$ rpki-client -vvf rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa File: 46BF7E7CFA0611ED802A1C29C4F9AE02.roa (raw, json) Hash identifier: 2dkKmL05AtMtXVCLGWX9yygZ8IDrSFOIa08fKl8Y0kU= Subject key identifier: 96:08:AE:7C:55:4D:37:24:1F:D1:0C:58:3A:12:B2:08:CB:A8:4E:3D Certificate issuer: /CN=A912E926/serialNumber=560DC40FF3A509F9EFDB5260EE1BB3862DB6D8DF Certificate serial: 02 Authority key identifier: 56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa Signing time: Wed 24 May 2023 07:40:38 +0000 ROA not before: Wed 24 May 2023 07:40:38 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151045 IP address blocks: 103.119.174.0/23 maxlen: 23 103.119.174.0/24 maxlen: 24 103.119.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.crl rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 06:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E926/serialNumber=560DC40FF3A509F9EFDB5260EE1BB3862DB6D8DF Validity Not Before: May 24 07:40:38 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=646dbf76-705d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9f:35:1f:06:25:1e:19:c0:2c:aa:88:45:38: 74:15:41:8d:85:7a:39:95:87:50:e2:9c:74:4b:34: eb:cb:d9:76:4c:96:a5:29:79:29:e3:5b:2c:ae:9d: 1a:4c:d1:16:71:2d:58:c7:b8:f4:c9:92:e1:e1:40: 83:0b:8d:a0:dd:4f:c1:b4:85:ea:d8:81:44:19:20: d0:58:f9:34:69:63:06:7c:2c:a4:88:c1:77:5f:8e: 55:0c:98:1a:63:c2:e3:95:97:c4:9c:87:1a:91:b3: eb:fb:17:96:eb:4c:09:b3:8e:e8:90:15:76:0e:e9: 93:2c:47:ac:3a:28:3b:94:b9:e0:21:fb:48:04:41: 95:db:d0:5d:a6:6d:1a:4f:5a:80:d1:cc:08:25:66: 85:c4:c6:1b:ab:da:e5:82:18:31:da:d4:0d:b8:c5: 88:de:08:5d:03:6c:b5:9e:ba:ed:dd:09:c7:ea:e2: 91:3c:0c:b2:4b:aa:08:23:20:8c:f7:99:db:4e:fb: 28:a7:b2:55:88:97:aa:ea:7f:d8:8b:72:d8:40:7c: ae:b2:49:76:ea:ec:a0:3c:3b:ba:a4:fd:da:8b:b5: c6:2a:44:ff:ca:13:45:87:45:e6:bf:68:cd:1a:65: 0c:52:22:00:eb:91:fc:9f:80:e9:7c:36:3c:61:3d: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:08:AE:7C:55:4D:37:24:1F:D1:0C:58:3A:12:B2:08:CB:A8:4E:3D X509v3 Authority Key Identifier: keyid:56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.174.0/23 Signature Algorithm: sha256WithRSAEncryption 32:e7:03:e8:5e:7d:8e:5f:07:be:f7:0f:e9:20:89:38:38:fe: fb:bc:3f:22:27:56:bc:2b:b6:cb:c3:78:87:44:75:5b:d5:c0: 3e:30:a1:24:27:5e:1e:ea:56:40:fc:24:f1:a5:46:0a:04:74: a4:43:68:47:4d:2a:9f:c3:66:3d:e0:c4:00:5d:3b:c9:e8:a2: 62:c2:93:e1:52:c9:90:f9:bc:12:f3:dc:20:13:5a:ac:d4:21: 47:e6:ea:32:19:4c:ef:ee:bc:d3:97:51:20:c1:6f:e6:82:09: 3a:05:d5:a4:2e:88:17:e8:99:e5:76:1e:6b:b6:c8:ab:01:4f: d4:13:0d:81:1e:a4:7d:b7:77:ff:fd:e2:90:e0:63:6b:b0:ce: f8:7b:b1:6d:27:c9:c6:c4:2c:75:f0:47:95:d4:22:b3:b4:28: b6:45:57:d4:2e:48:4a:55:2b:ea:a8:eb:93:72:d5:c2:ad:5a: 1f:fb:85:82:3e:3a:38:cf:5a:68:41:c9:80:9e:56:4b:c8:05: 32:1a:76:db:ab:e6:ef:cf:c7:55:a7:b3:91:6a:ab:5f:70:cc: 00:af:b8:7d:86:de:27:5b:a7:6e:02:f6:5c:53:b9:c2:b4:1e: 8a:b8:b5:35:2e:bd:50:76:ae:8c:d0:cc:49:eb:ab:51:0c:2b: 2e:7f:69:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTkyNjExMC8GA1UEBRMoNTYwREM0MEZGM0E1MDlGOUVGREI1MjYwRUUxQkIzODYy REI2RDhERjAeFw0yMzA1MjQwNzQwMzhaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NmRiZjc2LTcwNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCRnzUfBiUeGcAsqohFOHQVQY2FejmVh1DinHRLNOvL2XZMlqUpeSnjWyyunRpM 0RZxLVjHuPTJkuHhQIMLjaDdT8G0herYgUQZINBY+TRpYwZ8LKSIwXdfjlUMmBpj wuOVl8SchxqRs+v7F5brTAmzjuiQFXYO6ZMsR6w6KDuUueAh+0gEQZXb0F2mbRpP WoDRzAglZoXExhur2uWCGDHa1A24xYjeCF0DbLWeuu3dCcfq4pE8DLJLqggjIIz3 mdtO+yinslWIl6rqf9iLcthAfK6ySXbq7KA8O7qk/dqLtcYqRP/KE0WHRea/aM0a ZQxSIgDrkfyfgOl8NjxhPYoHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlgiufFVN NyQf0QxYOhKyCMuoTj0wHwYDVR0jBBgwFoAUVg3ED/OlCfnv21Jg7huzhi222N8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFOTI2Lzg2Njc2REEwRkEw MTExRURCQUQ3NUQyOEM0RjlBRTAyL1ZnM0VEX09sQ2ZudjIxSmc3aHV6aGkyMjJO OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVmczRURfT2xDZm52MjFKZzdodXpoaTIyMk44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTkyNi84NjY3NkRBMEZBMDExMUVEQkFENzVEMjhDNEY5QUUwMi80NkJGN0U3Q0ZB MDYxMUVEODAyQTFDMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWd3rjANBgkqhkiG9w0BAQsFAAOCAQEAMucD6F59jl8HvvcP 6SCJODj++7w/IidWvCu2y8N4h0R1W9XAPjChJCdeHupWQPwk8aVGCgR0pENoR00q n8NmPeDEAF07yeiiYsKT4VLJkPm8EvPcIBNarNQhR+bqMhlM7+6805dRIMFv5oIJ OgXVpC6IF+iZ5XYea7bIqwFP1BMNgR6kfbd3//3ikOBja7DO+HuxbSfJxsQsdfBH ldQis7QotkVX1C5ISlUr6qjrk3LVwq1aH/uFgj46OM9aaEHJgJ5WS8gFMhp226vm 78/HVaezkWqrX3DMAK+4fYbeJ1unbgL2XFO5wrQeiri1NS69UHaujNDMSeurUQwr Ln9pTA== -----END CERTIFICATE-----Generated at Tue May 7 07:13:00 2024 by rpki-client on console-ams.rpki-client.org