$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa File: 31B5D564824311EF9C69B985C4F9AE02.roa (raw, json) Hash identifier: 01z6cFU0jW8f9zVMrWHTT2CF3IVHm4aLS/DIHcV6lWM= Subject key identifier: F7:26:BB:F3:73:FA:6F:01:E7:E2:3C:73:5A:07:52:E5:A8:34:2A:46 Certificate issuer: /CN=A9142E1E/serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Certificate serial: 02 Authority key identifier: 1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa Signing time: Fri 04 Oct 2024 11:24:18 +0000 ROA not before: Fri 04 Oct 2024 11:24:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152465 IP address blocks: 157.15.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E/serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Validity Not Before: Oct 4 11:24:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66ffd062-b221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:be:ec:e8:8d:36:dd:f2:f3:12:fc:4a:82:e1: a6:42:1d:ca:b2:4c:e3:90:d3:c9:b3:a6:2b:b7:b3: 8c:51:6d:2d:72:c1:80:da:07:c9:9a:54:19:e3:19: 9b:27:57:38:7f:f2:4b:19:0a:b4:79:83:22:7f:de: 26:60:1b:5e:ec:4b:79:7c:11:2f:2f:25:0d:6a:11: e4:a0:ce:3e:dd:12:37:e9:6f:18:75:f7:0d:3d:14: 52:d4:0b:f3:77:c7:83:d8:0d:e0:eb:31:e7:e1:40: 78:eb:d9:13:16:14:16:09:16:10:14:d4:05:10:9a: 3e:15:30:9e:92:09:83:f0:fe:bb:5b:73:16:4c:b1: c2:2a:50:57:26:0f:d8:b9:70:9d:42:8e:13:f7:a3: 41:98:75:97:0d:56:f2:3d:a7:c5:c9:af:47:c2:22: fe:31:19:07:2c:b6:11:04:7c:dd:80:c6:cd:eb:b4: 9c:b0:f1:92:e2:ec:3a:4a:ef:ac:b2:1a:af:47:74: 14:d7:65:a5:42:a6:fa:82:68:00:c3:79:2d:47:86: a4:be:69:c6:f8:3f:a7:fc:81:cc:0b:ea:86:66:69: 61:ea:0c:b6:07:80:5a:d3:96:90:f7:c3:37:6f:3a: 0d:64:c4:bc:4a:62:8c:b0:1b:cb:ef:f2:9f:e9:85: b6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:26:BB:F3:73:FA:6F:01:E7:E2:3C:73:5A:07:52:E5:A8:34:2A:46 X509v3 Authority Key Identifier: keyid:1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.189.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:ef:18:ca:04:c9:30:12:ce:59:18:5d:62:10:76:d1:5a:59: ca:45:00:e3:fd:a3:ee:17:2e:98:32:3d:a9:33:e5:b4:16:f3: 4c:e5:db:38:1f:87:9c:be:61:a5:fc:ec:ca:bd:33:06:80:f5: 39:7f:87:a3:22:eb:20:9c:79:6e:ae:e6:4e:ef:fa:5d:6d:b8: c4:5d:d7:ff:13:23:12:d6:ec:44:a1:9b:93:35:60:73:60:9e: 40:21:7a:a8:ef:e7:7d:cb:ea:49:b2:d4:b6:e0:27:be:4d:4b: 3f:9a:65:3e:9f:13:58:59:4a:94:86:fc:01:f9:65:31:c2:26: aa:d5:2a:ca:32:f2:31:53:26:04:ae:27:ed:82:93:bb:c6:9f: cf:cf:53:91:28:06:0e:6a:8c:69:65:af:d0:49:61:bc:dc:68: 14:5f:0f:30:af:a4:a6:dc:d8:2f:21:42:5e:e7:18:dd:9e:09: 9f:1e:4b:31:d8:40:4d:85:e4:d5:6b:63:6f:e0:72:47:10:c8: 6d:0b:92:b5:2b:cd:02:e4:3e:35:db:c4:f8:14:f3:40:86:c0: c7:35:e4:6e:60:69:8a:67:d2:7a:d7:31:3f:c8:5d:15:99:ae: 60:f5:0a:1f:c4:25:7a:84:00:d0:41:1f:84:ca:5e:32:d9:71: 50:18:2b:56 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMUJERUIwQzI3NUM5MEU4MUJGQTNBQUZFMjEzRTRFNzEy MUVCNzM0QTAeFw0yNDEwMDQxMTI0MThaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmZkMDYyLWIyMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpvuzojTbd8vMS/EqC4aZCHcqyTOOQ08mzpiu3s4xRbS1ywYDaB8maVBnjGZsn Vzh/8ksZCrR5gyJ/3iZgG17sS3l8ES8vJQ1qEeSgzj7dEjfpbxh19w09FFLUC/N3 x4PYDeDrMefhQHjr2RMWFBYJFhAU1AUQmj4VMJ6SCYPw/rtbcxZMscIqUFcmD9i5 cJ1CjhP3o0GYdZcNVvI9p8XJr0fCIv4xGQcsthEEfN2Axs3rtJyw8ZLi7DpK76yy Gq9HdBTXZaVCpvqCaADDeS1HhqS+acb4P6f8gcwL6oZmaWHqDLYHgFrTlpD3wzdv Og1kxLxKYoywG8vv8p/phbZPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9ya783P6 bwHn4jxzWgdS5ag0KkYwHwYDVR0jBBgwFoAUG96wwnXJDoG/o6r+IT5OcSHrc0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzEzRDgwNjA4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL0c5Nnd3blhKRG9HX282ci1JVDVPY1NIcmMw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRzk2d3duWEpEb0dfbzZyLUlUNU9jU0hyYzBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS8xM0Q4MDYwODgyNDIxMUVGQUQzRDgxODFDNEY5QUUwMi8zMUI1RDU2NDgy NDMxMUVGOUM2OUI5ODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0PvTANBgkqhkiG9w0BAQsFAAOCAQEAC+8YygTJMBLOWRhd YhB20VpZykUA4/2j7hcumDI9qTPltBbzTOXbOB+HnL5hpfzsyr0zBoD1OX+HoyLr IJx5bq7mTu/6XW24xF3X/xMjEtbsRKGbkzVgc2CeQCF6qO/nfcvqSbLUtuAnvk1L P5plPp8TWFlKlIb8AfllMcImqtUqyjLyMVMmBK4n7YKTu8afz89TkSgGDmqMaWWv 0ElhvNxoFF8PMK+kptzYLyFCXucY3Z4Jnx5LMdhATYXk1Wtjb+ByRxDIbQuStSvN AuQ+NdvE+BTzQIbAxzXkbmBpimfSetcxP8hdFZmuYPUKH8QleoQA0EEfhMpeMtlx UBgrVg== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:49 2024 by rpki-client on console-ams.rpki-client.org