$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/31E1DE72B04B11EE9F3B384BC4F9AE02.roa File: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (raw, json) Hash identifier: SUqha04b2ntyDAUGFXYiqHZijUV69AXBCBCtIkXQ4as= Subject key identifier: 2B:36:19:5F:A8:CD:80:DA:AD:84:83:0C:BD:9D:D7:84:D6:CE:B3:B6 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 126D Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/31E1DE72B04B11EE9F3B384BC4F9AE02.roa Signing time: Wed 06 Nov 2024 17:05:15 +0000 ROA not before: Wed 06 Nov 2024 17:05:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137442 IP address blocks: 103.191.142.0/23 maxlen: 24 203.12.229.0/24 maxlen: 24 203.12.230.0/24 maxlen: 24 2001:df0:ca00::/48 maxlen: 48 2001:df0:ca01::/48 maxlen: 48 2001:df0:ca02::/48 maxlen: 48 2001:df0:ca03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4717 (0x126d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Nov 6 17:05:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672ba1cb-1143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4d:ec:86:19:bd:4d:cf:b8:4a:66:25:40:2e: 61:82:bf:ec:fd:90:ae:66:cf:b5:30:d6:13:9e:6a: 7d:7c:d4:d4:46:2c:2a:7a:48:f6:00:e1:98:08:59: 1a:d0:e4:9c:26:d6:a6:39:0e:44:87:3e:1a:c4:b8: 94:32:e8:e3:e8:d7:e8:1e:22:b5:e7:a2:77:00:65: 3a:4a:e4:92:4b:c4:bd:49:03:67:23:02:89:a7:3d: f0:41:0d:a5:8b:3d:50:07:20:9f:53:80:7e:ba:b1: b1:9c:a9:14:26:b9:3b:e4:4d:94:d0:bf:36:7d:cb: f4:17:30:57:96:c0:83:80:99:54:e9:b1:ae:5a:63: c6:eb:e1:26:19:21:71:f0:b6:28:f7:23:ac:12:db: f8:d6:45:e7:26:5f:88:ac:0e:d6:de:2e:f5:05:4d: a0:ce:ae:a5:00:94:b8:fe:09:c4:16:81:3c:13:cf: 5d:a1:00:f4:9a:2c:cf:47:58:68:ee:73:fe:f5:45: d9:17:82:b2:76:30:8f:b3:d6:92:06:3a:db:26:e0: 2c:b5:02:71:8c:e5:b8:5d:8f:49:e2:5d:fb:53:5a: 9d:94:10:24:09:72:d5:b2:1b:21:0e:4f:98:f8:78: de:6b:65:be:d6:c1:93:a5:36:24:dd:e8:3f:85:46: b9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:36:19:5F:A8:CD:80:DA:AD:84:83:0C:BD:9D:D7:84:D6:CE:B3:B6 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/31E1DE72B04B11EE9F3B384BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.142.0/23 203.12.229.0-203.12.230.255 IPv6: 2001:df0:ca00::/46 Signature Algorithm: sha256WithRSAEncryption 9d:5b:4a:ab:f0:c9:46:e3:07:33:ba:60:75:08:28:fe:46:52: da:1b:2d:89:ef:44:e8:72:f1:1d:67:04:70:b0:5e:c7:fd:e9: 4a:31:37:bd:57:d8:c2:60:d0:04:c3:42:84:03:80:38:65:65: 01:b5:73:bc:55:6a:a9:66:01:dc:c4:21:8f:3a:9d:34:2b:12: c7:b9:dc:54:e4:3b:ad:68:54:36:0e:56:d8:ae:8b:fb:1b:b6: 6e:34:0b:5b:19:7d:ad:ca:b7:c0:1d:ab:b8:de:f2:a3:a5:5a: d7:1b:1f:e3:09:a9:84:00:27:e4:cf:1b:42:c7:1c:09:a8:2a: 6c:65:ef:62:bd:b8:3b:3f:28:56:c3:2d:0a:37:51:37:aa:0c: c3:4e:50:b1:43:40:97:3e:29:b9:41:5b:89:77:74:07:26:23: 6f:ff:c8:92:52:19:87:30:4e:33:7a:a4:77:ca:74:c1:cd:cb: 69:67:f8:6f:8d:c3:fa:aa:94:2f:f6:99:bd:bd:14:d0:27:03: ec:7e:42:59:c8:44:35:51:14:e2:39:28:09:c7:91:92:4e:21: 36:61:ed:f2:3f:89:6d:3f:dd:48:e2:8a:3c:7e:2a:79:21:71: 27:a6:ee:c8:b4:56:8a:68:4f:da:b7:62:5e:e2:c5:1e:ab:a2: 79:92:5e:35 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICEm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjQxMTA2MTcwNTE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYTFjYi0xMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7k3shhm9Tc+4SmYlQC5hgr/s/ZCuZs+1MNYTnmp9fNTURiwqekj2AOGYCFka 0OScJtamOQ5Ehz4axLiUMujj6NfoHiK156J3AGU6SuSSS8S9SQNnIwKJpz3wQQ2l iz1QByCfU4B+urGxnKkUJrk75E2U0L82fcv0FzBXlsCDgJlU6bGuWmPG6+EmGSFx 8LYo9yOsEtv41kXnJl+IrA7W3i71BU2gzq6lAJS4/gnEFoE8E89doQD0mizPR1ho 7nP+9UXZF4KydjCPs9aSBjrbJuAstQJxjOW4XY9J4l37U1qdlBAkCXLVshshDk+Y +Hjea2W+1sGTpTYk3eg/hUa5+wIDAQABo4ICtDCCArAwHQYDVR0OBBYEFCs2GV+o zYDarYSDDL2d14TWzrO2MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIxQkUvNUE1Nzc4NkNDMEM4MTFFOEFFODA1MzM0QzRGOUFFMDIvMzFFMURFNzJC MDRCMTFFRTlGM0IzODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBAFnv44wDAMEAMsM5QMEAMsM5jAPBAIAAjAJAwcCIAEN8MoA MA0GCSqGSIb3DQEBCwUAA4IBAQCdW0qr8MlG4wczumB1CCj+RlLaGy2J70TocvEd ZwRwsF7H/elKMTe9V9jCYNAEw0KEA4A4ZWUBtXO8VWqpZgHcxCGPOp00KxLHudxU 5DutaFQ2DlbYrov7G7ZuNAtbGX2tyrfAHau43vKjpVrXGx/jCamEACfkzxtCxxwJ qCpsZe9ivbg7PyhWwy0KN1E3qgzDTlCxQ0CXPim5QVuJd3QHJiNv/8iSUhmHME4z eqR3ynTBzctpZ/hvjcP6qpQv9pm9vRTQJwPsfkJZyEQ1URTiOSgJx5GSTiE2Ye3y P4ltP91I4oo8fip5IXEnpu7ItFaKaE/at2Je4sUeq6J5kl41 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org