$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa File: 31D902165E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: H1d0qtWMbN/ZLehnM+qkk/9VJSqY96iabdAlvpWRnf8= Subject key identifier: D5:29:AE:EF:42:DC:9C:EC:4A:82:91:FB:3D:69:A3:D2:4B:E1:40:3E Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0627 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa Signing time: Fri 12 Jul 2024 23:43:11 +0000 ROA not before: Fri 12 Jul 2024 23:43:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135063 IP address blocks: 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 12 23:43:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691bf8f-4d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:44:f9:2f:74:1f:44:38:03:a9:44:18:39:12: 99:a3:f7:8f:15:55:e7:45:5a:ed:98:1b:f5:37:23: e2:b2:60:cd:9c:8f:48:5b:5a:9a:5c:51:58:c2:67: 3f:e3:93:59:4d:b2:25:99:b3:16:f8:4e:56:c0:67: 26:37:d9:75:0a:cb:b8:a2:1d:b4:18:79:fa:51:39: 6b:a7:1d:b2:42:c4:ed:0e:d2:ac:2a:46:7e:15:e8: d9:8a:96:db:ca:c4:ca:29:a9:54:25:90:ca:c0:87: c8:c4:35:65:58:2e:8b:7c:dc:af:e3:36:cb:63:9d: f1:e2:7e:41:ba:06:3a:f6:c8:22:f0:e2:ea:89:90: 7a:1e:79:6f:ed:d7:58:15:1f:b1:95:a4:e7:2d:38: a0:0d:3b:af:5d:8b:b9:07:af:09:86:4e:c7:a7:30: 56:e4:83:98:90:b2:b1:19:ff:bc:0f:02:ce:41:41: 3c:2b:22:61:42:37:0b:58:c7:52:61:56:c1:88:ce: 32:45:f0:6e:c9:8a:f0:de:0b:13:c2:a0:d5:4a:73: a0:26:95:e6:92:b0:de:eb:90:a6:0f:70:8a:d7:93: dc:86:cf:da:53:2d:e8:75:e6:31:b1:0b:2c:bd:72: 33:ad:b9:4a:15:85:97:26:c7:fa:0f:ec:e4:d8:d5: 07:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:29:AE:EF:42:DC:9C:EC:4A:82:91:FB:3D:69:A3:D2:4B:E1:40:3E X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.135.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:2b:bc:b4:1d:97:d4:a1:52:15:75:f1:68:76:98:3a:52:96: f9:7b:cb:b3:d6:ec:0a:bb:98:da:41:fc:ca:38:ef:4a:85:b4: 30:e9:0e:89:75:74:ea:95:d4:ff:70:7b:be:f4:87:8d:61:88: 98:10:a1:1b:be:9e:33:8c:bb:e6:fe:ae:e6:d1:fa:5b:81:c8: df:f7:cc:08:89:59:35:33:d8:e9:45:a2:43:9a:c0:9f:b9:dd: fb:b8:1a:11:67:a9:20:61:d4:66:8e:ba:2c:60:75:62:ca:85: a3:ad:05:f6:b3:b5:d0:e4:a9:a6:7b:38:65:2d:1f:ee:04:4b: ee:d5:7c:de:bb:d8:a4:21:5a:6c:a9:2f:b7:2c:75:0d:cd:75: bd:73:ca:90:3c:2f:bb:34:91:5b:6b:ba:3b:e8:8a:e7:0e:6f: 21:0d:f4:55:b1:f8:9c:03:a2:1d:fd:95:c0:e3:ee:90:2b:c8: 7a:f3:d9:97:45:67:ca:22:c1:54:ae:74:c2:88:69:88:48:a8: cb:1c:e3:8b:49:e4:eb:5d:85:08:8b:6c:b1:68:e2:bb:ce:35: c0:6a:4e:84:00:4d:90:91:f9:e8:9b:34:41:1b:be:5a:ca:ff: e9:d2:f2:ce:52:91:45:24:f5:0b:79:99:92:35:80:45:d6:1d: 31:25:93:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjQwNzEyMjM0MzExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYmY4Zi00ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UT5L3QfRDgDqUQYORKZo/ePFVXnRVrtmBv1NyPismDNnI9IW1qaXFFYwmc/ 45NZTbIlmbMW+E5WwGcmN9l1Csu4oh20GHn6UTlrpx2yQsTtDtKsKkZ+FejZipbb ysTKKalUJZDKwIfIxDVlWC6LfNyv4zbLY53x4n5BugY69sgi8OLqiZB6Hnlv7ddY FR+xlaTnLTigDTuvXYu5B68Jhk7HpzBW5IOYkLKxGf+8DwLOQUE8KyJhQjcLWMdS YVbBiM4yRfBuyYrw3gsTwqDVSnOgJpXmkrDe65CmD3CK15Pchs/aUy3odeYxsQss vXIzrblKFYWXJsf6D+zk2NUHHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNUpru9C 3JzsSoKR+z1po9JL4UA+MB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzFEOTAyMTY1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/ocwDQYJKoZIhvcNAQELBQADggEBACorvLQdl9ShUhV1 8Wh2mDpSlvl7y7PW7Aq7mNpB/Mo470qFtDDpDol1dOqV1P9we770h41hiJgQoRu+ njOMu+b+rubR+luByN/3zAiJWTUz2OlFokOawJ+53fu4GhFnqSBh1GaOuixgdWLK haOtBfaztdDkqaZ7OGUtH+4ES+7VfN672KQhWmypL7csdQ3Ndb1zypA8L7s0kVtr ujvoiucObyEN9FWx+JwDoh39lcDj7pAryHrz2ZdFZ8oiwVSudMKIaYhIqMsc44tJ 5OtdhQiLbLFo4rvONcBqToQATZCR+eibNEEbvlrK/+nS8s5SkUUk9Qt5mZI1gEXW HTElkxo= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org