:38:ca:d5:41:40:ee:f0:c6:58:05:42:3f:ae:07:fc: 00:4d:bf:93:c7:df:9a:3a:3c:2e:e7:c1:09:18:d0:e6:c2:c4: 81:c6:5e:18:e9:13:dc:f0:92:2a:6c:bf:5b:b9:b9:19:33:7e: 99:dc:b9:e2:ae:a8:ee:bf:9a:a8:7e:f0:b1:4c:5d:8c:6b:16: 24:8f:7b:eb:69:c2:43:26:9c:f2:f7:f6:0e:e2:47:57:83:cc: b5:a5:75:4e:66:ad:39:72:3d:ea:8d:3e:c2:70:1c:e9:5d:1d: bc:07:48:31:61:00:b7:16:18:70:ee:93:03:5e:59:a0:bc:87: 73:25:07:04:b4:75:63:18:5d:e4:96:55:0c:31:5d:07:95:3d: 3b:5c:b7:ee:18:5c:a2:d7:65:b3:c1:ea:54:50:11:44:cd:b7: c4:ef:f6:40:4d:56:eb:89:be:e9:80:05:3c:e6:14:17:8d:75: 1c:65:92:3a:09:b4:46:e8:eb:ed:77:40:ae:a5:74:18:7d:6b: d4:66:42:2e:a1:6f:11:33:b3:ef:71:1d:bc:1f:59:85:d5:97: a8:68:b1:0a:06:d3:25:ab:a5:03:f6:7a:11:fe:38:21:a9:71: 84:6f:35:58:fe:92:48:db:b2:fd:40:57:bd:f2:91:65:55:e5: 90:47:23:59 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5OTYxMTAvBgNVBAUTKDgzODZCRTg2MUJEQkRCNkQwMTY1MDg3REMwNDRBMDdG QTRENEYwODkwHhcNMjUwMjA1MDMxNjMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyZDgxMC1lZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Lvi0qgJZem3xAr4lm4A0omWN/uC97SyZ2TmjVai7BGEbf/5YwSLJsjdPimz JC/JGJJTVZf6D+kZMUfp9o65GpmbIFDatgEKza5GkaTDCIgwzA9gyNODU8AcJ2jx tQRtSvMk8L3PSRBc7VJsa9MdPc0Dc2V8JgE11kLwetDdZB+VCfW2lGfBTswKVknR hBi3UHOIgk6P1sKsuX1k7kRjykm69DW749jAzcf3U/2uvGa1qoxGQ/MFjqOSHAhG kjrZcGc66JbyjZWlnha1xzmAUtmWsN1HS+7XK4H0lYqLrVBW1cVAKkRtuCusDCu1 KoBRC5QmPKTJn3DI9+fTPwzgbwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIxzQR2a w0sk3t4aEzklOdkLurXQMB8GA1UdIwQYMBaAFIOGvoYb29ttAWUIfcBEoH+k1PCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk5Ni8zMkM2OEE1RTI3 OTgxMUVFQkQ4REM1NUZDNEY5QUUwMi9nNGEtaGh2YjIyMEJaUWg5d0VTZ2Y2VFU4 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0YS1oaHZiMjIwQlpRaDl3RVNnZjZUVThJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5OTYvMzJDNjhBNUUyNzk4MTFFRUJEOERDNTVGQzRGOUFFMDIvMDQ2QjMzQTQ0 MzFDMTFFRThEREEzOTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAR1Z5ADBAZ82YADBAa0vIAwDQYJKoZIhvcNAQELBQADggEB AGg1wTjK1UFA7vDGWAVCP64H/ABNv5PH35o6PC7nwQkY0ObCxIHGXhjpE9zwkips v1u5uRkzfpncueKuqO6/mqh+8LFMXYxrFiSPe+tpwkMmnPL39g7iR1eDzLWldU5m rTlyPeqNPsJwHOldHbwHSDFhALcWGHDukwNeWaC8h3MlBwS0dWMYXeSWVQwxXQeV PTtct+4YXKLXZbPB6lRQEUTNt8Tv9kBNVuuJvumABTzmFBeNdRxlkjoJtEbo6+13 QK6ldBh9a9RmQi6hbxEzs+9xHbwfWYXVl6hosQoG0yWrpQP2ehH+OCGpcYRvNVj+ kkjbsv1AV73ykWVV5ZBHI1k= -----END CERTIFICATE-----Generated at Sat Apr 26 08:11:23 2025 by rpki-client