$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa File: 31A71E34407111EFAC14A640C4F9AE02.roa (raw, json) Hash identifier: o7hk30ShUIz7UkIOVQj3yZK9QaxLJPC0RUpttTojnJI= Subject key identifier: 0D:B7:E0:D9:5B:7D:B8:02:BB:A5:91:E0:54:86:85:26:6A:32:F8:2F Certificate issuer: /CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Certificate serial: 2B Authority key identifier: B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa Signing time: Fri 27 Sep 2024 06:30:17 +0000 ROA not before: Fri 27 Sep 2024 06:30:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45441 IP address blocks: 103.2.112.0/22 maxlen: 22 115.178.60.0/24 maxlen: 24 115.178.61.0/24 maxlen: 24 115.178.62.0/24 maxlen: 24 115.178.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Validity Not Before: Sep 27 06:30:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f650f9-56e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:59:d8:35:c8:26:4d:12:fd:e0:ff:26:6b: 9a:bc:40:a8:96:e9:79:47:e8:77:ae:62:64:e6:6b: d3:7a:93:2e:a8:be:b9:49:18:62:83:05:5e:82:49: 4f:99:50:dc:9f:62:24:4e:46:3e:a2:f5:93:76:bb: ea:62:a7:06:44:a4:ce:f2:f5:6f:e2:e5:ab:1b:e7: f5:04:d8:af:12:0c:1d:5a:0c:7d:da:81:e6:a1:ea: 60:50:6f:45:e6:25:c1:ff:dc:02:3e:14:f8:4c:2c: 40:5e:32:bb:a4:b9:da:67:3d:8c:ad:1b:8a:1a:f3: 14:59:4e:e1:2c:02:88:9f:dd:2d:c1:cf:09:d5:7b: f6:c3:25:45:41:47:bb:06:3a:97:fc:41:5b:38:dc: 54:a7:50:9b:58:d6:2a:fc:c1:06:24:24:74:29:06: 54:4a:0b:52:dd:be:a2:b1:20:02:2c:de:b8:1f:eb: 21:78:2c:a1:ab:b8:ab:81:65:68:33:48:34:a8:6f: 59:fe:4a:52:5e:4a:48:d3:06:65:a3:1f:b0:ec:b7: 34:48:dd:b8:e5:8f:1a:d3:39:1a:8e:3e:87:d6:ba: 5e:48:35:6d:4c:df:45:ec:29:11:8a:d7:60:2c:37: a4:9d:a9:bf:93:aa:68:35:e9:c0:bf:2e:b2:2d:2c: 99:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B7:E0:D9:5B:7D:B8:02:BB:A5:91:E0:54:86:85:26:6A:32:F8:2F X509v3 Authority Key Identifier: keyid:B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.112.0/22 115.178.60.0/22 Signature Algorithm: sha256WithRSAEncryption 36:22:80:fb:dc:4c:bf:9c:c1:dd:2e:c1:28:db:78:5e:41:64: 79:c2:6a:cd:a2:38:a4:a4:5a:2e:0a:15:62:9e:8c:56:a1:7e: d1:e9:47:15:7d:e1:22:d9:93:48:bf:24:84:3e:f4:0a:2d:30: a8:31:79:cf:d6:b6:13:45:f0:9e:5e:41:de:78:ae:39:33:71: af:29:ab:70:49:d8:ca:aa:a5:9c:d6:86:56:9e:12:5e:75:b2: 13:78:45:14:ec:42:ee:49:2d:d2:92:cb:ef:ce:36:af:2f:84: af:ac:a1:66:28:79:71:df:ea:93:03:04:36:18:d5:70:0c:6a: c5:3f:f8:01:0b:79:5a:af:4a:30:0b:af:64:41:74:3d:4e:3b: 84:fe:77:c0:7e:f2:93:db:9b:3e:2c:a6:1c:8e:91:f9:42:30: c8:d4:4e:53:2c:56:10:00:88:1b:84:62:80:38:8f:d9:ac:e4: 5e:e7:a0:0c:3e:74:36:e0:26:bb:38:4c:c4:e3:a2:b6:c2:5b: 8d:a7:03:36:fb:0f:e0:f4:d2:af:f7:f3:e6:42:ab:9b:f4:f0: 95:f2:b9:75:9a:7a:06:49:17:3b:bc:e9:39:c5:9e:0b:a6:69: 18:7b:72:f8:cc:52:b4:13:4e:6e:fe:2f:b0:d7:7e:eb:d3:50: 3c:38:89:41 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MUE5QzExMC8GA1UEBRMoQjU5REZEQjUwOEE5QkFCRENGOERBQUFGRTNGM0RFNjk1 OUZCMTNBQTAeFw0yNDA5MjcwNjMwMTdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjY1MGY5LTU2ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6D1nYNcgmTRL94P8ma5q8QKiW6XlH6HeuYmTma9N6ky6ovrlJGGKDBV6CSU+Z UNyfYiRORj6i9ZN2u+pipwZEpM7y9W/i5asb5/UE2K8SDB1aDH3ageah6mBQb0Xm JcH/3AI+FPhMLEBeMrukudpnPYytG4oa8xRZTuEsAoif3S3BzwnVe/bDJUVBR7sG Opf8QVs43FSnUJtY1ir8wQYkJHQpBlRKC1LdvqKxIAIs3rgf6yF4LKGruKuBZWgz SDSob1n+SlJeSkjTBmWjH7DstzRI3bjljxrTORqOPofWul5INW1M30XsKRGK12As N6Sdqb+Tqmg16cC/LrItLJmZAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUDbfg2Vt9 uAK7pZHgVIaFJmoy+C8wHwYDVR0jBBgwFoAUtZ39tQipur3Pjaqv4/PeaVn7E6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxQTlDLzhFOEIzRTdFNDA3 MDExRUZCNEExODAwQUM0RjlBRTAyL3RaMzl0UWlwdXIzUGphcXY0X1BlYVZuN0U2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFozOXRRaXB1cjNQamFxdjRfUGVhVm43RTZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUE5Qy84RThCM0U3RTQwNzAxMUVGQjRBMTgwMEFDNEY5QUUwMi8zMUE3MUUzNDQw NzExMUVGQUMxNEE2NDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcCcAMEAnOyPDANBgkqhkiG9w0BAQsFAAOCAQEANiKA+9xM v5zB3S7BKNt4XkFkecJqzaI4pKRaLgoVYp6MVqF+0elHFX3hItmTSL8khD70Ci0w qDF5z9a2E0Xwnl5B3niuOTNxrymrcEnYyqqlnNaGVp4SXnWyE3hFFOxC7kkt0pLL 7842ry+Er6yhZih5cd/qkwMENhjVcAxqxT/4AQt5Wq9KMAuvZEF0PU47hP53wH7y k9ubPiymHI6R+UIwyNROUyxWEACIG4RigDiP2azkXuegDD50NuAmuzhMxOOitsJb jacDNvsP4PTSr/fz5kKrm/TwlfK5dZp6BkkXO7zpOcWeC6ZpGHty+MxStBNObv4v sNd+69NQPDiJQQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org