$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa File: 31A1996898F711EEB7B27877C4F9AE02.roa (raw, json) Hash identifier: /chNCNiWGN9zH7X0ZvfAl9V/fysm8g1d8cdyiR1utf0= Subject key identifier: 11:DD:CB:64:59:2E:DB:73:48:B2:7E:41:FA:9D:75:50:B1:15:CB:63 Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 46 Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa Signing time: Thu 08 Feb 2024 13:30:12 +0000 ROA not before: Thu 08 Feb 2024 13:30:12 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 55532 IP address blocks: 43.245.40.0/24 maxlen: 24 43.245.41.0/24 maxlen: 24 43.245.42.0/24 maxlen: 24 43.245.43.0/24 maxlen: 24 103.1.192.0/24 maxlen: 24 103.1.193.0/24 maxlen: 24 103.1.194.0/24 maxlen: 24 103.1.195.0/24 maxlen: 24 202.9.94.0/23 maxlen: 24 203.25.173.0/24 maxlen: 24 2001:df0:a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Feb 8 13:30:12 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65c4d764-62be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6d:82:25:35:48:96:45:b6:4c:2b:75:70:81: f1:27:fd:cb:57:e1:97:72:dc:50:ae:64:72:dd:2a: eb:ff:27:02:18:4b:b2:cb:34:1a:92:8f:c2:8d:4f: 8a:d1:00:10:22:e5:be:51:e7:fe:13:97:b7:c5:23: e3:f0:ee:32:a7:2d:fb:79:45:31:c6:48:98:16:ee: 3e:ca:56:d7:21:a0:0f:9a:65:d8:be:b2:2a:62:5a: 64:ec:c1:61:01:c4:9c:68:25:39:1c:29:a3:a7:aa: bc:19:1e:ae:e0:3d:96:75:11:92:17:af:f2:77:b6: 78:b1:ca:10:97:5a:2e:0f:e1:5a:ed:73:03:45:a2: 79:bc:49:41:ee:08:8d:d5:dd:7b:50:29:8c:4a:17: 5b:78:23:63:5a:e2:7f:33:fa:9c:1b:d5:1a:54:07: b7:bb:8b:77:da:88:06:ba:06:5c:c3:f4:a0:8e:04: a5:7c:49:1a:45:53:2f:dd:b8:7f:73:ae:49:70:24: 22:e5:9d:6b:10:23:10:8d:9c:74:63:0b:d0:94:35: fc:ab:5a:9c:79:3b:7b:70:ed:c4:f3:4a:02:03:1a: 42:c4:93:36:b7:13:b7:a9:3c:49:e3:e7:0b:93:d3: 29:db:5e:bf:0a:e4:18:90:73:ab:8b:ab:5e:e1:ca: 17:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DD:CB:64:59:2E:DB:73:48:B2:7E:41:FA:9D:75:50:B1:15:CB:63 X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.40.0/22 103.1.192.0/22 202.9.94.0/23 203.25.173.0/24 IPv6: 2001:df0:a1::/48 Signature Algorithm: sha256WithRSAEncryption bf:fa:06:64:dd:02:ad:6c:a0:ce:9f:28:6b:3a:69:7d:36:2c: ae:ba:d0:7b:2d:86:66:7c:74:5e:14:94:f3:47:47:09:db:c6: 8b:40:b8:c4:23:43:9a:e1:ed:d7:d9:54:ea:49:4c:b0:00:ef: cb:94:1f:32:78:ad:0b:a4:6c:35:aa:00:77:2d:8d:fd:cd:85: ee:d8:1a:a7:fa:7b:54:c1:3e:b8:7e:bc:8f:6e:28:34:00:2f: 02:d6:a3:ff:7b:00:e4:45:7f:80:ca:65:63:dc:ad:db:eb:76: 34:fc:c7:b4:5d:bd:20:bf:88:f4:69:d9:9a:07:f2:9a:eb:e1: 04:00:0d:3a:78:25:7e:ac:b9:ba:5e:2b:6c:5f:f7:1f:7c:d0: 19:44:de:76:f4:59:c0:75:f5:b8:be:89:0a:b6:33:69:f6:7b: f8:3d:a8:63:52:5c:3d:fd:8e:fb:27:a9:38:56:1d:98:84:da: 28:06:b8:40:71:e2:ef:8d:23:19:66:bb:e6:63:84:18:14:31: cb:77:07:c9:aa:ab:b6:97:1d:53:df:1f:2a:db:61:42:f0:92: 1c:bb:13:4c:e9:73:9a:52:5a:af:50:ff:70:4a:41:fc:12:de: 14:2f:6e:d0:8c:86:cb:81:3b:cc:c2:87:3b:80:87:83:02:37: 5c:03:e1:8e -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODYyMDExMC8GA1UEBRMoQTQwOEFDOTRBMEQzMzZGNDczMjQ5MDVBOTE4QUYyNDkw MkYwREU4QjAeFw0yNDAyMDgxMzMwMTJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzRkNzY0LTYyYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFbYIlNUiWRbZMK3VwgfEn/ctX4Zdy3FCuZHLdKuv/JwIYS7LLNBqSj8KNT4rR ABAi5b5R5/4Tl7fFI+Pw7jKnLft5RTHGSJgW7j7KVtchoA+aZdi+sipiWmTswWEB xJxoJTkcKaOnqrwZHq7gPZZ1EZIXr/J3tnixyhCXWi4P4VrtcwNFonm8SUHuCI3V 3XtQKYxKF1t4I2Na4n8z+pwb1RpUB7e7i3faiAa6BlzD9KCOBKV8SRpFUy/duH9z rklwJCLlnWsQIxCNnHRjC9CUNfyrWpx5O3tw7cTzSgIDGkLEkza3E7epPEnj5wuT 0ynbXr8K5BiQc6uLq17hyhfJAgMBAAGjggK4MIICtDAdBgNVHQ4EFgQUEd3LZFku 23NIsn5B+p11ULEVy2MwHwYDVR0jBBgwFoAUpAislKDTNvRzJJBakYrySQLw3osw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NjIwLzBFOTE5OTM0ODg0 MjExRUVBN0Q4QzgxNEM0RjlBRTAyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcEFpc2xLRFROdlJ6SkpCYWtZcnlTUUx3M29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi8zMUExOTk2ODk4 RjcxMUVFQjdCMjc4NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBCBggrBgEFBQcBBwEB/wQz MDEwHgQCAAEwGAMEAiv1KAMEAmcBwAMEAcoJXgMEAMsZrTAPBAIAAjAJAwcAIAEN 8AChMA0GCSqGSIb3DQEBCwUAA4IBAQC/+gZk3QKtbKDOnyhrOml9NiyuutB7LYZm fHReFJTzR0cJ28aLQLjEI0Oa4e3X2VTqSUywAO/LlB8yeK0LpGw1qgB3LY39zYXu 2Bqn+ntUwT64fryPbig0AC8C1qP/ewDkRX+AymVj3K3b63Y0/Me0Xb0gv4j0adma B/Ka6+EEAA06eCV+rLm6XitsX/cffNAZRN529FnAdfW4vokKtjNp9nv4PahjUlw9 /Y77J6k4Vh2YhNooBrhAceLvjSMZZrvmY4QYFDHLdwfJqqu2lx1T3x8q22FC8JIc uxNM6XOaUlqvUP9wSkH8Et4UL27QjIbLgTvMwoc7gIeDAjdcA+GO -----END CERTIFICATE-----Generated at Thu Jun 13 10:58:40 2024 by rpki-client on console-ams.rpki-client.org