$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/675EE9DC87E711EEAC6C0B48C4F9AE02.roa File: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (raw, json) Hash identifier: FHM4CrQwfj0OG9hZmIW9/S1AWP37xh5i4F8wos+JZ3g= Subject key identifier: 52:62:28:A0:FE:1F:3C:33:69:FA:70:79:62:40:BC:0F:F1:D7:36:40 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 02 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/675EE9DC87E711EEAC6C0B48C4F9AE02.roa Signing time: Mon 20 Nov 2023 20:57:24 +0000 ROA not before: Mon 20 Nov 2023 20:57:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4648 IP address blocks: 156.69.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Nov 20 20:57:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655bc833-2f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:85:a3:c4:d6:a8:79:fc:55:7d:2d:56:70: 87:f5:b4:0d:b1:20:26:56:92:85:c1:4f:ff:b6:ce: 7e:cf:62:f2:7e:d7:e2:74:a1:a9:3e:04:9f:17:59: 3e:b6:e6:9a:e4:a9:c1:dd:d3:3d:59:00:87:e4:90: 11:35:e2:84:b4:54:e4:1b:96:97:ac:8c:bb:79:d6: 7f:f5:b5:5d:7e:a8:bc:ed:34:7a:3b:01:67:4e:28: 91:f7:ec:c0:bb:63:09:c7:fd:26:2f:29:89:44:f6: d5:65:98:df:a1:0e:af:be:33:51:fc:f3:95:c2:ca: 67:6e:36:7a:70:11:c4:21:9e:54:c7:10:c1:4f:15: c7:8a:56:45:1d:77:49:6c:ee:9f:45:df:f0:0a:84: 26:0d:d2:76:89:c0:c5:94:15:17:01:96:a3:4e:f8: d8:5e:03:8c:60:ed:36:67:96:3d:57:c9:de:06:80: ff:9c:12:87:85:2e:a3:62:63:c1:88:64:f9:e0:0e: e7:ce:dc:e6:23:85:5a:a6:7a:49:ec:2e:47:7a:ce: 4b:67:36:6f:7d:32:fc:ee:e2:b5:c2:c8:ff:57:4a: 3d:86:5c:cc:96:19:d1:c1:47:1f:66:58:b4:7c:18: f9:dc:26:47:21:6a:0f:01:57:48:86:da:64:71:16: 61:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:62:28:A0:FE:1F:3C:33:69:FA:70:79:62:40:BC:0F:F1:D7:36:40 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/675EE9DC87E711EEAC6C0B48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.69.31.0/24 Signature Algorithm: sha256WithRSAEncryption ae:6d:66:6c:f2:71:91:a2:2a:50:a0:2f:fc:69:c6:dc:fa:1d: d7:fd:92:a5:1b:9b:ed:23:4c:8c:f5:08:af:1f:57:14:a7:ac: b3:d2:e5:ec:6c:d4:8f:88:02:25:b2:3e:57:09:88:20:70:f9: 89:6b:69:c9:7d:54:45:64:06:25:af:73:fe:49:98:9b:26:c8: 04:08:d7:57:f0:52:e8:2b:3e:c8:90:be:30:4f:4b:7a:0f:64: 4b:44:73:a2:94:35:46:65:aa:47:b9:1d:cf:11:cb:c0:5b:69: 3e:46:ab:42:7b:af:3b:05:cf:5f:95:0e:96:2c:cb:3f:98:0e: e7:35:3e:8e:d0:14:2e:7e:40:e6:6e:97:56:b5:19:96:c8:ad: 4b:61:0b:c5:50:f7:4d:06:b1:0b:60:db:c6:71:87:4e:56:35: 69:f1:ad:eb:56:fc:46:9d:4e:7b:38:29:61:d3:59:93:94:f5: 28:ce:96:f2:1d:20:1a:fb:eb:74:9a:4a:ec:31:85:b0:bf:9b: 0b:65:ee:af:39:ef:9c:fd:f3:6d:9d:1e:91:2c:aa:37:96:31: 88:34:96:3e:63:05:0d:4b:67:a7:0f:50:2f:e6:02:0a:fb:c7: 9d:7a:bb:f1:82:65:62:01:85:ff:18:e9:2c:e5:84:cb:02:42: 31:32:56:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzE4QTExMC8GA1UEBRMoM0ExNTQzQkRGMzc3MkE5OEQyOTRFQjkwMDIzODAzRERE REYxMUU2MjAeFw0yMzExMjAyMDU3MjRaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWJjODMzLTJmODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCqIWjxNaoefxVfS1WcIf1tA2xICZWkoXBT/+2zn7PYvJ+1+J0oak+BJ8XWT62 5prkqcHd0z1ZAIfkkBE14oS0VOQblpesjLt51n/1tV1+qLztNHo7AWdOKJH37MC7 YwnH/SYvKYlE9tVlmN+hDq++M1H885XCymduNnpwEcQhnlTHEMFPFceKVkUdd0ls 7p9F3/AKhCYN0naJwMWUFRcBlqNO+NheA4xg7TZnlj1Xyd4GgP+cEoeFLqNiY8GI ZPngDufO3OYjhVqmeknsLkd6zktnNm99Mvzu4rXCyP9XSj2GXMyWGdHBRx9mWLR8 GPncJkchag8BV0iG2mRxFmHfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUmIooP4f PDNp+nB5YkC8D/HXNkAwHwYDVR0jBBgwFoAUOhVDvfN3KpjSlOuQAjgD3d3xHmIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMThBL0VDRkYyQUY4ODdF NjExRUU5N0U2Qzc0NkM0RjlBRTAyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEht SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT2hWRHZmTjNLcGpTbE91UUFqZ0QzZDN4SG1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi82NzVFRTlEQzg3 RTcxMUVFQUM2QzBCNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJxFHzANBgkqhkiG9w0BAQsFAAOCAQEArm1mbPJxkaIqUKAv /GnG3Pod1/2SpRub7SNMjPUIrx9XFKess9Ll7GzUj4gCJbI+VwmIIHD5iWtpyX1U RWQGJa9z/kmYmybIBAjXV/BS6Cs+yJC+ME9Leg9kS0RzopQ1RmWqR7kdzxHLwFtp PkarQnuvOwXPX5UOlizLP5gO5zU+jtAULn5A5m6XVrUZlsitS2ELxVD3TQaxC2Db xnGHTlY1afGt61b8Rp1OezgpYdNZk5T1KM6W8h0gGvvrdJpK7DGFsL+bC2Xurznv nP3zbZ0ekSyqN5YxiDSWPmMFDUtnpw9QL+YCCvvHnXq78YJlYgGF/xjpLOWEywJC MTJWmA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org