$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa File: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (raw, json) Hash identifier: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU= Subject key identifier: 3F:58:69:D5:6B:03:94:49:FF:96:CE:42:5F:DA:05:41:FC:F4:ED:95 Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: 07 Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa Signing time: Sun 15 Dec 2024 06:14:49 +0000 ROA not before: Sun 15 Dec 2024 06:14:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135091 IP address blocks: 160.250.190.0/23 maxlen: 23 160.250.190.0/24 maxlen: 24 160.250.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A Validity Not Before: Dec 15 06:14:49 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=675e73d9-52d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:0b:d7:d4:f3:20:a4:ba:5d:9c:c3:e7:fe: 69:c7:09:a4:ee:d7:5b:a1:f8:84:e1:c3:36:88:4b: 71:80:f5:76:40:b8:ae:67:47:e0:ea:21:8a:87:ef: 0e:ba:f5:fc:54:af:6c:3d:44:0d:3a:18:6d:31:ca: 9b:1f:d3:7d:8f:0d:d5:b7:da:be:a3:2c:82:51:e2: ca:dc:d6:1b:a0:0d:b0:aa:3a:35:54:49:9f:db:a2: 87:ab:cf:73:44:03:a1:de:d6:6b:e7:0f:48:0e:7c: 51:eb:68:af:ef:fe:70:26:8a:a8:67:03:98:81:59: 3b:6f:36:6f:ed:0b:ae:d0:d5:f8:88:9b:00:f2:89: f3:a2:fe:f7:90:9f:de:26:d7:c1:85:9a:a2:82:dc: 28:1a:da:8a:1e:13:40:44:6c:c4:58:46:08:8b:c8: 25:4b:ab:2d:74:69:5c:f1:e7:dc:f8:e9:2e:91:77: b2:48:e0:34:1f:90:8b:56:45:bd:aa:0d:34:4c:36: 1e:5f:4c:ce:55:37:b9:3b:b7:36:f1:95:ab:9f:99: 4c:7a:84:21:36:ae:b1:91:63:a3:c4:ac:5f:e4:23: 0f:c5:ea:33:82:29:ff:5b:2a:7e:a2:e1:7d:51:f3: a8:19:aa:e7:c7:ad:eb:72:01:cd:ec:d8:53:95:86: 55:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:58:69:D5:6B:03:94:49:FF:96:CE:42:5F:DA:05:41:FC:F4:ED:95 X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.190.0/23 Signature Algorithm: sha256WithRSAEncryption aa:fa:f1:e1:f7:a5:10:a4:42:6e:6f:52:2d:36:ca:9d:81:f9: 7e:d0:5f:71:d3:7d:9c:64:b8:b1:f7:2d:43:f5:f6:50:d8:3a: 85:c2:69:1a:36:f8:12:5f:d7:b0:b8:e4:95:d6:02:90:c9:d7: 86:4b:94:5b:40:5b:db:bd:86:ca:d9:ea:fa:2f:30:77:1b:f9: a7:48:31:e8:de:1d:63:31:4e:75:75:65:d6:f6:9e:1a:91:ab: 1d:e4:ff:a4:6a:d6:92:64:f1:8e:25:bb:e2:e8:bc:f5:02:22: 0c:74:fc:7b:cc:ef:3a:ad:5d:19:6f:da:4f:3d:25:f7:cc:d7: 80:1a:76:ca:7a:f0:e0:5e:af:03:00:8c:23:68:53:1c:50:9f: 81:95:4d:3c:39:b4:42:5d:04:46:65:6f:5b:5a:a3:72:2b:32: e0:65:d8:50:a6:d1:67:81:b4:15:33:4c:75:ba:50:a0:13:12: a4:5c:63:c0:16:62:41:f0:45:34:10:67:70:7d:c4:5d:ab:8e: 01:89:33:6f:ee:23:c9:4d:96:69:12:fb:3d:52:ec:d8:42:52: f5:b8:23:f0:23:94:27:09:89:7b:c0:4e:18:bc:24:d6:f4:d2: 7b:71:48:c6:84:48:b2:5f:de:18:3c:42:a3:6f:ed:37:0f:a4: ab:33:94:53 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoNkYzRTAyNjIwMEQ1NTM5RjI3RTBGM0FBNTBEMzIwQTI0 NTI4RDU3RDAeFw0yNDEyMTUwNjE0NDlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NWU3M2Q5LTUyZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwkQvX1PMgpLpdnMPn/mnHCaTu11uh+IThwzaIS3GA9XZAuK5nR+DqIYqH7w66 9fxUr2w9RA06GG0xypsf032PDdW32r6jLIJR4src1hugDbCqOjVUSZ/booerz3NE A6He1mvnD0gOfFHraK/v/nAmiqhnA5iBWTtvNm/tC67Q1fiImwDyifOi/veQn94m 18GFmqKC3Cga2ooeE0BEbMRYRgiLyCVLqy10aVzx59z46S6Rd7JI4DQfkItWRb2q DTRMNh5fTM5VN7k7tzbxlaufmUx6hCE2rrGRY6PErF/kIw/F6jOCKf9bKn6i4X1R 86gZqufHretyAc3s2FOVhlX5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUP1hp1WsD lEn/ls5CX9oFQfz07ZUwHwYDVR0jBBgwFoAUbz4CYgDVU58n4POqUNMgokUo1X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBL0ZGRjJFNkE4QjYz MDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYno0Q1lnRFZVNThuNFBPcVVOTWdva1VvMVgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi8zMUVDMkU1Q0JB QUIxMUVGQTk3QjJDNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6vjANBgkqhkiG9w0BAQsFAAOCAQEAqvrx4felEKRCbm9S LTbKnYH5ftBfcdN9nGS4sfctQ/X2UNg6hcJpGjb4El/XsLjkldYCkMnXhkuUW0Bb 272Gytnq+i8wdxv5p0gx6N4dYzFOdXVl1vaeGpGrHeT/pGrWkmTxjiW74ui89QIi DHT8e8zvOq1dGW/aTz0l98zXgBp2ynrw4F6vAwCMI2hTHFCfgZVNPDm0Ql0ERmVv W1qjcisy4GXYUKbRZ4G0FTNMdbpQoBMSpFxjwBZiQfBFNBBncH3EXauOAYkzb+4j yU2WaRL7PVLs2EJS9bgj8COUJwmJe8BOGLwk1vTSe3FIxoRIsl/eGDxCo2/tNw+k qzOUUw== -----END CERTIFICATE-----Generated at Wed Feb 5 21:50:23 2025 by rpki-client