$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa File: A75C22CCC6F211ED908FCE6FC4F9AE02.roa (raw, json) Hash identifier: PKSNufLv78wpbXeYNPJvwkxHmwx5cS7Vz+qio0/Fv8U= Subject key identifier: 48:4E:FD:A1:D9:D9:1F:5D:62:7A:F1:8C:5B:AB:08:E4:FC:2C:D5:F7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70E9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa Signing time: Wed 10 May 2023 16:45:46 +0000 ROA not before: Wed 10 May 2023 16:45:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150090 IP address blocks: 103.174.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28905 (0x70e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca3a-73dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:93:15:09:be:98:26:8c:22:ff:1b:20:07:27: 55:ef:75:62:a7:f4:36:22:eb:9f:ac:a5:e7:a1:6d: ed:c0:53:a4:93:17:25:93:7b:ca:9b:67:e7:b7:b4: 5b:a4:f1:8e:56:88:23:0c:e4:2d:92:02:f1:92:08: 71:48:39:02:94:3e:21:fd:1d:c5:66:77:2b:4f:37: 0c:0f:96:ad:d3:3a:02:de:e8:09:c5:b1:31:d5:f6: dd:58:27:31:72:68:27:47:9f:f6:34:2a:82:98:dc: 1a:52:de:96:da:24:d3:d5:bf:02:44:ed:32:78:2d: eb:52:87:55:bc:40:49:0a:6a:c9:de:92:51:15:72: 73:ac:5e:02:62:80:1c:fc:6b:a3:69:83:09:47:a5: f6:b7:0f:1d:6e:5e:e8:30:3f:40:5d:ab:b6:c2:f5: 2c:45:af:33:bf:60:fc:26:c1:40:31:8d:ac:34:bb: ca:79:1b:03:04:d1:a8:f4:3c:3e:1c:a3:8f:10:a8: 24:0a:ae:b6:c6:db:fd:58:f3:ca:e9:0f:be:eb:c1: fc:78:2c:1a:28:5d:5e:4e:a6:42:02:4b:15:2d:09: 9a:68:15:5b:57:85:2c:1f:c4:5a:ca:dd:ec:f7:90: 80:1b:4f:66:56:34:89:d1:4c:44:a9:f8:e7:68:5b: bf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4E:FD:A1:D9:D9:1F:5D:62:7A:F1:8C:5B:AB:08:E4:FC:2C:D5:F7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.246.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a6:3d:b0:a0:c2:5b:14:ed:3a:9e:51:30:48:18:82:9f:70: f5:cb:f9:fc:b7:e6:cc:88:39:87:64:e9:ac:04:ad:d1:59:5c: 89:42:86:61:ad:0d:ea:98:65:4e:82:7f:81:20:a3:15:02:57: cf:cd:e4:f8:ff:88:7b:7a:d6:1c:06:99:33:92:32:0f:14:ac: e3:a4:ac:dd:65:00:d6:fb:99:0b:82:53:9d:40:27:0e:5f:44: 41:ca:87:be:e1:81:dc:66:7a:e3:65:36:64:0c:7a:62:37:b8: c7:9c:15:19:90:c7:52:aa:55:a3:0a:99:cb:15:35:63:1c:6b: 5e:68:34:9d:3e:a0:c1:51:08:3f:70:a9:22:fc:f2:96:3d:07: 2f:72:47:0a:2a:d1:8a:bc:6d:26:3d:6f:dc:83:86:db:f3:4f: db:9f:bf:b8:79:54:21:6f:8a:45:cd:90:14:8e:87:ac:c0:67: 57:4f:5a:5e:61:ae:40:a4:05:8a:11:3d:9a:69:c0:7e:54:91: c1:2d:35:c1:96:40:a4:74:bb:df:41:9f:1b:06:38:f1:14:9f: 04:43:37:cd:96:74:83:e9:ba:84:ac:e7:60:73:1a:f9:65:fa: 8e:d3:42:37:00:97:0c:62:22:43:8f:78:c3:7a:3b:2e:7d:4f: 1a:ed:8f:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EzYS03M2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZMVCb6YJowi/xsgBydV73Vip/Q2IuufrKXnoW3twFOkkxclk3vKm2fnt7Rb pPGOVogjDOQtkgLxkghxSDkClD4h/R3FZncrTzcMD5at0zoC3ugJxbEx1fbdWCcx cmgnR5/2NCqCmNwaUt6W2iTT1b8CRO0yeC3rUodVvEBJCmrJ3pJRFXJzrF4CYoAc /GujaYMJR6X2tw8dbl7oMD9AXau2wvUsRa8zv2D8JsFAMY2sNLvKeRsDBNGo9Dw+ HKOPEKgkCq62xtv9WPPK6Q++68H8eCwaKF1eTqZCAksVLQmaaBVbV4UsH8Rayt3s 95CAG09mVjSJ0UxEqfjnaFu/JQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEhO/aHZ 2R9dYnrxjFurCOT8LNX3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTc1QzIyQ0ND NkYyMTFFRDkwOEZDRTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrvYwDQYJKoZIhvcNAQELBQADggEBAJOmPbCgwlsU7Tqe UTBIGIKfcPXL+fy35syIOYdk6awErdFZXIlChmGtDeqYZU6Cf4EgoxUCV8/N5Pj/ iHt61hwGmTOSMg8UrOOkrN1lANb7mQuCU51AJw5fREHKh77hgdxmeuNlNmQMemI3 uMecFRmQx1KqVaMKmcsVNWMca15oNJ0+oMFRCD9wqSL88pY9By9yRwoq0Yq8bSY9 b9yDhtvzT9ufv7h5VCFvikXNkBSOh6zAZ1dPWl5hrkCkBYoRPZppwH5UkcEtNcGW QKR0u99BnxsGOPEUnwRDN82WdIPpuoSs52BzGvll+o7TQjcAlwxiIkOPeMN6Oy59 TxrtjzQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org