$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa File: 31A71E34407111EFAC14A640C4F9AE02.roa (raw, json) Hash identifier: QZyp/NAeyEcMKI15puD7C1JuiiYqkZ4eVp+fIRetfg8= Subject key identifier: FA:65:1D:FB:FD:1A:2D:9A:DE:8B:24:2F:05:6D:73:96:23:3B:D6:FE Certificate issuer: /CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Certificate serial: 02 Authority key identifier: B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa Signing time: Fri 12 Jul 2024 17:07:18 +0000 ROA not before: Fri 12 Jul 2024 17:07:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45441 IP address blocks: 103.2.112.0/22 maxlen: 22 115.178.60.0/24 maxlen: 24 115.178.61.0/24 maxlen: 24 115.178.62.0/24 maxlen: 24 115.178.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Validity Not Before: Jul 12 17:07:18 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=669162c6-0e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e7:f0:9e:32:d0:54:c8:1e:20:c7:a7:b1:83: ae:17:3f:58:31:04:e0:86:de:9b:5f:54:a5:d0:d7: 47:b4:9f:a7:55:68:fb:c8:d2:93:49:df:61:e4:6b: c8:04:96:1e:e3:59:08:9a:37:44:ec:07:55:2f:63: ad:02:8c:8c:7c:33:94:ed:ef:fe:b6:d2:e3:68:45: df:4c:20:71:9b:70:0a:04:ea:39:10:44:62:3e:2c: de:07:06:cd:07:9f:8a:b3:e6:43:5c:c5:0b:ab:07: ed:43:97:64:4d:22:cd:8b:c9:3d:20:c7:1b:47:a4: 49:73:45:c1:af:35:dc:ca:81:63:f1:56:cb:49:66: 34:3d:9c:77:44:10:8b:15:95:99:71:c6:e0:6c:8c: 78:98:03:8b:b1:b4:9e:d4:12:a5:3b:6e:5b:81:db: ef:61:c5:66:34:3d:18:a8:4a:c7:c6:09:a8:80:93: 8e:04:6f:7c:9b:1e:34:66:b5:5e:2d:23:d7:38:f9: 20:34:2d:0d:49:9b:21:90:c9:1d:5d:04:7d:ae:63: 29:5c:af:f7:66:c3:cf:77:49:67:f0:c3:d4:bf:48: ef:c0:20:56:6e:91:8d:19:0f:a8:a6:be:9d:b5:6b: 4a:58:b3:81:7e:03:87:65:20:79:10:7c:03:e3:08: e7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:65:1D:FB:FD:1A:2D:9A:DE:8B:24:2F:05:6D:73:96:23:3B:D6:FE X509v3 Authority Key Identifier: keyid:B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.112.0/22 115.178.60.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:f0:49:cc:21:01:30:be:7b:fe:31:60:00:89:37:ec:04:fc: d2:f4:14:94:a1:02:80:d4:91:3a:72:ac:e1:15:fa:e6:4f:9c: a4:da:4f:61:32:df:49:f7:ef:0c:c7:f0:c7:e6:89:4a:6d:8f: f0:de:c9:18:22:49:e8:17:8a:5a:24:ea:51:e4:1c:c8:94:de: 71:ed:17:9a:45:23:5d:47:d4:3e:6b:f0:74:a6:27:95:4a:7c: b0:4e:d1:37:05:07:f0:ec:ca:1c:2e:d3:2b:21:4d:0f:ba:de: 5e:cf:c9:41:25:83:89:9f:da:8b:3e:d1:07:82:66:45:19:b0: 33:7b:59:a6:31:ae:16:e6:ab:9e:a8:bb:f6:05:a2:a5:48:cd: c4:a3:51:d4:db:22:a7:ca:69:55:fe:f1:dd:43:e3:75:39:92: 67:95:4c:7d:ea:78:db:17:a3:a0:5d:bd:4f:46:40:11:54:f7: 33:ee:80:b7:6e:ac:b9:ed:44:0a:2a:24:08:30:a1:ac:2a:9b: 83:89:25:90:8e:08:28:40:e5:8e:ab:5e:a5:3d:9b:70:af:c6: b6:08:c8:97:9f:b2:ae:fa:84:e5:85:82:da:14:0a:bc:f7:b7: 72:5d:aa:8a:ea:95:bc:25:71:fa:87:44:56:dc:6f:ea:53:ee: 03:53:a5:46 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MUE5QzExMC8GA1UEBRMoQjU5REZEQjUwOEE5QkFCRENGOERBQUFGRTNGM0RFNjk1 OUZCMTNBQTAeFw0yNDA3MTIxNzA3MThaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTE2MmM2LTBlMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi5/CeMtBUyB4gx6exg64XP1gxBOCG3ptfVKXQ10e0n6dVaPvI0pNJ32Hka8gE lh7jWQiaN0TsB1UvY60CjIx8M5Tt7/620uNoRd9MIHGbcAoE6jkQRGI+LN4HBs0H n4qz5kNcxQurB+1Dl2RNIs2LyT0gxxtHpElzRcGvNdzKgWPxVstJZjQ9nHdEEIsV lZlxxuBsjHiYA4uxtJ7UEqU7bluB2+9hxWY0PRioSsfGCaiAk44Eb3ybHjRmtV4t I9c4+SA0LQ1JmyGQyR1dBH2uYylcr/dmw893SWfww9S/SO/AIFZukY0ZD6imvp21 a0pYs4F+A4dlIHkQfAPjCOdjAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU+mUd+/0a LZreiyQvBW1zliM71v4wHwYDVR0jBBgwFoAUtZ39tQipur3Pjaqv4/PeaVn7E6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxQTlDLzhFOEIzRTdFNDA3 MDExRUZCNEExODAwQUM0RjlBRTAyL3RaMzl0UWlwdXIzUGphcXY0X1BlYVZuN0U2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFozOXRRaXB1cjNQamFxdjRfUGVhVm43RTZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUE5Qy84RThCM0U3RTQwNzAxMUVGQjRBMTgwMEFDNEY5QUUwMi8zMUE3MUUzNDQw NzExMUVGQUMxNEE2NDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcCcAMEAnOyPDANBgkqhkiG9w0BAQsFAAOCAQEAXvBJzCEB ML57/jFgAIk37AT80vQUlKECgNSROnKs4RX65k+cpNpPYTLfSffvDMfwx+aJSm2P 8N7JGCJJ6BeKWiTqUeQcyJTece0XmkUjXUfUPmvwdKYnlUp8sE7RNwUH8OzKHC7T KyFND7reXs/JQSWDiZ/aiz7RB4JmRRmwM3tZpjGuFuarnqi79gWipUjNxKNR1Nsi p8ppVf7x3UPjdTmSZ5VMfep42xejoF29T0ZAEVT3M+6At26sue1ECiokCDChrCqb g4klkI4IKEDljqtepT2bcK/GtgjIl5+yrvqE5YWC2hQKvPe3cl2qiuqVvCVx+odE Vtxv6lPuA1OlRg== -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:40 2024 by rpki-client on console-fra.rpki-client.org