$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa File: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: YNpH5Q9f52SuXXmbgomoqSZtciJ+QBf4TgDm3Z8IhyI= Subject key identifier: 0C:CB:1E:BD:F8:D8:08:5E:17:F4:DC:1F:7B:60:1F:26:9C:E3:B4:F6 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0626 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa Signing time: Fri 12 Jul 2024 23:43:10 +0000 ROA not before: Fri 12 Jul 2024 23:43:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131447 IP address blocks: 43.254.132.0/22 maxlen: 22 103.246.16.0/22 maxlen: 22 2401:5700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 12 23:43:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691bf8e-ff59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d3:98:98:cc:b4:07:58:42:9e:f4:9f:45:e2: f6:d7:1f:ba:c8:38:a2:b6:c5:01:49:04:70:90:5c: 96:ba:92:06:2d:32:dc:7f:c0:58:71:9c:e5:e0:df: 31:24:67:75:4d:e0:ef:49:58:dc:c2:09:f8:25:f9: ba:53:36:4e:79:c0:7f:9e:e0:49:9b:91:c7:3a:5c: eb:ea:85:92:37:5e:b2:1c:27:21:50:76:cb:60:76: 5f:18:5b:30:d4:a7:42:ff:31:8f:bd:8b:6e:b3:0c: d0:80:8e:fa:2c:1c:b6:9e:e3:58:a7:bd:52:52:8b: 5c:a6:c9:86:e3:ea:8d:29:d1:64:5d:d5:c7:0f:a4: c2:99:cc:f3:c6:54:1e:f9:8a:19:b5:b5:b1:8d:b9: 10:d8:4e:d3:ad:4e:55:77:03:b5:03:44:28:ef:4e: 23:b5:20:08:84:c7:56:95:e6:89:84:58:42:17:0c: 3a:b7:0b:67:76:fc:81:ba:f5:92:55:fe:23:1e:a1: ff:78:15:50:4f:43:f5:03:bf:67:8e:d5:d7:f1:0a: 97:83:8b:bb:7a:fc:ff:d3:a0:a0:3c:bb:69:94:f2: ec:0b:3e:f1:2b:df:6b:d9:f6:6b:c8:1f:34:85:7b: 17:17:2c:d8:71:68:89:58:f8:da:ca:35:ca:0a:b9: 3f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CB:1E:BD:F8:D8:08:5E:17:F4:DC:1F:7B:60:1F:26:9C:E3:B4:F6 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31137FAA5E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.132.0/22 103.246.16.0/22 IPv6: 2401:5700::/32 Signature Algorithm: sha256WithRSAEncryption 70:2c:29:35:22:af:69:ea:45:ca:a7:ca:d4:b6:f8:36:9f:7e: 79:b5:66:7b:17:3a:bd:79:57:97:9b:1c:2d:db:a7:74:3e:2a: 4b:2e:02:31:14:b6:ae:30:79:88:3b:e7:a8:31:d2:c4:ab:6f: 06:ba:40:d1:b7:0b:dd:4a:0f:fd:53:be:ed:5b:4f:c7:c0:c1: 78:6d:1e:fe:0f:8f:9c:af:6d:a0:26:05:34:0a:b4:ad:dd:90: 56:2a:87:3d:4e:57:d6:88:77:e4:f2:bb:26:c9:2d:10:e2:e1: ee:eb:ef:12:d2:25:c9:be:4a:7f:c9:c9:3f:97:7c:4c:4b:6b: a2:f6:14:e6:a8:b5:93:e9:92:01:f9:c9:27:bd:2b:68:91:27: 0d:02:0b:b9:d8:eb:52:2b:6f:03:52:6e:da:18:1e:eb:6f:cc: 89:6c:a7:75:38:b9:2c:40:7d:f2:f4:31:b8:f1:f6:7a:84:6d: 9d:70:9c:87:3c:46:f9:6a:a0:b9:04:33:e7:11:04:88:80:0c: 79:2c:68:12:59:d6:09:41:ac:7c:74:5e:e3:a4:8d:d5:2c:cd: af:4a:36:49:65:f7:be:d9:4a:a6:b8:73:99:2b:b3:2d:54:59: e7:a7:7b:9d:5a:7c:37:6b:68:e0:8e:46:7c:c1:36:24:fa:d6: 9a:cc:35:03 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjQwNzEyMjM0MzEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYmY4ZS1mZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztOYmMy0B1hCnvSfReL21x+6yDiitsUBSQRwkFyWupIGLTLcf8BYcZzl4N8x JGd1TeDvSVjcwgn4Jfm6UzZOecB/nuBJm5HHOlzr6oWSN16yHCchUHbLYHZfGFsw 1KdC/zGPvYtuswzQgI76LBy2nuNYp71SUotcpsmG4+qNKdFkXdXHD6TCmczzxlQe +YoZtbWxjbkQ2E7TrU5VdwO1A0Qo704jtSAIhMdWleaJhFhCFww6twtndvyBuvWS Vf4jHqH/eBVQT0P1A79njtXX8QqXg4u7evz/06CgPLtplPLsCz7xK99r2fZryB80 hXsXFyzYcWiJWPjayjXKCrk/dQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAzLHr34 2AheF/TcH3tgHyac47T2MB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzExMzdGQUE1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr/oQDBAJn9hAwDQQCAAIwBwMFACQBVwAwDQYJKoZIhvcN AQELBQADggEBAHAsKTUir2nqRcqnytS2+Daffnm1ZnsXOr15V5ebHC3bp3Q+Kksu AjEUtq4weYg756gx0sSrbwa6QNG3C91KD/1Tvu1bT8fAwXhtHv4Pj5yvbaAmBTQK tK3dkFYqhz1OV9aId+TyuybJLRDi4e7r7xLSJcm+Sn/JyT+XfExLa6L2FOaotZPp kgH5ySe9K2iRJw0CC7nY61IrbwNSbtoYHutvzIlsp3U4uSxAffL0Mbjx9nqEbZ1w nIc8RvlqoLkEM+cRBIiADHksaBJZ1glBrHx0XuOkjdUsza9KNkll977ZSqa4c5kr sy1UWeene51afDdraOCORnzBNiT61prMNQM= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:26 2024 by rpki-client on console-fra.rpki-client.org