$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa File: 31E9226CD6E411EE832E7F43C4F9AE02.roa (raw, json) Hash identifier: RksnhV1bsZdLbZHp1r0BAbHWWsySROA5qIkM7IUGsUs= Subject key identifier: 9D:3D:C2:20:DE:67:EA:0D:0E:92:3B:6D:F1:66:D7:42:BA:52:07:D3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0286 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:53 +0000 ROA not before: Thu 05 Sep 2024 03:30:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149132 IP address blocks: 157.20.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925ec-7c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5b:1b:fb:b4:26:04:99:d4:ee:7a:50:6f:b1: 4e:5a:9a:48:c0:70:62:59:0b:54:70:5b:49:6c:d6: a8:95:20:10:99:25:03:dd:8a:38:14:90:40:c0:ba: 0e:df:cc:d4:ac:65:42:bf:52:f0:eb:2a:7c:76:a4: b7:6d:1e:8d:17:e7:c0:17:eb:36:d6:a9:ef:5d:1e: a2:6f:ca:b0:21:5a:c1:01:2f:20:4e:80:a8:3e:1d: 40:e1:02:aa:20:40:63:d7:d0:72:ba:07:26:34:1e: 8f:e3:bb:e3:7f:82:75:0e:4f:60:d4:68:3b:74:7e: 1c:cc:c0:ae:e0:df:1f:70:5e:86:9e:d6:4c:ed:a7: fb:f4:c7:0a:78:0c:f1:58:77:4e:8e:0e:e5:56:b7: 85:c7:c1:37:63:d2:22:cf:f4:76:df:74:af:47:91: 72:c5:bd:4a:7a:e8:ca:3f:6f:2d:a0:ed:60:96:27: f8:07:ae:56:b7:51:31:33:8b:67:2c:1a:ef:f3:4f: 58:de:6e:e5:78:a2:25:90:4e:d9:d3:ad:7d:70:e2: 7e:1e:47:24:4f:31:d8:c0:80:ff:11:04:15:71:8a: 44:15:b1:db:7f:ed:6e:c5:1c:d1:de:81:67:7a:3f: cc:07:55:06:c5:9d:2b:e3:01:2a:fe:8b:aa:4e:f4: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3D:C2:20:DE:67:EA:0D:0E:92:3B:6D:F1:66:D7:42:BA:52:07:D3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/31E9226CD6E411EE832E7F43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.82.0/23 Signature Algorithm: sha256WithRSAEncryption 89:c7:fd:27:4f:81:89:d5:9a:e2:59:25:6c:4b:86:96:71:35: 4d:91:38:69:7e:c2:c9:42:ed:6c:b6:90:ea:18:ce:68:08:f0: 4a:0d:65:55:5a:38:38:28:2c:cc:41:02:68:bc:c9:88:82:32: 6e:93:45:d1:fd:e6:6a:aa:6b:c1:f8:3a:9a:68:81:58:c7:7f: bc:e5:23:32:ef:3b:02:44:66:a9:26:d6:0b:05:40:32:e1:3a: 6c:2e:05:46:90:cd:e7:2b:12:d0:bb:af:80:6c:c8:6f:8c:0f: 33:2d:34:d3:91:76:78:fe:e3:c3:54:d4:33:9c:e5:4a:2d:a3: 16:a8:59:f5:78:99:72:7f:d3:70:7d:d6:c9:08:87:49:c1:ad: e3:ed:30:98:50:b0:dc:23:a5:07:36:68:b8:07:fc:ef:17:44: 1a:70:11:e0:89:b5:aa:5e:c2:f5:f1:6b:ad:3a:50:2b:19:f8: 67:34:96:a4:cc:f0:5b:d6:5f:f4:4b:b3:cd:72:81:cc:8d:9a: 06:23:b2:db:94:aa:49:bf:68:4a:77:a1:ac:4a:26:ec:af:99: 97:75:e1:42:89:6a:53:83:d7:04:ea:04:9d:0e:df:48:55:fe: ff:d1:7e:24:1f:e9:24:c7:3d:cd:67:0e:a7:88:a2:11:31:ac: b5:8b:4d:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVlYy03YzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlsb+7QmBJnU7npQb7FOWppIwHBiWQtUcFtJbNaolSAQmSUD3Yo4FJBAwLoO 38zUrGVCv1Lw6yp8dqS3bR6NF+fAF+s21qnvXR6ib8qwIVrBAS8gToCoPh1A4QKq IEBj19ByugcmNB6P47vjf4J1Dk9g1Gg7dH4czMCu4N8fcF6GntZM7af79McKeAzx WHdOjg7lVreFx8E3Y9Iiz/R233SvR5Fyxb1KeujKP28toO1glif4B65Wt1ExM4tn LBrv809Y3m7leKIlkE7Z0619cOJ+HkckTzHYwID/EQQVcYpEFbHbf+1uxRzR3oFn ej/MB1UGxZ0r4wEq/ouqTvTPcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ09wiDe Z+oNDpI7bfFm10K6UgfTMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMzFFOTIyNkNE NkU0MTFFRTgzMkU3RjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFFIwDQYJKoZIhvcNAQELBQADggEBAInH/SdPgYnVmuJZ JWxLhpZxNU2ROGl+wslC7Wy2kOoYzmgI8EoNZVVaODgoLMxBAmi8yYiCMm6TRdH9 5mqqa8H4OppogVjHf7zlIzLvOwJEZqkm1gsFQDLhOmwuBUaQzecrEtC7r4BsyG+M DzMtNNORdnj+48NU1DOc5UotoxaoWfV4mXJ/03B91skIh0nBrePtMJhQsNwjpQc2 aLgH/O8XRBpwEeCJtapewvXxa606UCsZ+Gc0lqTM8FvWX/RLs81ygcyNmgYjstuU qkm/aEp3oaxKJuyvmZd14UKJalOD1wTqBJ0O30hV/v/RfiQf6STHPc1nDqeIohEx rLWLTaU= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org