$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31DE4D9C1D0E11EDA9995986C4F9AE02.roa File: 31DE4D9C1D0E11EDA9995986C4F9AE02.roa (raw, json) Hash identifier: 1DUp0KmS/jZnsE1j6nZ+pEQrPVC6Bvnyn+TgfyRgbMg= Subject key identifier: 76:66:A7:42:3F:FE:47:64:2E:A9:81:7B:DE:90:56:CF:0F:14:90:74 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 452D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31DE4D9C1D0E11EDA9995986C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:41 +0000 ROA not before: Thu 05 Sep 2024 03:31:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131352 IP address blocks: 103.28.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17709 (0x452d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:41 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9261c-597c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0f:20:13:41:4c:df:f7:26:af:a0:ff:2e:e5: 0b:bc:bd:b2:aa:f0:ae:fe:1e:9d:f3:2f:32:1f:f8: bf:2f:1c:58:35:b6:e9:4f:55:0a:0b:7f:36:45:ae: 54:17:50:77:92:0b:85:85:49:35:60:23:3d:9f:82: 99:c4:eb:f7:7e:34:64:51:f6:bc:43:9a:c3:0e:b2: 90:77:24:9c:32:7a:a7:a5:e3:c0:ec:9e:e6:8e:51: 8f:ab:c4:48:29:bd:68:6f:a6:0b:31:0b:b2:52:77: a5:58:fa:10:c8:71:6f:13:51:55:e1:57:74:f2:b7: 40:de:a6:2e:71:78:e3:39:94:bd:15:48:06:92:cd: 24:dd:35:90:ad:6f:3f:45:67:98:00:f7:52:9a:8d: d7:0d:cf:43:10:d5:57:26:f4:c0:48:30:7e:8f:58: c6:fb:ef:54:1c:a5:09:d7:f0:e6:0b:92:84:15:51: 15:71:5d:81:84:db:9f:32:73:2b:e8:7a:ca:d0:2d: 10:96:75:70:c5:7a:c9:0f:a9:f3:34:4e:49:c3:cb: 95:bb:9c:4c:ca:f4:69:f2:2d:3e:40:f9:b9:ff:41: 78:ea:ba:a5:cd:e6:91:5e:51:da:b2:5b:43:17:7d: 8f:0a:a4:34:31:93:0e:52:0c:57:e3:fe:69:6d:dd: 7e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:66:A7:42:3F:FE:47:64:2E:A9:81:7B:DE:90:56:CF:0F:14:90:74 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31DE4D9C1D0E11EDA9995986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.172.0/22 Signature Algorithm: sha256WithRSAEncryption 47:2f:56:63:dd:70:3e:17:d3:48:e9:64:f4:1e:7c:f8:24:2b: 96:71:08:e2:a9:8a:06:5d:bb:82:d7:ec:78:11:91:fa:3d:0c: d0:39:a2:f0:60:d5:56:f8:e1:b6:92:9b:e2:2b:82:44:8e:4d: b6:f4:d4:ed:6f:90:82:d1:54:82:72:44:b3:92:37:69:00:83: 98:88:e7:04:77:2e:7d:cb:2c:0f:90:38:00:0f:dc:c6:66:6c: 54:42:5f:73:5e:3b:a9:95:28:13:c7:b1:d7:e5:6d:ec:20:72: 9f:05:4c:63:e6:0c:18:9c:3e:e4:f4:8b:bf:d1:58:0c:7f:8f: 9f:73:08:a7:a2:43:1e:23:05:3b:61:27:65:36:d1:37:94:82: 30:68:29:2a:77:c6:87:c4:eb:e2:65:1a:6d:84:2c:3c:28:05: 00:5a:7e:7c:12:e4:69:e5:a8:50:33:41:9d:3f:e0:0b:fc:11: 8b:24:bf:bc:1c:29:8d:6d:e4:32:58:03:ce:46:a3:4b:d9:bb: 98:b1:e6:ee:dd:aa:e3:0f:b8:8f:09:b0:2a:f8:8d:01:aa:d0: b5:41:cb:e2:b8:f7:6b:46:28:82:37:12:bf:95:70:ae:51:4c: 7b:29:dc:3d:8d:8c:c3:d0:0b:61:86:5d:b2:4d:a4:7c:70:19: 88:15:89:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTQxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxYy01OTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg8gE0FM3/cmr6D/LuULvL2yqvCu/h6d8y8yH/i/LxxYNbbpT1UKC382Ra5U F1B3kguFhUk1YCM9n4KZxOv3fjRkUfa8Q5rDDrKQdyScMnqnpePA7J7mjlGPq8RI Kb1ob6YLMQuyUnelWPoQyHFvE1FV4Vd08rdA3qYucXjjOZS9FUgGks0k3TWQrW8/ RWeYAPdSmo3XDc9DENVXJvTASDB+j1jG++9UHKUJ1/DmC5KEFVEVcV2BhNufMnMr 6HrK0C0QlnVwxXrJD6nzNE5Jw8uVu5xMyvRp8i0+QPm5/0F46rqlzeaRXlHasltD F32PCqQ0MZMOUgxX4/5pbd1+zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHZmp0I/ /kdkLqmBe96QVs8PFJB0MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzFERTREOUMx RDBFMTFFREE5OTk1OTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHKwwDQYJKoZIhvcNAQELBQADggEBAEcvVmPdcD4X00jp ZPQefPgkK5ZxCOKpigZdu4LX7HgRkfo9DNA5ovBg1Vb44baSm+IrgkSOTbb01O1v kILRVIJyRLOSN2kAg5iI5wR3Ln3LLA+QOAAP3MZmbFRCX3NeO6mVKBPHsdflbewg cp8FTGPmDBicPuT0i7/RWAx/j59zCKeiQx4jBTthJ2U20TeUgjBoKSp3xofE6+Jl Gm2ELDwoBQBafnwS5GnlqFAzQZ0/4Av8EYskv7wcKY1t5DJYA85Go0vZu5ix5u7d quMPuI8JsCr4jQGq0LVBy+K492tGKII3Er+VcK5RTHsp3D2NjMPQC2GGXbJNpHxw GYgViag= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org