$ rpki-client -vvf rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/31BF0C48D8DE11EDBACEEE7FC4F9AE02.roa File: 31BF0C48D8DE11EDBACEEE7FC4F9AE02.roa (raw, json) Hash identifier: aYe7jpDbVLpSbmC+1cWkvEJAvjZYidvSDHpeA1ubI/o= Subject key identifier: 50:1D:34:22:D1:DA:22:66:BA:80:DE:78:22:AB:02:33:61:EB:1F:B9 Certificate issuer: /CN=A9123193/serialNumber=0BBCFDE768675B994F2A23114C351412201555B8 Certificate serial: 0680 Authority key identifier: 0B:BC:FD:E7:68:67:5B:99:4F:2A:23:11:4C:35:14:12:20:15:55:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/31BF0C48D8DE11EDBACEEE7FC4F9AE02.roa Signing time: Mon 08 Jul 2024 23:00:42 +0000 ROA not before: Mon 08 Jul 2024 23:00:42 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141457 IP address blocks: 103.159.236.0/23 maxlen: 23 2406:ddc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.crl rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123193/serialNumber=0BBCFDE768675B994F2A23114C351412201555B8 Validity Not Before: Jul 8 23:00:42 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=668c6f9a-e408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:36:f9:52:49:50:4d:7a:fa:15:45:c8:a3:31: 22:67:1e:7c:03:9e:89:42:4d:9d:ac:6e:85:ae:bd: 92:a8:66:f0:c1:6f:2a:56:0c:d8:42:1f:35:19:90: 59:bb:f3:3a:05:da:d1:18:b8:9d:96:5f:ff:94:14: b8:1d:26:57:8d:43:f1:bc:ab:26:7d:49:fb:8b:3d: cd:fa:2a:ff:a8:22:d5:d8:cc:e9:41:2e:2d:c8:4d: d8:00:3c:ea:03:12:60:e5:a3:14:a0:4f:b7:15:8e: f3:60:fa:ba:a5:14:5a:7f:ea:fa:b7:10:41:25:03: 04:d7:b5:c1:6e:f1:52:40:bb:b0:cf:3a:23:08:b6: 2c:cd:a3:97:9e:ff:7d:df:85:c8:19:9a:1f:08:30: 2a:dd:9f:b2:f6:2a:cb:89:88:c3:15:f9:2d:ff:f0: 26:83:45:15:dc:3e:68:df:be:78:31:ad:05:ad:cc: 3d:b8:e3:e0:a2:ff:9a:dc:f6:00:3c:9f:ea:cc:45: 93:a6:17:f7:ef:82:d6:58:d8:0f:31:3d:7d:c8:94: 7b:fb:bd:2e:9f:c0:c4:70:d6:6d:44:72:d6:df:04: 83:ff:b0:bf:6a:49:9c:35:b5:64:03:fc:f3:3b:56: a8:f9:1c:c6:48:99:cb:40:d8:ee:66:1a:41:40:14: 23:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1D:34:22:D1:DA:22:66:BA:80:DE:78:22:AB:02:33:61:EB:1F:B9 X509v3 Authority Key Identifier: keyid:0B:BC:FD:E7:68:67:5B:99:4F:2A:23:11:4C:35:14:12:20:15:55:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/31BF0C48D8DE11EDBACEEE7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.236.0/23 IPv6: 2406:ddc0::/32 Signature Algorithm: sha256WithRSAEncryption 04:94:ba:45:44:a7:be:cb:e3:3f:75:0a:fc:c8:90:ff:26:b1: 