$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa File: 31D902165E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: khUt0DvlY61bAlm32dmPwWDchl/1RN02B/RJjPd4MZQ= Subject key identifier: 0D:0F:88:AD:5A:FC:BA:84:E9:85:75:41:81:46:B4:7E:B5:B8:22:88 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 056D Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa Signing time: Mon 24 Jul 2023 23:20:32 +0000 ROA not before: Mon 24 Jul 2023 23:20:32 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135063 IP address blocks: 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 24 23:20:32 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64bf0740-2713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1e:da:e8:69:08:e4:d3:59:b0:27:a3:12:32: b4:bd:f4:60:84:9f:fd:4a:88:f0:6e:8b:48:3e:ba: 8f:70:ba:dc:6d:b2:2c:5d:76:98:4c:47:3f:af:2a: 33:6d:47:2e:13:a6:c8:7d:a9:0f:71:76:73:f3:fa: 13:2d:60:6a:6e:27:3d:d8:ac:66:71:ee:95:f6:f3: 97:a6:b7:e8:f9:6f:3b:93:d9:09:c2:d6:9a:4c:bb: 7e:15:1a:4c:1e:38:2d:b4:a7:0b:fc:cb:56:16:eb: fd:1e:f2:91:2d:b3:72:21:76:a3:90:ab:23:9c:30: d7:9c:4f:c0:b5:71:6c:2f:8a:45:f0:b5:08:dc:7f: 7f:07:ed:71:69:26:fc:3d:f7:e8:de:3c:9d:d1:71: e3:4e:31:79:02:e5:6c:b1:ad:b9:0d:9e:22:07:ea: 52:13:59:2a:c8:72:28:58:c3:ea:ff:ad:8b:51:89: 30:67:3e:bf:53:e0:7e:8c:01:e8:cb:76:ea:50:44: 79:f9:8b:0c:1f:6d:8a:99:1d:cb:af:0e:bb:2a:8f: 37:0a:41:1c:47:9a:87:34:56:44:fb:26:ef:91:43: 3e:34:60:d6:a6:0a:3d:56:dd:4b:76:20:5d:f6:11: ea:5a:42:ed:0a:3c:95:cc:20:36:a9:c0:27:8a:cc: 4b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0F:88:AD:5A:FC:BA:84:E9:85:75:41:81:46:B4:7E:B5:B8:22:88 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.135.0/24 Signature Algorithm: sha256WithRSAEncryption 09:10:0e:05:38:96:70:2c:88:5d:4d:69:05:cb:be:29:4a:97: 0d:41:ee:31:68:56:70:d0:b3:17:c3:79:ce:77:91:76:15:0c: 9c:a1:3f:3d:3e:7d:3e:9c:c1:62:1a:60:7d:c8:ac:22:3e:df: fe:3e:9a:55:44:64:29:44:c4:c6:c2:3c:99:9e:ab:02:21:a7: 13:38:88:03:44:96:3b:79:2a:c8:45:94:ea:99:f1:1b:38:f3: 9b:42:a5:73:32:61:72:21:36:1e:01:c0:99:44:8a:95:ec:92: d4:ca:03:b2:cd:0e:3b:69:f2:09:96:b3:a9:47:17:61:46:9e: ab:b0:20:b3:85:d2:38:3e:bf:eb:89:fb:e0:2c:ea:af:4d:bc: 39:04:75:02:25:fe:80:60:f7:b3:7b:30:00:fe:7d:60:1c:29: d1:f0:1b:a3:e0:a5:ba:c7:a5:1e:56:e7:45:90:8e:d8:6d:c4: e2:1b:d2:cc:bb:a5:68:39:e2:03:1c:49:d5:d8:4a:8f:c0:5b: 85:0e:c2:76:62:16:1b:c1:e6:ca:f9:ba:6d:39:2a:9c:73:93: bf:e9:98:99:70:72:ef:56:b6:4b:3e:81:c6:80:ee:ea:68:5a: 41:56:67:33:7a:4d:ad:36:d8:e4:0e:3f:15:71:19:53:ae:81: d9:a7:41:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjMwNzI0MjMyMDMyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJmMDc0MC0yNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3x7a6GkI5NNZsCejEjK0vfRghJ/9SojwbotIPrqPcLrcbbIsXXaYTEc/ryoz bUcuE6bIfakPcXZz8/oTLWBqbic92Kxmce6V9vOXprfo+W87k9kJwtaaTLt+FRpM HjgttKcL/MtWFuv9HvKRLbNyIXajkKsjnDDXnE/AtXFsL4pF8LUI3H9/B+1xaSb8 Pffo3jyd0XHjTjF5AuVssa25DZ4iB+pSE1kqyHIoWMPq/62LUYkwZz6/U+B+jAHo y3bqUER5+YsMH22KmR3Lrw67Ko83CkEcR5qHNFZE+ybvkUM+NGDWpgo9Vt1LdiBd 9hHqWkLtCjyVzCA2qcAnisxLIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA0PiK1a /LqE6YV1QYFGtH61uCKIMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzFEOTAyMTY1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/ocwDQYJKoZIhvcNAQELBQADggEBAAkQDgU4lnAsiF1N aQXLvilKlw1B7jFoVnDQsxfDec53kXYVDJyhPz0+fT6cwWIaYH3IrCI+3/4+mlVE ZClExMbCPJmeqwIhpxM4iANEljt5KshFlOqZ8Rs485tCpXMyYXIhNh4BwJlEipXs ktTKA7LNDjtp8gmWs6lHF2FGnquwILOF0jg+v+uJ++As6q9NvDkEdQIl/oBg97N7 MAD+fWAcKdHwG6PgpbrHpR5W50WQjthtxOIb0sy7pWg54gMcSdXYSo/AW4UOwnZi FhvB5sr5um05Kpxzk7/pmJlwcu9Wtks+gcaA7upoWkFWZzN6Ta022OQOPxVxGVOu gdmnQYE= -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org