$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/31D56A8E06C711EF9A0E1D0AC4F9AE02.roa File: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (raw, json) Hash identifier: 7XBk8ORjYWijT3wsCOJ8nDcD/q7UOfGeSFnT4pFgWSc= Subject key identifier: 05:F0:28:47:88:DF:BE:E1:38:56:9E:48:04:1E:B6:D5:B8:E1:03:57 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 34E5 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/31D56A8E06C711EF9A0E1D0AC4F9AE02.roa Signing time: Tue 30 Apr 2024 07:56:48 +0000 ROA not before: Tue 30 Apr 2024 07:56:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140607 IP address blocks: 103.207.85.0/24 maxlen: 24 116.90.118.0/24 maxlen: 24 116.90.121.0/24 maxlen: 24 116.90.122.0/24 maxlen: 24 202.142.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 30 07:56:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6630a43f-a23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:17:15:eb:b9:51:45:76:02:92:d9:16:68: b9:fe:52:e5:5a:eb:a2:54:36:05:56:d7:c1:c0:20: c4:62:d1:eb:f6:60:bd:45:ef:77:60:f8:8a:1d:98: 4e:6e:19:6b:ea:c2:b0:72:a9:0a:a0:3b:1c:07:c6: e3:44:1b:30:2b:99:47:ab:f1:66:6c:15:3b:0d:8a: 8d:d1:40:91:7b:19:2f:34:0b:04:f5:09:64:fa:be: b5:67:3c:99:81:9a:23:39:d3:35:89:fc:9c:3a:75: 68:ce:37:88:c2:92:e7:a8:08:f0:e8:40:87:a2:30: a3:fd:b3:33:12:62:db:d9:8a:4c:b7:06:27:8f:43: a2:20:97:2d:ae:24:50:10:a1:d9:9f:c0:47:35:53: d2:25:83:41:cc:98:fb:ce:23:f3:a4:0e:c8:4d:12: 03:04:34:cd:8c:67:20:e5:ef:d2:49:9a:86:03:fb: fd:76:c2:fa:f1:05:61:00:9b:62:56:c7:06:14:7f: 38:43:16:93:ab:fe:9c:56:e1:d0:61:fc:85:3b:01: e5:14:6f:9d:4b:77:bf:0e:51:42:ea:07:8d:82:9b: 00:bc:b2:4a:37:88:c5:9b:29:d0:ae:84:98:d6:78: 2b:16:c6:ca:7e:ee:31:78:6d:13:04:5d:8a:e2:43: ba:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F0:28:47:88:DF:BE:E1:38:56:9E:48:04:1E:B6:D5:B8:E1:03:57 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/31D56A8E06C711EF9A0E1D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.85.0/24 116.90.118.0/24 116.90.121.0-116.90.122.255 202.142.151.0/24 Signature Algorithm: sha256WithRSAEncryption 62:39:a9:de:0c:d0:90:84:f7:23:fa:f0:d8:5f:5a:3e:00:be: 02:fd:ba:b1:20:5b:1b:45:e6:a5:ba:31:9b:12:99:aa:f5:4c: 27:b2:57:ff:5a:42:53:e0:a2:99:d1:95:c5:4d:21:c7:c5:8d: 73:e0:24:35:e5:7f:da:43:12:e5:fc:fe:e4:8b:40:18:1c:7b: 82:1b:60:57:0a:17:d9:e3:76:a5:f3:f4:08:7f:87:77:cf:4b: a7:00:f8:f9:2a:bc:b8:cb:5c:ff:dd:c1:7d:48:3c:45:96:54: 5e:a5:88:0f:11:5f:9f:95:dd:56:37:c3:21:78:85:6b:2b:85: a4:59:0f:58:87:5a:f6:2f:12:73:b7:f1:a1:ec:aa:43:eb:1e: f2:cf:b5:49:0e:b8:30:b9:a4:50:b2:16:de:38:dc:c7:07:91: d6:14:d3:1e:d7:f6:9f:32:c6:5b:1c:06:1f:b8:d9:20:f8:30: cc:69:7c:c2:94:6f:85:0b:f8:14:89:ab:e5:a5:ae:0f:38:c2: 62:d8:90:6a:b9:c6:e2:c7:5a:7e:91:63:1a:0c:c5:b5:21:08: 8f:1a:75:05:6e:ed:9d:f6:4c:db:35:d9:92:5c:45:b5:23:f0: 98:cd:fe:b4:e9:06:04:ea:40:4d:17:1d:50:d0:0c:4c:e9:2f: 5e:57:69:0c -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwNDMwMDc1NjQ4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMwYTQzZi1hMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3wXFeu5UUV2ApLZFmi5/lLlWuuiVDYFVtfBwCDEYtHr9mC9Re93YPiKHZhO bhlr6sKwcqkKoDscB8bjRBswK5lHq/FmbBU7DYqN0UCRexkvNAsE9Qlk+r61ZzyZ gZojOdM1ifycOnVozjeIwpLnqAjw6ECHojCj/bMzEmLb2YpMtwYnj0OiIJctriRQ EKHZn8BHNVPSJYNBzJj7ziPzpA7ITRIDBDTNjGcg5e/SSZqGA/v9dsL68QVhAJti VscGFH84QxaTq/6cVuHQYfyFOwHlFG+dS3e/DlFC6geNgpsAvLJKN4jFmynQroSY 1ngrFsbKfu4xeG0TBF2K4kO6MwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFAXwKEeI 377hOFaeSAQettW44QNXMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvMzFENTZBOEUw NkM3MTFFRjlBMEUxRDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABnz1UDBAB0WnYwDAMEAHRaeQMEAHRaegMEAMqOlzANBgkq hkiG9w0BAQsFAAOCAQEAYjmp3gzQkIT3I/rw2F9aPgC+Av26sSBbG0XmpboxmxKZ qvVMJ7JX/1pCU+CimdGVxU0hx8WNc+AkNeV/2kMS5fz+5ItAGBx7ghtgVwoX2eN2 pfP0CH+Hd89LpwD4+Sq8uMtc/93BfUg8RZZUXqWIDxFfn5XdVjfDIXiFayuFpFkP WIda9i8Sc7fxoeyqQ+se8s+1SQ64MLmkULIW3jjcxweR1hTTHtf2nzLGWxwGH7jZ IPgwzGl8wpRvhQv4FImr5aWuDzjCYtiQarnG4sdafpFjGgzFtSEIjxp1BW7tnfZM 2zXZklxFtSPwmM3+tOkGBOpATRcdUNAMTOkvXldpDA== -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org