$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa File: 31E9226CD6E411EE832E7F43C4F9AE02.roa (raw, json) Hash identifier: DPRi9KW464ba5ClHhq4PVDCElrl9xbRh1vUhfz1VRkQ= Subject key identifier: BB:0A:1D:5C:68:BF:D0:74:3E:02:F6:7A:BC:87:05:30:FE:EA:EB:B7 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 73 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa Signing time: Thu 29 Feb 2024 09:23:27 +0000 ROA not before: Thu 29 Feb 2024 09:23:27 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149132 IP address blocks: 157.20.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Feb 29 09:23:27 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65e04d0f-7611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:02:02:a5:fb:84:c9:9f:ef:f0:87:28:64: 90:e6:de:ce:47:73:17:25:64:49:54:5a:bf:97:17: 5e:84:f4:ae:c7:21:15:e4:ec:04:a8:55:9d:8d:3c: e8:97:96:bd:88:33:26:b4:aa:43:cf:2a:f3:b1:39: c8:38:9a:04:d3:4e:54:15:a4:03:0b:e6:80:8c:99: 2a:9b:41:79:a2:4a:2b:e5:c3:23:fc:8d:c4:2a:ce: f4:fb:59:5b:f1:6f:b7:29:f1:0a:e0:c3:81:7c:1f: 83:f2:af:c5:63:e6:7b:24:0d:9f:29:f9:57:75:2f: b0:b0:87:2e:d7:a5:da:17:a8:c0:85:1e:e8:88:7f: 3e:2f:82:d7:4b:f8:76:b8:05:41:33:62:eb:24:a4: dd:b0:8e:40:98:ae:aa:71:fc:bc:c6:3d:96:ef:9c: 4a:9f:33:3a:83:7f:2b:83:10:a9:e2:55:28:51:30: d9:bf:c7:94:4b:26:9f:27:63:53:8d:04:33:dd:7c: 81:61:f7:81:21:7e:6f:d1:f0:d5:cd:0b:56:fd:c3: c6:f6:12:8e:c3:c5:9a:b3:b9:56:9a:f5:77:20:b5: 97:88:a3:5c:a7:6a:29:d9:05:e3:39:3d:c6:db:e6: 7b:fd:22:45:3c:43:f3:3f:16:b7:8b:c5:7c:ff:8a: 34:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0A:1D:5C:68:BF:D0:74:3E:02:F6:7A:BC:87:05:30:FE:EA:EB:B7 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.82.0/23 Signature Algorithm: sha256WithRSAEncryption 68:c6:c5:0d:0b:1e:61:f1:bb:cd:5c:93:41:6f:d1:40:0b:0d: 46:d2:96:78:3b:5b:21:ea:23:8a:ec:16:78:f9:16:d4:de:cc: 1e:0f:d5:e7:42:a7:e7:15:b0:03:25:f1:1d:77:79:0a:ff:63: 3b:7e:56:dc:4d:52:66:f5:c3:92:c1:84:77:71:1e:30:df:ae: 30:c4:56:c5:9c:33:fa:b3:56:33:a3:c8:8c:0a:2a:a1:98:5d: fe:31:64:dd:ff:38:64:b7:a7:c1:33:73:ac:d8:8f:26:64:f3: f9:8f:92:01:d9:b0:13:0f:70:a5:bc:d8:ea:79:44:51:58:01: 27:17:28:27:69:fb:32:64:96:15:42:db:25:d9:4d:81:f8:a1: f4:c7:69:6c:f3:68:46:7d:d3:f2:de:19:a3:44:bb:ef:26:0e: b4:8f:04:e5:06:9a:31:93:06:5d:c1:ab:69:59:d6:1b:56:95: c0:af:a2:ac:24:1b:44:61:0b:cf:73:93:64:be:70:be:06:2b: fe:04:f0:a7:b6:e1:85:60:f7:d5:86:5e:3c:88:b2:43:6b:90: 3e:d3:17:ce:96:77:4f:f9:24:dd:19:72:f1:4a:dd:db:02:bb: 0c:25:43:82:f7:0e:7d:1c:28:30:47:8e:5b:27:8a:ed:6e:50: 14:6a:6d:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTYwQTExMC8GA1UEBRMoOEFDNzIxMjk4RjkyRTEwQTJFRTMwNTFBRkJDOTExNDI4 NEY4MEUxMjAeFw0yNDAyMjkwOTIzMjdaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTA0ZDBmLTc2MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5KwICpfuEyZ/v8IcoZJDm3s5HcxclZElUWr+XF16E9K7HIRXk7ASoVZ2NPOiX lr2IMya0qkPPKvOxOcg4mgTTTlQVpAML5oCMmSqbQXmiSivlwyP8jcQqzvT7WVvx b7cp8Qrgw4F8H4Pyr8Vj5nskDZ8p+Vd1L7Cwhy7XpdoXqMCFHuiIfz4vgtdL+Ha4 BUEzYuskpN2wjkCYrqpx/LzGPZbvnEqfMzqDfyuDEKniVShRMNm/x5RLJp8nY1ON BDPdfIFh94Ehfm/R8NXNC1b9w8b2Eo7DxZqzuVaa9XcgtZeIo1ynainZBeM5Pcbb 5nv9IkU8Q/M/FreLxXz/ijTNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuwodXGi/ 0HQ+AvZ6vIcFMP7q67cwHwYDVR0jBBgwFoAUischKY+S4Qou4wUa+8kRQoT4DhIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NjBBLzIwOTU4NjE4QTlE RjExRUVBMzU2QTQzRUM0RjlBRTAyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERo SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXNjaEtZLVM0UW91NHdVYS04a1JRb1Q0RGhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS8yMDk1ODYxOEE5REYxMUVFQTM1NkE0M0VDNEY5QUUwMi8zMUU5MjI2Q0Q2 RTQxMUVFODMyRTdGNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UUjANBgkqhkiG9w0BAQsFAAOCAQEAaMbFDQseYfG7zVyT QW/RQAsNRtKWeDtbIeojiuwWePkW1N7MHg/V50Kn5xWwAyXxHXd5Cv9jO35W3E1S ZvXDksGEd3EeMN+uMMRWxZwz+rNWM6PIjAoqoZhd/jFk3f84ZLenwTNzrNiPJmTz +Y+SAdmwEw9wpbzY6nlEUVgBJxcoJ2n7MmSWFULbJdlNgfih9MdpbPNoRn3T8t4Z o0S77yYOtI8E5QaaMZMGXcGraVnWG1aVwK+irCQbRGELz3OTZL5wvgYr/gTwp7bh hWD31YZePIiyQ2uQPtMXzpZ3T/kk3Rly8Urd2wK7DCVDgvcOfRwoMEeOWyeK7W5Q FGptiA== -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org