$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa File: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: yqGpCO8lcS6aLjqGTiN2U4Jbdfhrxn3UOKDstddgk/o= Subject key identifier: 20:04:24:CC:A8:9B:C1:72:44:11:C9:D6:16:11:7E:42:03:C0:F6:A8 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 056C Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa Signing time: Mon 24 Jul 2023 23:20:31 +0000 ROA not before: Mon 24 Jul 2023 23:20:31 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 131447 IP address blocks: 43.254.132.0/22 maxlen: 22 103.246.16.0/22 maxlen: 22 2401:5700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 24 23:20:31 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64bf073e-634d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b6:ad:4f:b1:cf:24:8e:05:06:c8:7f:7f:64: 5e:36:2e:bf:ea:3f:68:30:b4:0d:90:16:5b:ba:de: b6:4d:be:85:f8:71:75:bd:5d:2b:55:bb:73:e3:ec: 3c:c1:f9:59:d4:48:b0:c9:b8:21:51:d1:6a:71:df: 2d:97:91:7d:56:23:9f:ff:e3:23:c3:4e:eb:05:84: 5d:70:86:da:0c:26:66:33:2d:29:f0:7d:2e:8e:3f: 39:b5:37:da:ab:f9:f6:8b:a7:eb:e9:1d:6b:d8:bd: ad:94:e3:bd:9d:69:13:94:9d:76:f0:66:2d:2f:fd: 62:18:cd:84:56:d9:3b:69:1c:57:06:b3:2e:db:08: 9a:ec:96:17:0f:7c:39:4b:e2:97:cc:b6:12:cb:a8: d1:3f:ca:50:19:bf:da:4d:9b:29:98:24:8f:79:8b: d8:5c:3e:6d:ae:11:ab:8d:2b:89:b0:53:19:9c:af: e8:e2:ac:52:29:11:a0:c1:b5:c2:06:4e:ac:8d:3a: 56:4c:2a:1b:6b:6a:a0:67:47:88:c4:33:17:5b:37: 8c:23:42:1e:c4:eb:85:f7:01:1c:83:a1:4a:69:30: 21:7c:87:21:f6:45:5e:be:ac:c4:44:ed:5c:72:61: 2c:3c:f2:2e:f0:3d:a0:cd:90:09:ca:7e:fb:bc:47: af:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:04:24:CC:A8:9B:C1:72:44:11:C9:D6:16:11:7E:42:03:C0:F6:A8 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.132.0/22 103.246.16.0/22 IPv6: 2401:5700::/32 Signature Algorithm: sha256WithRSAEncryption 3e:aa:29:2d:64:fd:df:8b:09:91:b7:b5:f2:b3:c5:44:2a:69: 23:5f:a9:e9:47:49:b3:1b:88:70:c2:a1:22:4a:4d:00:74:8e: d1:c8:90:32:74:2b:88:f9:c0:22:73:0c:57:78:b9:ad:c0:ac: 3e:ea:16:6a:35:f8:fd:2e:57:0f:b8:18:81:9a:a5:99:44:d2: e6:39:a2:b0:c9:b5:c2:e3:2c:2d:cd:ca:18:90:2f:6c:a5:26: 84:77:bd:ac:a4:63:2c:ac:af:9f:52:c7:f4:35:00:31:c9:a2: 6a:a0:37:a2:3d:e8:e2:2b:c9:dd:42:fb:91:f9:d6:0c:7b:04: 90:f6:b5:31:69:fc:1a:99:ab:a6:57:58:39:b9:a3:8a:29:80: 1c:8f:dc:63:ec:54:e3:3f:65:2d:62:b3:f7:de:27:bb:e1:ad: 28:6f:05:e0:b3:d8:b8:37:ee:c9:ca:f3:bf:88:0f:02:ce:6b: 44:49:e4:8f:70:d7:98:10:ef:cd:14:14:4a:57:20:01:78:e0: f3:82:fc:f5:fe:2e:3d:bc:10:b1:c6:84:04:e9:b5:1d:22:58: 1d:2c:78:ec:99:d4:d1:de:2d:cd:1b:99:f9:44:03:08:87:48: 06:2d:72:37:ed:2e:1c:3d:81:7c:8e:ca:f5:fe:b0:7a:b7:ca: c3:7b:74:c6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjMwNzI0MjMyMDMxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJmMDczZS02MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47atT7HPJI4FBsh/f2ReNi6/6j9oMLQNkBZbut62Tb6F+HF1vV0rVbtz4+w8 wflZ1EiwybghUdFqcd8tl5F9ViOf/+Mjw07rBYRdcIbaDCZmMy0p8H0ujj85tTfa q/n2i6fr6R1r2L2tlOO9nWkTlJ128GYtL/1iGM2EVtk7aRxXBrMu2wia7JYXD3w5 S+KXzLYSy6jRP8pQGb/aTZspmCSPeYvYXD5trhGrjSuJsFMZnK/o4qxSKRGgwbXC Bk6sjTpWTCoba2qgZ0eIxDMXWzeMI0IexOuF9wEcg6FKaTAhfIch9kVevqzERO1c cmEsPPIu8D2gzZAJyn77vEevRwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCAEJMyo m8FyRBHJ1hYRfkIDwPaoMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzExMzdGQUE1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr/oQDBAJn9hAwDQQCAAIwBwMFACQBVwAwDQYJKoZIhvcN AQELBQADggEBAD6qKS1k/d+LCZG3tfKzxUQqaSNfqelHSbMbiHDCoSJKTQB0jtHI kDJ0K4j5wCJzDFd4ua3ArD7qFmo1+P0uVw+4GIGapZlE0uY5orDJtcLjLC3NyhiQ L2ylJoR3vaykYyysr59Sx/Q1ADHJomqgN6I96OIryd1C+5H51gx7BJD2tTFp/BqZ q6ZXWDm5o4opgByP3GPsVOM/ZS1is/feJ7vhrShvBeCz2Lg37snK87+IDwLOa0RJ 5I9w15gQ780UFEpXIAF44POC/PX+Lj28ELHGhATptR0iWB0seOyZ1NHeLc0bmflE AwiHSAYtcjftLhw9gXyOyvX+sHq3ysN7dMY= -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org