$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa File: 31521640C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: DOUqu1Qj+MU4+uk8We4DlL9rOQ0u7xDb2aWTGQZFr1c= Subject key identifier: 31:A0:69:A1:3F:7A:00:06:D7:90:54:2C:91:11:BC:4B:71:CF:13:90 Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 02DF Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa Signing time: Fri 29 Nov 2024 01:14:43 +0000 ROA not before: Fri 29 Nov 2024 01:14:43 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132742 IP address blocks: 43.241.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446 Validity Not Before: Nov 29 01:14:43 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67491583-d529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c2:0e:92:97:8f:6a:b3:a8:4b:64:31:2d:1e: 99:d0:1a:6b:0b:c2:33:2f:4f:20:f2:2c:bc:e5:fd: cd:61:1b:12:4b:1b:09:54:a6:79:c8:dd:56:57:10: cb:4a:4a:c4:e3:bf:f8:b6:0d:fd:77:0e:86:89:76: 85:67:02:9d:f7:c4:38:46:07:fc:b2:c1:b8:e7:51: 7b:ce:df:4b:47:5f:e9:e9:ae:eb:64:45:43:68:00: 19:02:8d:27:05:14:9a:6f:49:37:9d:83:4d:4e:47: b3:48:3e:6e:b2:79:36:bc:c7:b2:cd:0e:aa:3b:62: 09:2d:fb:c0:c0:3b:aa:8f:5c:2f:b5:67:73:a1:c2: 3b:68:ba:02:41:e3:94:51:91:dc:32:6b:b0:4c:b3: 4d:e7:3a:6a:c8:09:a4:ba:aa:b5:09:99:bd:2a:38: f5:56:4d:74:d5:04:c6:d4:17:4f:fc:60:2c:fb:81: 8a:5b:35:72:16:e8:08:4c:fe:f2:3b:b1:cb:bc:f0: 9c:03:ca:3b:cc:eb:47:7c:36:7a:4e:8a:df:a3:96: ac:3e:fc:14:8b:90:da:8d:11:d1:6d:e6:1b:b6:c1: 2d:23:80:b0:fe:b7:b9:7c:8e:90:ed:63:18:4a:99: e3:78:c9:43:a5:bb:f1:7e:57:92:ef:c9:51:f8:a5: c1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A0:69:A1:3F:7A:00:06:D7:90:54:2C:91:11:BC:4B:71:CF:13:90 X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.252.0/22 Signature Algorithm: sha256WithRSAEncryption b8:e6:18:64:93:a8:fc:51:43:1f:f7:61:6a:6c:a4:03:80:c4: 40:63:6c:1d:2d:ea:9a:5e:16:b8:29:13:9f:7e:98:d3:bf:61: a3:00:c8:47:da:33:f8:03:ef:6d:79:8c:bf:9c:f5:9b:8e:b1: e2:31:0d:e0:08:ad:d5:8a:af:cf:f8:d3:98:d4:ea:77:43:4c: c3:df:2b:44:8c:69:23:16:43:9c:60:5d:7f:c1:38:ff:6d:44: d4:07:84:3e:f5:02:90:b5:59:6c:39:29:4d:6c:13:9a:84:8f: 07:09:1a:f3:05:69:c7:b8:04:e1:7a:49:7c:e6:ba:ad:b8:57: 93:07:1c:47:85:b1:45:d3:f7:42:e5:64:b7:a7:a2:5d:16:56: 14:8c:9b:d2:6a:32:19:d4:04:a8:2a:a4:60:eb:11:08:c9:83: cf:6f:b1:5f:20:9f:be:67:04:ff:fd:f8:2b:9e:29:43:0f:b8: d5:fa:7d:50:e2:8b:6c:bb:50:6a:0e:7e:10:4c:47:a3:e9:c8: de:07:86:61:3a:ed:3a:1b:9f:a7:77:b7:8a:61:42:b6:e4:e8: 0c:ac:09:8c:9c:39:54:33:8d:09:44:c2:c5:86:85:6f:a3:0e: 02:21:ff:52:d7:d0:23:57:ae:d7:6c:09:c1:48:e8:92:32:49: db:f0:e6:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjQxMTI5MDExNDQzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MTU4My1kNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8IOkpeParOoS2QxLR6Z0BprC8IzL08g8iy85f3NYRsSSxsJVKZ5yN1WVxDL SkrE47/4tg39dw6GiXaFZwKd98Q4Rgf8ssG451F7zt9LR1/p6a7rZEVDaAAZAo0n BRSab0k3nYNNTkezSD5usnk2vMeyzQ6qO2IJLfvAwDuqj1wvtWdzocI7aLoCQeOU UZHcMmuwTLNN5zpqyAmkuqq1CZm9Kjj1Vk101QTG1BdP/GAs+4GKWzVyFugITP7y O7HLvPCcA8o7zOtHfDZ6Torfo5asPvwUi5DajRHRbeYbtsEtI4Cw/re5fI6Q7WMY SpnjeMlDpbvxfleS78lR+KXBfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDGgaaE/ egAG15BULJERvEtxzxOQMB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvMzE1MjE2NDBD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr8fwwDQYJKoZIhvcNAQELBQADggEBALjmGGSTqPxRQx/3 YWpspAOAxEBjbB0t6ppeFrgpE59+mNO/YaMAyEfaM/gD7215jL+c9ZuOseIxDeAI rdWKr8/405jU6ndDTMPfK0SMaSMWQ5xgXX/BOP9tRNQHhD71ApC1WWw5KU1sE5qE jwcJGvMFace4BOF6SXzmuq24V5MHHEeFsUXT90LlZLenol0WVhSMm9JqMhnUBKgq pGDrEQjJg89vsV8gn75nBP/9+CueKUMPuNX6fVDii2y7UGoOfhBMR6PpyN4HhmE6 7Tobn6d3t4phQrbk6AysCYycOVQzjQlEwsWGhW+jDgIh/1LX0CNXrtdsCcFI6JIy Sdvw5mc= -----END CERTIFICATE-----Generated at Sat Apr 5 16:24:29 2025 by rpki-client