$ rpki-client -vvf rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa File: 46BF7E7CFA0611ED802A1C29C4F9AE02.roa (raw, json) Hash identifier: 6nT4G6m4+Q+TudjCN47uVHfhSNYlhZS8cRYj6dtcWvw= Subject key identifier: B3:6C:F3:3E:8D:BC:87:5F:4E:90:D2:20:A0:31:F1:31:8D:3D:77:9D Certificate issuer: /CN=A912E926/serialNumber=560DC40FF3A509F9EFDB5260EE1BB3862DB6D8DF Certificate serial: B9 Authority key identifier: 56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa Signing time: Wed 15 May 2024 06:40:45 +0000 ROA not before: Wed 15 May 2024 06:40:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151045 IP address blocks: 103.119.174.0/23 maxlen: 23 103.119.174.0/24 maxlen: 24 103.119.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.crl rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E926/serialNumber=560DC40FF3A509F9EFDB5260EE1BB3862DB6D8DF Validity Not Before: May 15 06:40:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664458ec-5ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5d:38:d0:99:ea:ee:bb:31:b6:e1:44:8c:6d: 96:22:14:d8:96:d1:37:6d:99:c5:9f:0f:ae:aa:4c: 73:f0:bb:80:6b:54:b9:98:9d:65:86:df:1e:54:6f: 5a:88:07:9b:a2:55:3c:46:a9:54:94:69:5c:27:8c: ec:83:34:95:84:b9:a0:2f:9a:38:5c:88:68:26:0f: 05:de:69:d0:2a:47:92:f9:06:d3:ad:1c:fd:8c:41: 67:6c:b9:fa:3d:81:06:fc:e1:60:a4:57:fe:66:42: ef:10:8d:31:e8:eb:77:73:29:5d:4f:f8:63:b0:ab: d5:47:d2:84:fb:77:6b:fd:27:47:36:6c:b5:5e:08: e0:b3:1d:d1:e7:15:dc:c3:b1:0f:ff:4a:ae:dd:2e: cd:08:48:37:4a:1f:1b:ab:a3:42:e3:5f:43:5e:b9: af:b3:e1:31:c5:b9:ed:24:ed:0d:8f:89:d7:71:09: f0:3f:91:3c:d9:3c:f7:38:b5:b7:81:45:53:c3:66: e4:9e:49:7a:52:a3:fa:67:83:a6:b2:09:41:81:db: 7a:82:36:ea:d7:31:13:ac:ab:eb:52:a5:0a:b1:9b: f8:fd:29:6e:34:6b:26:cc:50:f1:80:81:cf:c6:0b: e3:e0:59:f2:c5:3c:ab:dc:6b:cb:b9:55:e7:e6:0c: 6d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6C:F3:3E:8D:BC:87:5F:4E:90:D2:20:A0:31:F1:31:8D:3D:77:9D X509v3 Authority Key Identifier: keyid:56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/46BF7E7CFA0611ED802A1C29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.174.0/23 Signature Algorithm: sha256WithRSAEncryption 24:55:a3:c3:0c:fd:83:31:b8:e5:8d:f5:04:be:cc:be:2f:b4: 8b:6a:2a:3a:39:13:19:c6:42:5c:b6:f6:b8:bd:37:ba:64:91: 9b:54:97:c9:30:ad:98:e2:1a:0f:2c:a0:a9:54:e9:f6:15:e9: 0e:08:01:b4:e5:37:16:9e:46:c0:36:95:98:9c:bd:f3:00:a8: f2:e7:1a:32:6f:31:60:46:e0:17:91:17:ff:f3:17:e0:cd:09: df:34:32:e6:76:3c:a8:b8:33:96:ea:ba:97:fe:46:0c:de:5e: 47:ce:1f:50:f7:92:7d:be:9a:65:4b:17:40:ee:ae:10:ae:29: ba:8d:34:92:1a:8e:de:70:57:d1:d3:71:f1:d1:1e:3c:dc:1f: a7:26:09:af:b6:66:49:4a:67:40:83:10:4e:7b:d6:e2:18:ed: 54:61:82:ec:02:cc:0e:4d:70:d4:0d:ca:1b:f5:2c:20:a2:cf: fb:86:0a:a5:3b:08:82:9c:9f:3f:8b:2a:ea:9f:da:82:a4:e1: 97:09:e7:92:2b:c0:92:e3:08:47:b1:96:3f:94:c1:6d:50:cd: 42:e9:4e:84:6b:fb:62:96:db:dc:4a:b7:3c:91:94:b1:8c:96: 80:79:a4:d1:9d:c2:73:8c:64:6c:8c:68:34:96:fd:fe:b3:2a: c4:65:26:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU5MjYxMTAvBgNVBAUTKDU2MERDNDBGRjNBNTA5RjlFRkRCNTI2MEVFMUJCMzg2 MkRCNkQ4REYwHhcNMjQwNTE1MDY0MDQ1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0NThlYy01YWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1040Jnq7rsxtuFEjG2WIhTYltE3bZnFnw+uqkxz8LuAa1S5mJ1lht8eVG9a iAebolU8RqlUlGlcJ4zsgzSVhLmgL5o4XIhoJg8F3mnQKkeS+QbTrRz9jEFnbLn6 PYEG/OFgpFf+ZkLvEI0x6Ot3cyldT/hjsKvVR9KE+3dr/SdHNmy1Xgjgsx3R5xXc w7EP/0qu3S7NCEg3Sh8bq6NC419DXrmvs+ExxbntJO0Nj4nXcQnwP5E82Tz3OLW3 gUVTw2bknkl6UqP6Z4OmsglBgdt6gjbq1zETrKvrUqUKsZv4/SluNGsmzFDxgIHP xgvj4FnyxTyr3GvLuVXn5gxtjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLNs8z6N vIdfTpDSIKAx8TGNPXedMB8GA1UdIwQYMBaAFFYNxA/zpQn579tSYO4bs4Ytttjf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTkyNi84NjY3NkRBMEZB MDExMUVEQkFENzVEMjhDNEY5QUUwMi9WZzNFRF9PbENmbnYyMUpnN2h1emhpMjIy TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZnM0VEX09sQ2ZudjIxSmc3aHV6aGkyMjJOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU5MjYvODY2NzZEQTBGQTAxMTFFREJBRDc1RDI4QzRGOUFFMDIvNDZCRjdFN0NG QTA2MTFFRDgwMkExQzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnd64wDQYJKoZIhvcNAQELBQADggEBACRVo8MM/YMxuOWN 9QS+zL4vtItqKjo5ExnGQly29ri9N7pkkZtUl8kwrZjiGg8soKlU6fYV6Q4IAbTl NxaeRsA2lZicvfMAqPLnGjJvMWBG4BeRF//zF+DNCd80MuZ2PKi4M5bqupf+Rgze XkfOH1D3kn2+mmVLF0DurhCuKbqNNJIajt5wV9HTcfHRHjzcH6cmCa+2ZklKZ0CD EE571uIY7VRhguwCzA5NcNQNyhv1LCCiz/uGCqU7CIKcnz+LKuqf2oKk4ZcJ55Ir wJLjCEexlj+UwW1QzULpToRr+2KW29xKtzyRlLGMloB5pNGdwnOMZGyMaDSW/f6z KsRlJpU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org