$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa File: 31B5D564824311EF9C69B985C4F9AE02.roa (raw, json) Hash identifier: 0KKoIgPnaxGw1IWLTi+1Y4QLgrCa0iXBtWTQo2EQ2Zc= Subject key identifier: 8D:50:8E:B2:E5:26:B9:67:9D:F6:87:05:FB:8B:1E:AE:2F:7F:C2:E1 Certificate issuer: /CN=A9142E1E/serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Certificate serial: 1C Authority key identifier: 1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa Signing time: Tue 19 Nov 2024 10:33:12 +0000 ROA not before: Tue 19 Nov 2024 10:33:12 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152465 IP address blocks: 157.15.188.0/24 maxlen: 24 157.15.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E/serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Validity Not Before: Nov 19 10:33:12 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=673c6967-0c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4d:fe:0c:7e:ca:84:ba:a4:2c:93:86:0d:ea: 2d:b7:44:6c:27:98:fd:a4:40:29:8e:35:bc:a5:d7: 13:85:14:8f:3c:94:3d:10:83:ca:89:db:18:90:6e: 1d:6d:43:49:40:41:df:c8:c1:d4:bc:41:c2:d8:1e: 7e:2d:22:27:e1:99:7f:f2:d8:1d:47:f2:ae:f0:8f: 2c:3d:18:53:f2:3c:7c:66:c2:2b:7f:df:35:f0:74: 9c:75:ba:a9:a9:53:59:00:67:51:fb:e7:cf:b8:17: 28:e3:59:96:61:48:de:78:64:18:51:05:5d:eb:1e: 9a:c1:40:eb:cd:50:c1:bf:d8:7d:b0:e0:0d:c0:96: 8a:0f:a5:26:fc:71:dd:85:8a:6a:7a:1e:a2:97:39: bc:78:eb:c9:8b:f0:e0:58:c3:c2:e7:ad:57:50:a4: 13:2f:32:90:ed:1e:f4:53:96:ec:c3:c6:24:83:f9: 71:ad:17:9b:45:b1:01:2f:77:01:d0:0b:9e:42:4f: 2f:46:64:b8:ae:29:4c:ce:19:c1:2d:d8:2b:c7:5e: b9:ee:71:a2:0c:33:f1:30:67:39:64:89:51:9f:0b: 81:48:43:a0:34:44:05:b2:2a:1c:c4:8a:ee:aa:55: 9e:7d:3e:b6:fe:be:4d:3e:f1:64:07:a3:55:28:ac: 45:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:50:8E:B2:E5:26:B9:67:9D:F6:87:05:FB:8B:1E:AE:2F:7F:C2:E1 X509v3 Authority Key Identifier: keyid:1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.188.0/23 Signature Algorithm: sha256WithRSAEncryption 58:b2:6b:09:c0:30:d1:5b:54:52:59:13:33:9d:4d:72:f7:fb: f6:ac:13:0f:97:8a:39:2e:68:b7:bf:35:33:95:d8:22:e1:2b: e2:73:4d:c8:ab:91:44:60:e9:ce:04:39:c1:70:f0:61:c9:84: 91:62:3c:5a:37:08:27:ee:26:bc:55:a1:77:c4:54:5b:a2:d6: 41:b3:69:d2:1a:75:ff:25:4c:5c:0d:8c:22:e3:86:97:b0:cf: 77:76:c6:bf:d4:34:1c:51:9c:6a:32:9b:8e:58:f9:a8:61:28: 45:ac:98:ef:88:ad:94:2d:fb:7a:a2:0f:f8:49:4d:f6:0f:7d: 9f:cb:d9:26:32:69:21:45:fd:bc:09:c8:85:93:bb:f8:ab:7d: 20:1b:24:dc:c2:6c:19:ce:72:2d:78:40:d2:a4:a9:73:ac:95: 58:5f:26:6c:77:60:07:5d:95:9b:ef:26:78:b3:b0:3d:53:e4: b1:2a:87:3b:64:b6:29:a3:d9:43:e6:09:35:dc:6d:89:df:67: dd:61:21:aa:e9:93:7a:fe:6c:0b:c4:92:c9:eb:ac:f0:80:eb: 5c:98:d8:b4:87:77:c3:5f:1f:28:0c:f1:36:a3:a6:83:44:43: 10:4f:e7:19:39:18:a2:11:1b:1d:d0:4f:eb:e4:9e:e7:dc:02: 76:ab:92:a9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMUJERUIwQzI3NUM5MEU4MUJGQTNBQUZFMjEzRTRFNzEy MUVCNzM0QTAeFw0yNDExMTkxMDMzMTJaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2M2OTY3LTBjOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcTf4MfsqEuqQsk4YN6i23RGwnmP2kQCmONbyl1xOFFI88lD0Qg8qJ2xiQbh1t Q0lAQd/IwdS8QcLYHn4tIifhmX/y2B1H8q7wjyw9GFPyPHxmwit/3zXwdJx1uqmp U1kAZ1H758+4FyjjWZZhSN54ZBhRBV3rHprBQOvNUMG/2H2w4A3AlooPpSb8cd2F imp6HqKXObx468mL8OBYw8LnrVdQpBMvMpDtHvRTluzDxiSD+XGtF5tFsQEvdwHQ C55CTy9GZLiuKUzOGcEt2CvHXrnucaIMM/EwZzlkiVGfC4FIQ6A0RAWyKhzEiu6q VZ59Prb+vk0+8WQHo1UorEX3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjVCOsuUm uWed9ocF+4seri9/wuEwHwYDVR0jBBgwFoAUG96wwnXJDoG/o6r+IT5OcSHrc0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzEzRDgwNjA4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL0c5Nnd3blhKRG9HX282ci1JVDVPY1NIcmMw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRzk2d3duWEpEb0dfbzZyLUlUNU9jU0hyYzBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS8xM0Q4MDYwODgyNDIxMUVGQUQzRDgxODFDNEY5QUUwMi8zMUI1RDU2NDgy NDMxMUVGOUM2OUI5ODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PvDANBgkqhkiG9w0BAQsFAAOCAQEAWLJrCcAw0VtUUlkT M51Ncvf79qwTD5eKOS5ot781M5XYIuEr4nNNyKuRRGDpzgQ5wXDwYcmEkWI8WjcI J+4mvFWhd8RUW6LWQbNp0hp1/yVMXA2MIuOGl7DPd3bGv9Q0HFGcajKbjlj5qGEo RayY74itlC37eqIP+ElN9g99n8vZJjJpIUX9vAnIhZO7+Kt9IBsk3MJsGc5yLXhA 0qSpc6yVWF8mbHdgB12Vm+8meLOwPVPksSqHO2S2KaPZQ+YJNdxtid9n3WEhqumT ev5sC8SSyeus8IDrXJjYtId3w18fKAzxNqOmg0RDEE/nGTkYohEbHdBP6+Se59wC dquSqQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org