76:78:d9:2b:4a:ab:b9:80:cd:7f:58:99:62:84:3c:8a:5b:d4: 06:4f:1d:2c:53:b7:b1:1f:ee:32:c7:2f:52:d8:11:32:b3:ac: 1b:6e:16:42:90:0f:7f:1c:0b:e7:4d:a3:ef:59:76:5d:a2:8b: 0b:85:a2:ea:9b:97:1c:db:d9:5d:5c:7e:b8:87:b1:d4:ac:9b: 8e:70:d6:3e:72:3d:11:50:68:62:cd:4a:3d:fa:3c:5b:c9:ec: fc:26:92:67:ff:48:26:49:d0:2d:3c:f6:b5:7c:7a:36:51:3f: f0:56:cc:87:9b:6b:aa:cc:f5:73:3e:9c:6f:5e:c9:05:67:74: a6:ef:7b:1e:09:48:e8:7d:3a:a0:f0:c7:34:30:cc:a2:9b:3c: ef:a9:15:e1:c7:20:e7:90:b8:c9:bb:56:ce:da:4a:ae:3d:12: 72:87:54:1e:d4:e6:a1:66:cd:8e:94:82:68:22:9e:b1:14:83: e9:63:04:17:69:14:fc:5f:07:79:b6:20:ca:d8:70:dc:63:b9: a8:2f:fd:26:25:bc:a1:1e:c8:a4:e9:da:19:f7:71:98:78:78: 7d:7e:5b:67:0a:e0:16:d0:ca:af:f8:eb:02:fc:a6:86:aa:0f: 11:77:57:21 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxOTMxMTAvBgNVBAUTKDBCQkNGREU3Njg2NzVCOTk0RjJBMjMxMTRDMzUxNDEy MjAxNTU1QjgwHhcNMjQwNzA4MjMwMDQyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjNmY5YS1lNDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Db5UklQTXr6FUXIozEiZx58A56JQk2drG6Frr2SqGbwwW8qVgzYQh81GZBZ u/M6BdrRGLidll//lBS4HSZXjUPxvKsmfUn7iz3N+ir/qCLV2MzpQS4tyE3YADzq AxJg5aMUoE+3FY7zYPq6pRRaf+r6txBBJQME17XBbvFSQLuwzzojCLYszaOXnv99 34XIGZofCDAq3Z+y9irLiYjDFfkt//Amg0UV3D5o3754Ma0Frcw9uOPgov+a3PYA PJ/qzEWTphf374LWWNgPMT19yJR7+70un8DEcNZtRHLW3wSD/7C/akmcNbVkA/zz O1ao+RzGSJnLQNjuZhpBQBQjKQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFAdNCLR 2iJmuoDeeCKrAjNh6x+5MB8GA1UdIwQYMBaAFAu8/edoZ1uZTyojEUw1FBIgFVW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE5My9DQThBNEIzQzM5 RDkxMUVCQTc4MUZBNTdDNEY5QUUwMi9DN3o5NTJoblc1bFBLaU1SVERVVUVpQVZW YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3ejk1MmhuVzVsUEtpTVJURFVVRWlBVlZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMxOTMvQ0E4QTRCM0MzOUQ5MTFFQkE3ODFGQTU3QzRGOUFFMDIvMzFCRjBDNDhE OERFMTFFREJBQ0VFRTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnn+wwDQQCAAIwBwMFACQG3cAwDQYJKoZIhvcNAQELBQAD ggEBAASUukVEp77L4z91CvzIkP8msXZ42StKq7mAzX9YmWKEPIpb1AZPHSxTt7Ef 7jLHL1LYETKzrBtuFkKQD38cC+dNo+9Zdl2iiwuFouqblxzb2V1cfriHsdSsm45w 1j5yPRFQaGLNSj36PFvJ7Pwmkmf/SCZJ0C089rV8ejZRP/BWzIeba6rM9XM+nG9e yQVndKbvex4JSOh9OqDwxzQwzKKbPO+pFeHHIOeQuMm7Vs7aSq49EnKHVB7U5qFm zY6UgmginrEUg+ljBBdpFPxfB3m2IMrYcNxjuagv/SYlvKEeyKTp2hn3cZh4eH1+ W2cK4BbQyq/46wL8poaqDxF3VyE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org