$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa File: 31A1996898F711EEB7B27877C4F9AE02.roa (raw, json) Hash identifier: Vl/bZ/gdPwuufyZFmfVq5SymVLQXqPiJLzDWamKz3l4= Subject key identifier: CF:AB:83:71:50:68:C1:63:08:7F:42:49:A1:D4:C3:CB:44:6F:C5:44 Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 97 Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa Signing time: Mon 01 Jul 2024 07:07:56 +0000 ROA not before: Mon 01 Jul 2024 07:07:56 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55532 IP address blocks: 43.245.40.0/24 maxlen: 24 43.245.41.0/24 maxlen: 24 43.245.42.0/24 maxlen: 24 43.245.43.0/24 maxlen: 24 103.1.192.0/24 maxlen: 24 103.1.193.0/24 maxlen: 24 103.1.194.0/24 maxlen: 24 103.1.195.0/24 maxlen: 24 202.9.94.0/23 maxlen: 24 203.25.173.0/24 maxlen: 24 2001:df0:a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Jul 1 07:07:56 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668255cc-788d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:6c:f4:05:d6:9f:ad:e5:18:59:e8:0f:24: 22:3d:8f:af:ec:48:94:78:4f:a3:27:a1:98:fd:c5: ac:8b:eb:44:3f:20:e7:54:bf:b6:dc:f2:09:87:6c: b0:2c:69:76:28:f7:87:b9:6b:c5:83:37:6e:cc:7e: e3:5c:15:6d:f5:6b:98:90:d3:c5:ac:32:fa:ff:d6: ec:72:19:f7:91:bf:9b:8f:81:6b:1c:76:c2:9b:7b: a4:ee:1a:bb:a2:41:f0:63:40:53:53:74:49:1a:0f: ed:0a:81:55:91:bb:32:6b:21:2c:0a:d6:f0:a4:6f: 63:55:21:7d:43:18:04:dd:5f:48:14:b6:29:92:91: ae:04:0a:ce:4f:fb:d5:82:72:8a:14:ad:eb:b4:83: a7:5a:48:00:63:a8:81:83:8e:2e:eb:dc:b8:0d:b9: 52:8e:e3:29:4f:75:36:fa:9b:14:c5:f6:b3:e5:02: eb:2d:85:b4:74:82:ac:1c:fa:11:bf:cd:a0:ae:d1: f5:85:c2:fc:31:86:f1:7c:73:28:af:bf:c4:1a:a7: dd:f3:39:28:13:fa:eb:8a:8b:61:b9:5f:be:b7:5c: 46:c7:07:83:0b:44:67:2d:30:32:5a:a7:5b:e3:4e: a2:ed:f2:71:d3:23:60:95:2b:55:86:1b:55:ee:48: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AB:83:71:50:68:C1:63:08:7F:42:49:A1:D4:C3:CB:44:6F:C5:44 X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.40.0/22 103.1.192.0/22 202.9.94.0/23 203.25.173.0/24 IPv6: 2001:df0:a1::/48 Signature Algorithm: sha256WithRSAEncryption 36:2c:23:29:e7:27:d6:dd:a8:71:ed:f9:a9:01:a5:da:33:27: 21:6a:67:06:e5:e2:53:f1:83:d4:cc:d2:2f:c5:c8:f2:38:ac: e8:cd:ce:de:04:78:44:c9:db:74:4e:a1:ae:19:be:3b:84:a9: 0c:fc:77:20:f9:74:76:b4:79:4e:37:7e:2d:5a:c8:97:a5:3a: 4a:e2:a4:45:db:13:58:d6:cd:c2:67:8f:44:d7:30:27:4c:c9: 1b:69:ac:0a:e6:ed:fa:a0:99:67:53:b9:df:8a:53:36:db:e5: 80:5b:4d:7b:3c:8b:61:47:25:88:11:fd:93:69:a0:ef:4a:e9: cb:11:54:b7:c5:61:be:7a:a3:04:f1:1b:7e:d1:53:10:79:21: 9d:5d:87:a7:ef:4e:9e:e7:37:1b:dc:d2:2b:d9:66:87:e4:b3: b9:24:e3:f0:c3:bf:6c:26:d4:6d:2f:11:43:cf:cf:29:14:ef: 05:36:6c:c4:0d:ec:cb:d9:38:b8:36:61:3a:8d:a8:ed:4b:62: 26:ce:b9:0b:1a:11:ab:e0:2b:b3:a6:18:63:51:70:35:9a:5c: 1b:53:e4:ee:43:b2:c8:9f:49:71:fe:f9:9b:5d:1c:8b:df:2e: 0c:81:f4:f9:6f:9a:4e:37:69:21:6b:66:12:61:a5:82:3b:56: e2:6d:d1:35 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjQwNzAxMDcwNzU2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyNTVjYy03ODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa1s9AXWn63lGFnoDyQiPY+v7EiUeE+jJ6GY/cWsi+tEPyDnVL+23PIJh2yw LGl2KPeHuWvFgzduzH7jXBVt9WuYkNPFrDL6/9bschn3kb+bj4FrHHbCm3uk7hq7 okHwY0BTU3RJGg/tCoFVkbsyayEsCtbwpG9jVSF9QxgE3V9IFLYpkpGuBArOT/vV gnKKFK3rtIOnWkgAY6iBg44u69y4DblSjuMpT3U2+psUxfaz5QLrLYW0dIKsHPoR v82grtH1hcL8MYbxfHMor7/EGqfd8zkoE/rriothuV++t1xGxweDC0RnLTAyWqdb 406i7fJx0yNglStVhhtV7kh1rQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFM+rg3FQ aMFjCH9CSaHUw8tEb8VEMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg2MjAvMEU5MTk5MzQ4ODQyMTFFRUE3RDhDODE0QzRGOUFFMDIvMzFBMTk5Njg5 OEY3MTFFRUI3QjI3ODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAIr9SgDBAJnAcADBAHKCV4DBADLGa0wDwQCAAIwCQMHACAB DfAAoTANBgkqhkiG9w0BAQsFAAOCAQEANiwjKecn1t2oce35qQGl2jMnIWpnBuXi U/GD1MzSL8XI8jis6M3O3gR4RMnbdE6hrhm+O4SpDPx3IPl0drR5Tjd+LVrIl6U6 SuKkRdsTWNbNwmePRNcwJ0zJG2msCubt+qCZZ1O534pTNtvlgFtNezyLYUcliBH9 k2mg70rpyxFUt8VhvnqjBPEbftFTEHkhnV2Hp+9Onuc3G9zSK9lmh+SzuSTj8MO/ bCbUbS8RQ8/PKRTvBTZsxA3sy9k4uDZhOo2o7UtiJs65CxoRq+Ars6YYY1FwNZpc G1Pk7kOyyJ9Jcf75m10ci98uDIH0+W+aTjdpIWtmEmGlgjtW4m3RNQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org