$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31E983DCFA6F11EBAC45A56FC4F9AE02.roa File: 31E983DCFA6F11EBAC45A56FC4F9AE02.roa (raw, json) Hash identifier: Z9VFGVDDqx9bo7XbKrIO5ekTbrr06Yl27H0HrB3HKRc= Subject key identifier: 95:28:EF:00:63:71:F5:2E:28:5E:CC:AA:6B:C9:8D:63:25:49:49:3F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B94 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31E983DCFA6F11EBAC45A56FC4F9AE02.roa Signing time: Wed 10 May 2023 16:20:21 +0000 ROA not before: Wed 10 May 2023 16:20:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135199 IP address blocks: 103.171.62.0/23 maxlen: 24 2001:df7:3980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27540 (0x6b94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:21 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc445-f7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:83:b9:e1:52:22:99:ee:bf:58:4e:9c:ca:09: 47:8f:f9:aa:7b:79:c1:e5:34:1a:5b:b3:2a:32:65: 82:8b:f1:c3:5a:17:68:ef:df:95:19:aa:ba:23:6c: ea:56:25:30:e6:79:a0:ff:6c:c8:28:ba:a7:05:8f: 0b:4b:91:3a:d0:83:74:ed:e4:69:d4:c5:f7:8a:5d: e5:cc:09:29:e1:32:7c:6b:52:8c:ef:1d:bb:37:64: 40:7e:92:2b:d4:34:9a:5a:de:af:d5:f2:4e:8a:2c: ba:88:77:89:2d:1f:1b:9f:1f:ff:f4:99:dd:7d:3a: da:59:52:85:c7:be:7e:bc:4c:9d:36:68:39:9e:de: 63:51:ff:64:e1:86:07:39:90:45:cf:8e:52:74:06: f1:d8:2e:af:d7:2e:a8:2b:1c:16:19:4d:37:e2:f6: dd:af:79:f9:eb:33:cd:60:e7:c4:ec:93:ab:a1:62: ad:b0:9d:74:a9:90:3c:11:2f:0a:8d:ef:de:df:53: 7b:54:f1:76:e8:da:97:31:80:b9:ce:24:f1:4b:0b: c7:b1:05:b6:6e:d6:53:b8:4c:0b:a6:fb:49:be:de: 0f:f7:fe:f4:f3:3f:62:ea:ba:78:78:01:48:57:71: 6d:f3:14:bc:63:92:f0:74:eb:85:26:7f:16:c5:d5: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:28:EF:00:63:71:F5:2E:28:5E:CC:AA:6B:C9:8D:63:25:49:49:3F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31E983DCFA6F11EBAC45A56FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.62.0/23 IPv6: 2001:df7:3980::/48 Signature Algorithm: sha256WithRSAEncryption 53:f8:72:4e:b9:82:5d:0b:de:08:00:0c:f4:cb:14:f2:99:c2: e1:fb:c2:ad:03:77:23:12:bb:7c:59:6f:d8:31:8a:1f:9b:8f: 3b:6a:e8:7b:b1:f1:4c:62:6d:15:4a:71:df:32:86:b1:a6:8d: b7:f9:5c:89:8d:f7:43:13:9e:8d:0c:1a:ae:6f:8f:69:9b:65: 84:4a:27:19:55:f7:bb:06:80:5b:1a:32:e2:7f:60:70:bc:1d: c3:1a:65:bd:f7:e8:09:9d:66:6d:7b:e1:7a:c6:15:51:c6:b3: c6:01:7b:0e:80:61:e1:3c:18:67:62:d5:9b:26:6a:83:9c:5e: 1e:fc:e5:36:d6:65:d0:f3:8c:df:a0:57:cb:35:a4:83:b3:b3: fa:fb:e7:e4:f1:e7:ea:5c:8e:39:db:96:28:03:4e:a5:16:da: 29:0c:3c:a9:bb:f5:8f:41:9a:75:be:ef:04:33:ac:dd:e1:d2: 4f:47:dc:63:8e:22:4d:6b:d4:77:eb:4b:d3:80:e4:2b:60:18: 64:28:19:b0:24:3b:23:dc:96:01:fe:47:f2:6e:31:f1:01:ef: cd:3f:d6:ce:4f:46:2e:57:3b:7e:b0:5e:3e:62:b6:bb:7c:66: 3d:7c:6e:52:a2:c4:85:0f:3b:62:e0:fc:66:a3:b5:56:e7:df: b8:23:77:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICa5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ0NS1mN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IO54VIime6/WE6cyglHj/mqe3nB5TQaW7MqMmWCi/HDWhdo79+VGaq6I2zq ViUw5nmg/2zIKLqnBY8LS5E60IN07eRp1MX3il3lzAkp4TJ8a1KM7x27N2RAfpIr 1DSaWt6v1fJOiiy6iHeJLR8bnx//9JndfTraWVKFx75+vEydNmg5nt5jUf9k4YYH OZBFz45SdAbx2C6v1y6oKxwWGU034vbdr3n56zPNYOfE7JOroWKtsJ10qZA8ES8K je/e31N7VPF26NqXMYC5ziTxSwvHsQW2btZTuEwLpvtJvt4P9/708z9i6rp4eAFI V3Ft8xS8Y5LwdOuFJn8WxdVOgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJUo7wBj cfUuKF7MqmvJjWMlSUk/MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzFFOTgzRENG QTZGMTFFQkFDNDVBNTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqz4wDwQCAAIwCQMHACABDfc5gDANBgkqhkiG9w0BAQsF AAOCAQEAU/hyTrmCXQveCAAM9MsU8pnC4fvCrQN3IxK7fFlv2DGKH5uPO2roe7Hx TGJtFUpx3zKGsaaNt/lciY33QxOejQwarm+PaZtlhEonGVX3uwaAWxoy4n9gcLwd wxplvffoCZ1mbXvhesYVUcazxgF7DoBh4TwYZ2LVmyZqg5xeHvzlNtZl0POM36BX yzWkg7Oz+vvn5PHn6lyOOduWKANOpRbaKQw8qbv1j0Gadb7vBDOs3eHST0fcY44i TWvUd+tL04DkK2AYZCgZsCQ7I9yWAf5H8m4x8QHvzT/Wzk9GLlc7frBePmK2u3xm PXxuUqLEhQ87YuD8ZqO1VuffuCN3WA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org