$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46E5C5A63C2711EE88E3535BC4F9AE02.roa File: 46E5C5A63C2711EE88E3535BC4F9AE02.roa (raw, json) Hash identifier: Z6CU3mBbY9AO8nYy4gIDcG48zq30jqmSDduYr3xbb+M= Subject key identifier: 5B:0E:CF:F9:A6:EC:9C:E9:5E:BE:B6:9A:30:5E:F0:2B:72:20:BC:51 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 77CF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46E5C5A63C2711EE88E3535BC4F9AE02.roa Signing time: Wed 16 Aug 2023 11:23:09 +0000 ROA not before: Wed 16 Aug 2023 11:23:09 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137112 IP address blocks: 103.248.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30671 (0x77cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 16 11:23:09 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64dcb19c-4512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:92:df:12:51:04:59:0b:ad:b9:da:5a:29:5d: 2b:a1:e0:73:a9:5b:86:35:8b:0e:70:8c:1b:85:fc: 40:22:f1:2e:f4:5e:ed:27:c1:e2:4b:15:ec:eb:07: 55:fb:64:24:eb:fe:50:30:5c:5c:22:f8:ad:ff:8d: 02:d8:5d:43:c8:c0:4e:73:59:2b:a2:20:0d:df:dd: 58:2a:3c:49:a9:66:12:d3:ef:c8:d1:c8:15:58:e8: fe:43:70:4c:d2:59:e4:bd:92:f8:06:56:7d:cb:d3: c0:d7:aa:06:7f:fa:92:41:1d:28:6b:f1:37:f9:94: aa:01:fe:32:17:e7:50:fa:8a:e3:08:76:15:d5:0a: f8:f3:b2:6d:8f:5f:a2:6e:f1:e7:22:a1:7c:a6:fd: a1:bd:a4:5d:68:52:5c:47:42:1a:83:e7:25:a8:25: fe:c6:53:26:38:d5:f2:fc:3c:e3:24:5f:e4:cb:d2: f0:7d:13:eb:34:9c:e1:fc:d2:9f:49:21:20:6d:21: 63:6b:72:47:b9:ed:48:d6:5f:52:b2:75:1c:1e:0c: 89:bb:92:a1:9b:bd:9d:d3:8a:8d:fd:5f:48:40:23: e2:f4:70:08:c8:74:55:12:be:fe:7b:81:96:36:8c: 08:f7:cc:74:d3:93:fc:4a:41:c9:20:8e:42:23:3a: 99:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0E:CF:F9:A6:EC:9C:E9:5E:BE:B6:9A:30:5E:F0:2B:72:20:BC:51 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46E5C5A63C2711EE88E3535BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.242.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:3a:d9:c5:74:9e:4b:14:78:cd:d9:06:6b:dd:a7:4b:b2:b2: 77:a4:b9:54:fb:28:ae:3a:a8:c9:ed:37:f3:c9:51:fe:d8:64: b3:d8:d0:8e:81:42:58:02:0c:15:54:fc:03:e7:54:be:fb:76: 03:e5:d9:ed:01:d1:24:ea:d1:72:81:40:a1:92:b4:44:56:28: 25:28:59:94:ea:ba:81:a2:91:db:57:d5:af:05:4b:33:74:f8: 67:b3:50:9b:13:4f:e8:22:8e:00:7b:b9:92:54:60:2f:40:cb: ad:46:65:48:6f:74:24:9a:84:ef:1d:6d:f5:33:21:9c:0e:86: 9e:9e:a6:1b:b3:34:35:9a:15:e1:9e:16:d7:15:ed:a3:05:0f: 54:63:9f:2e:ac:ae:22:e6:15:21:19:af:dd:25:4f:d4:8d:10: 30:fe:03:e4:4d:0e:55:4e:b9:23:5c:09:ec:42:c7:51:28:e3: 7c:f4:53:6d:83:6c:da:d0:e0:e6:d3:ec:a4:01:76:ac:be:88: 64:a1:16:a0:01:75:c2:3d:19:74:9a:82:c6:2f:cc:2e:79:ed: 7f:d0:5e:92:c1:15:d7:14:3b:71:54:02:99:18:71:fa:04:fb: 78:1c:fa:85:0b:97:4c:75:24:c4:5c:62:7a:26:55:8e:f3:ba: fb:85:83:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICd88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODE2MTEyMzA5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjYjE5Yy00NTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZLfElEEWQutudpaKV0roeBzqVuGNYsOcIwbhfxAIvEu9F7tJ8HiSxXs6wdV +2Qk6/5QMFxcIvit/40C2F1DyMBOc1kroiAN391YKjxJqWYS0+/I0cgVWOj+Q3BM 0lnkvZL4BlZ9y9PA16oGf/qSQR0oa/E3+ZSqAf4yF+dQ+orjCHYV1Qr487Jtj1+i bvHnIqF8pv2hvaRdaFJcR0Iag+clqCX+xlMmONXy/DzjJF/ky9LwfRPrNJzh/NKf SSEgbSFja3JHue1I1l9SsnUcHgyJu5Khm72d04qN/V9IQCPi9HAIyHRVEr7+e4GW NowI98x005P8SkHJII5CIzqZOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFsOz/mm 7JzpXr62mjBe8CtyILxRMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDZFNUM1QTYz QzI3MTFFRTg4RTM1MzVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+PIwDQYJKoZIhvcNAQELBQADggEBAGo62cV0nksUeM3Z Bmvdp0uysnekuVT7KK46qMntN/PJUf7YZLPY0I6BQlgCDBVU/APnVL77dgPl2e0B 0STq0XKBQKGStERWKCUoWZTquoGikdtX1a8FSzN0+GezUJsTT+gijgB7uZJUYC9A y61GZUhvdCSahO8dbfUzIZwOhp6ephuzNDWaFeGeFtcV7aMFD1Rjny6sriLmFSEZ r90lT9SNEDD+A+RNDlVOuSNcCexCx1Eo43z0U22DbNrQ4ObT7KQBdqy+iGShFqAB dcI9GXSagsYvzC557X/QXpLBFdcUO3FUApkYcfoE+3gc+oULl0x1JMRcYnomVY7z uvuFg4Y= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org