$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa File: B46FE2D0C5CA11EBB86D320BC4F9AE02.roa (raw, json) Hash identifier: kQoNfY9NY1p6Tem92hVpBTIkm9OijRbDFq9a0ttmNzI= Subject key identifier: 60:A6:F2:CC:B1:21:CB:DD:F5:4F:DF:40:D0:B9:6D:13:01:F9:41:F5 Certificate issuer: /CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Certificate serial: 046B Authority key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa Signing time: Tue 15 Aug 2023 00:41:24 +0000 ROA not before: Tue 15 Aug 2023 00:41:24 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132339 IP address blocks: 103.12.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Validity Not Before: Aug 15 00:41:24 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dac9b4-cd73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:66:ae:6f:04:82:50:42:ef:05:ba:3d:d1: 65:65:07:bd:93:b8:62:ec:fd:6c:a2:e2:f1:8c:ea: 91:fa:1c:b0:8f:d7:2e:6d:bb:2c:bb:8a:5a:73:a4: 97:c5:2f:be:cc:2a:f6:54:ed:b6:c9:39:80:da:b5: 12:df:ad:a5:5d:d5:8f:24:52:d5:80:c7:d1:51:43: 9d:78:88:2a:e2:a6:1f:42:29:f0:47:4b:33:15:32: 04:e3:d4:4b:4e:f3:ea:af:28:ae:92:d4:35:80:76: a8:c4:03:ad:0c:1c:a5:ff:d6:b6:bd:cb:4b:ba:90: 9e:fb:b1:b2:78:bd:cf:21:3d:b9:d2:12:37:7a:8c: 6d:56:ab:f9:da:6c:28:9e:54:67:56:f5:43:1b:9f: 7b:b4:61:f1:78:c5:96:9c:b7:53:b9:1f:45:aa:09: d2:b3:e4:f1:ea:9e:95:07:3f:e2:0e:bd:f9:8b:2e: 24:85:f1:6e:40:7f:ae:61:05:77:86:b5:6d:39:38: 2c:16:c6:4e:2d:4f:fa:35:00:68:ae:55:53:be:ee: 7e:c8:5c:55:36:c2:88:cb:49:db:da:d9:3e:70:7f: 59:db:9a:fa:d9:6a:ac:fa:e6:55:37:f8:0b:35:d4: f9:42:78:21:26:9e:c9:bf:3c:da:ae:20:de:f9:f1: 4c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A6:F2:CC:B1:21:CB:DD:F5:4F:DF:40:D0:B9:6D:13:01:F9:41:F5 X509v3 Authority Key Identifier: keyid:3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.247.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b3:47:f3:fc:ab:68:10:5a:12:74:ce:aa:83:9c:9c:56:a2: 63:af:18:d8:8e:3a:23:4d:fd:53:09:2b:d9:63:df:08:fb:3d: 87:63:fb:fd:6f:7c:8c:e6:54:d9:cc:f3:c2:95:2b:2e:80:f2: 11:04:e1:ba:36:02:d8:5d:36:a6:2e:77:b0:2a:23:d9:d8:fb: 82:a4:19:b4:61:da:9a:73:a3:19:ca:da:f1:c0:a4:08:43:9a: ac:b5:55:20:d0:b6:40:fc:bf:de:47:52:46:f0:96:8b:07:f7: cc:f9:60:4f:7e:99:34:fd:c3:b1:a2:99:07:3a:e9:f8:fc:5c: 9c:5a:df:bf:3c:a0:a8:a3:80:41:5e:7c:a3:29:0c:cb:be:27: 6a:2f:f0:07:ed:b5:7c:32:65:95:ac:d9:62:71:1f:b2:35:d4: e9:70:33:27:4a:e9:67:79:c1:5d:78:9e:87:5e:ef:5a:11:d3: c4:2d:1f:07:a1:41:08:5e:72:f9:d1:e5:35:f5:e5:5c:64:d3: b9:c4:0a:fa:41:59:e1:58:d4:8a:85:92:f6:b7:1a:9b:ad:49: ee:ab:ba:90:61:64:84:99:29:51:52:90:91:8c:7e:f7:9c:6d: 91:db:a4:f3:3f:79:30:d1:87:6b:7a:cd:0f:69:22:1e:57:fd: cb:5a:38:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM2ODAxMTAvBgNVBAUTKDNFRTc0MTJBRkU4NzNGMUQ0NUJBQjYxNDcxNEEzMjAx RTM2Mjk2OTEwHhcNMjMwODE1MDA0MTI0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhYzliNC1jZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupBmrm8EglBC7wW6PdFlZQe9k7hi7P1souLxjOqR+hywj9cubbssu4pac6SX xS++zCr2VO22yTmA2rUS362lXdWPJFLVgMfRUUOdeIgq4qYfQinwR0szFTIE49RL TvPqryiuktQ1gHaoxAOtDByl/9a2vctLupCe+7GyeL3PIT250hI3eoxtVqv52mwo nlRnVvVDG597tGHxeMWWnLdTuR9FqgnSs+Tx6p6VBz/iDr35iy4khfFuQH+uYQV3 hrVtOTgsFsZOLU/6NQBorlVTvu5+yFxVNsKIy0nb2tk+cH9Z25r62Wqs+uZVN/gL NdT5QnghJp7JvzzariDe+fFMqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGCm8syx Icvd9U/fQNC5bRMB+UH1MB8GA1UdIwQYMBaAFD7nQSr+hz8dRbq2FHFKMgHjYpaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzY4MC9ENDk5MTg2MkM1 QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4MUZ1cllVY1VveUFlTmls cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1ZEJLdjZIUHgxRnVyWVVjVW95QWVOaWxwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM2ODAvRDQ5OTE4NjJDNUM4MTFFQjg5MEMwRDBCQzRGOUFFMDIvQjQ2RkUyRDBD NUNBMTFFQkI4NkQzMjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDPcwDQYJKoZIhvcNAQELBQADggEBAH6zR/P8q2gQWhJ0 zqqDnJxWomOvGNiOOiNN/VMJK9lj3wj7PYdj+/1vfIzmVNnM88KVKy6A8hEE4bo2 AthdNqYud7AqI9nY+4KkGbRh2ppzoxnK2vHApAhDmqy1VSDQtkD8v95HUkbwlosH 98z5YE9+mTT9w7GimQc66fj8XJxa3788oKijgEFefKMpDMu+J2ov8AfttXwyZZWs 2WJxH7I11OlwMydK6Wd5wV14node71oR08QtHwehQQhecvnR5TX15Vxk07nECvpB WeFY1IqFkva3GputSe6rupBhZISZKVFSkJGMfvecbZHbpPM/eTDRh2t6zQ9pIh5X /ctaOJI= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:32 2024 by rpki-client on console-ams.rpki-client.org