$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/31B2B528217811EEBACF3324C4F9AE02.roa File: 31B2B528217811EEBACF3324C4F9AE02.roa (raw, json) Hash identifier: w96M/Nc+tM6pTDQFnBUKox1nfLql7f3VRNZAPQQAgkM= Subject key identifier: 00:99:A6:83:15:70:2C:1F:1A:8C:21:F2:B1:61:B5:D4:F5:D0:58:44 Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 07E4 Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/31B2B528217811EEBACF3324C4F9AE02.roa Signing time: Sat 14 Oct 2023 21:09:01 +0000 ROA not before: Sat 14 Oct 2023 21:09:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133633 IP address blocks: 103.38.16.0/22 maxlen: 24 202.58.254.0/24 maxlen: 24 202.58.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: Oct 14 21:09:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652b036c-6556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:37:e5:68:f9:6d:0d:91:de:d1:53:9e:fe:a2: 2f:79:a6:7e:32:1c:df:62:f9:34:d8:3e:ee:a6:43: 63:c5:92:23:f6:4a:0e:b6:33:77:c9:47:25:72:f7: ac:5f:a4:6c:24:08:35:38:55:d4:92:31:4c:a7:5f: 3e:e8:25:ad:7a:4a:99:d7:a4:c7:9e:61:ba:3a:25: 1b:15:c9:e3:db:c7:8a:9b:42:3a:cf:a5:1e:6c:21: bb:22:a5:41:dc:82:0d:a9:b0:c2:a1:79:46:ac:88: 56:e8:4e:c8:06:3c:09:c9:00:f0:0e:d9:a6:0f:8f: e8:e9:ab:cb:92:7d:0c:bb:5d:ee:69:b8:37:77:bf: f7:58:99:41:17:47:3a:16:30:29:71:0b:af:61:b0: 47:fd:b7:71:b6:a3:0a:79:20:41:8a:01:86:5d:80: d2:91:ef:fe:e4:7e:fb:09:cf:b2:77:84:e8:f3:c9: 09:37:e8:8c:d3:80:5d:e7:7b:25:ca:3e:be:7b:58: 49:22:c7:f0:41:68:f0:46:3b:c2:8d:80:a3:ce:ae: 84:7c:92:f8:42:f8:38:29:80:cd:33:ce:a0:cd:81: 08:a3:72:6b:75:83:b6:1c:bc:98:39:94:58:de:92: 1d:6e:e9:43:7a:27:29:9e:16:07:34:d6:4c:4b:bd: b7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:99:A6:83:15:70:2C:1F:1A:8C:21:F2:B1:61:B5:D4:F5:D0:58:44 X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/31B2B528217811EEBACF3324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.16.0/22 202.58.254.0/23 Signature Algorithm: sha256WithRSAEncryption 66:ee:11:5f:26:37:10:39:7b:cf:a5:5f:1f:f8:50:6b:2a:50: b8:92:55:a0:71:8d:67:1b:3b:ea:9c:b5:1a:93:f5:44:bd:61: 5c:d2:33:1a:4a:e3:28:a3:b5:6c:be:ff:4e:3a:80:1d:83:9d: 75:ee:bb:32:2c:f5:58:96:db:5f:01:53:89:04:75:af:ff:42: 6b:cb:d8:fc:c7:09:23:49:2f:92:d4:22:5e:f5:92:e6:80:9c: 1f:37:f7:f9:3b:93:f0:95:26:bb:8d:b6:af:e0:a9:78:78:e7: 8d:8d:1d:47:27:95:a9:4c:95:27:65:98:78:ba:be:d5:6e:1c: 8d:f5:28:1f:98:61:13:93:ac:79:7d:83:76:43:2a:1c:9d:e6: 26:ac:91:8d:38:9b:c2:a6:f5:78:53:4c:50:43:97:36:bb:98: 3b:18:45:af:ce:b3:37:ab:34:f4:3c:b7:28:61:21:21:53:de: f2:9d:56:47:2c:3a:b1:a7:86:b7:42:11:b7:9f:c1:5f:d3:fc: fd:bc:8c:58:39:98:e9:20:c5:42:f3:6f:18:21:25:12:6d:43: e2:b7:57:8a:ba:5c:f5:7d:ca:67:51:4d:07:76:8e:9b:0b:4a: 53:5b:cf:20:b3:4d:41:0c:21:f5:b7:55:10:9d:e4:8a:d2:ed: af:7e:d3:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjMxMDE0MjEwOTAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJiMDM2Yy02NTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9zflaPltDZHe0VOe/qIveaZ+MhzfYvk02D7upkNjxZIj9koOtjN3yUclcves X6RsJAg1OFXUkjFMp18+6CWtekqZ16THnmG6OiUbFcnj28eKm0I6z6UebCG7IqVB 3IINqbDCoXlGrIhW6E7IBjwJyQDwDtmmD4/o6avLkn0Mu13uabg3d7/3WJlBF0c6 FjApcQuvYbBH/bdxtqMKeSBBigGGXYDSke/+5H77Cc+yd4To88kJN+iM04Bd53sl yj6+e1hJIsfwQWjwRjvCjYCjzq6EfJL4Qvg4KYDNM86gzYEIo3JrdYO2HLyYOZRY 3pIdbulDeicpnhYHNNZMS723WQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFACZpoMV cCwfGowh8rFhtdT10FhEMB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ2ODUvMkQxNTkxODJBOTczMTFFQTlBQUJFOTIzQzRGOUFFMDIvMzFCMkI1Mjgy MTc4MTFFRUJBQ0YzMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnJhADBAHKOv4wDQYJKoZIhvcNAQELBQADggEBAGbuEV8m NxA5e8+lXx/4UGsqULiSVaBxjWcbO+qctRqT9US9YVzSMxpK4yijtWy+/046gB2D nXXuuzIs9ViW218BU4kEda//QmvL2PzHCSNJL5LUIl71kuaAnB839/k7k/CVJruN tq/gqXh4542NHUcnlalMlSdlmHi6vtVuHI31KB+YYROTrHl9g3ZDKhyd5iaskY04 m8Km9XhTTFBDlza7mDsYRa/OszerNPQ8tyhhISFT3vKdVkcsOrGnhrdCEbefwV/T /P28jFg5mOkgxULzbxghJRJtQ+K3V4q6XPV9ymdRTQd2jpsLSlNbzyCzTUEMIfW3 VRCd5IrS7a9+08A= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:18 2024 by rpki-client on console-ams.rpki-client.org