$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/31603938763B11EF810E6D1FC4F9AE02.roa File: 31603938763B11EF810E6D1FC4F9AE02.roa (raw, json) Hash identifier: 1j19aGSBfpfRncv0fjwzfiAR4hfpnxlqZfSFVELRCHw= Subject key identifier: 18:B5:BF:44:6C:AB:AC:C4:90:E7:F1:03:DB:95:DD:3D:72:2B:D4:7F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1E6B Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/31603938763B11EF810E6D1FC4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:37 +0000 ROA not before: Sat 02 Nov 2024 16:23:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58631 IP address blocks: 103.5.28.0/24 maxlen: 24 2001:df0:247::/48 maxlen: 48 2400:c760:1::/48 maxlen: 48 2400:c760:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7787 (0x1e6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 2 16:23:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67265209-b6a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e1:3d:99:2c:ee:bc:66:e8:7a:43:13:53:98: 83:9d:43:8d:d5:4a:2e:88:57:36:20:92:db:b9:eb: cc:72:9d:48:16:41:3f:ba:b5:c4:59:5c:f0:21:e3: 32:30:6e:e6:68:da:85:a8:1f:33:d1:2e:2c:24:3c: b8:b3:8e:17:8c:5b:a3:ef:4b:db:18:27:7e:b4:f1: 6f:0d:65:44:d8:e5:d0:ba:9b:fc:84:ba:77:2d:51: 69:72:5d:2a:f3:3c:0a:51:d1:97:24:ee:84:33:67: 8a:ff:90:02:89:3c:e4:8a:b6:49:83:26:46:84:67: 0a:aa:b7:e7:fb:55:df:8a:33:75:c1:d1:51:f3:e3: 10:30:b3:47:55:44:8c:20:8e:f2:73:86:22:ed:cd: 92:0f:49:a3:d7:83:90:8d:0d:04:ab:d2:bb:91:7a: 9b:1c:b0:2c:64:6d:69:3f:36:b4:cd:2d:3a:f6:b0: ef:24:c8:f5:c9:22:dc:dd:33:89:9f:08:54:ca:17: 8b:db:7d:a6:32:1d:ce:ed:d4:5f:3f:68:8d:3d:c1: 59:3e:45:da:16:0b:1d:3f:9a:93:ad:2f:6e:1d:5c: 41:5d:a8:1b:a0:e4:74:85:82:59:1a:e9:3f:48:72: 48:bf:cb:5d:09:e0:8d:5d:86:70:e6:28:56:5c:6d: 42:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B5:BF:44:6C:AB:AC:C4:90:E7:F1:03:DB:95:DD:3D:72:2B:D4:7F X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/31603938763B11EF810E6D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.28.0/24 IPv6: 2001:df0:247::/48 2400:c760:1::-2400:c760:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 39:cf:53:3a:b0:50:b1:a3:0b:79:b4:a9:69:aa:9f:93:61:16: d9:e3:16:a7:95:c8:e1:76:f7:db:f7:64:c1:20:0b:59:c1:ca: fa:f7:5d:a3:b6:9d:22:8c:9f:90:e2:cb:51:da:c1:82:b3:76: 5a:d8:6c:47:d3:53:48:4d:0d:c1:8e:d4:0c:22:d0:a5:5b:c8: 0f:b3:de:ef:47:ab:ac:6e:6a:4e:c4:00:84:be:44:06:6e:71: d7:cd:a1:af:af:6e:d2:6c:4d:09:1f:da:73:79:94:01:b4:10: b7:0b:4c:9c:1c:65:46:50:25:f4:8a:21:07:34:c9:9a:33:8d: a8:ed:57:d2:a0:25:78:d2:3e:df:64:8d:c2:a5:18:2f:92:64: f9:17:64:f6:af:5c:d4:67:9f:53:42:df:84:56:76:6c:95:62: a4:ef:81:95:3e:a5:ac:5f:28:26:b3:23:cd:5f:34:54:49:40: d8:bb:ba:3f:42:bd:af:9a:e2:91:e3:1b:89:a0:7b:c6:a9:83: dd:25:1a:60:4e:ef:2c:3c:c5:37:d0:92:a8:c8:8b:67:77:c5: 92:0e:e9:19:83:73:ed:9e:5f:5f:d5:b0:f5:4f:c8:6c:6b:06: bf:3a:74:a6:6e:27:dc:39:e9:2e:42:66:cd:d7:d4:e1:d9:88: a1:8e:24:ab -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICHmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjQxMTAyMTYyMzM3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIwOS1iNmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAleE9mSzuvGboekMTU5iDnUON1UouiFc2IJLbuevMcp1IFkE/urXEWVzwIeMy MG7maNqFqB8z0S4sJDy4s44XjFuj70vbGCd+tPFvDWVE2OXQupv8hLp3LVFpcl0q 8zwKUdGXJO6EM2eK/5ACiTzkirZJgyZGhGcKqrfn+1XfijN1wdFR8+MQMLNHVUSM II7yc4Yi7c2SD0mj14OQjQ0Eq9K7kXqbHLAsZG1pPza0zS069rDvJMj1ySLc3TOJ nwhUyheL232mMh3O7dRfP2iNPcFZPkXaFgsdP5qTrS9uHVxBXagboOR0hYJZGuk/ SHJIv8tdCeCNXYZw5ihWXG1CRQIDAQABo4ICujCCArYwHQYDVR0OBBYEFBi1v0Rs q6zEkOfxA9uV3T1yK9R/MB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMzE2MDM5Mzg3 NjNCMTFFRjgxMEU2RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMAwEAgABMAYDBABnBRwwIwQCAAIwHQMHACABDfACRzASAwcAJADHYAABAwcA JADHYAACMA0GCSqGSIb3DQEBCwUAA4IBAQA5z1M6sFCxowt5tKlpqp+TYRbZ4xan lcjhdvfb92TBIAtZwcr6912jtp0ijJ+Q4stR2sGCs3Za2GxH01NITQ3BjtQMItCl W8gPs97vR6usbmpOxACEvkQGbnHXzaGvr27SbE0JH9pzeZQBtBC3C0ycHGVGUCX0 iiEHNMmaM42o7VfSoCV40j7fZI3CpRgvkmT5F2T2r1zUZ59TQt+EVnZslWKk74GV PqWsXygmsyPNXzRUSUDYu7o/Qr2vmuKR4xuJoHvGqYPdJRpgTu8sPMU30JKoyItn d8WSDukZg3Ptnl9f1bD1T8hsawa/OnSmbifcOekuQmbN19Th2YihjiSr -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:51 2024 by rpki-client on console-fra.rpki-client.org