$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/C1BECCFC68ED11EF85713047C4F9AE02.roa File: C1BECCFC68ED11EF85713047C4F9AE02.roa (raw, json) Hash identifier: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc= Subject key identifier: 69:27:85:B3:91:74:9B:F2:7B:DE:93:F8:31:E2:9D:F1:21:C3:61:F8 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: C5 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/C1BECCFC68ED11EF85713047C4F9AE02.roa Signing time: Tue 19 Nov 2024 04:19:04 +0000 ROA not before: Tue 19 Nov 2024 04:19:04 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 198949 IP address blocks: 156.69.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A Validity Not Before: Nov 19 04:19:04 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673c11b8-1f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0b:a6:49:d0:cd:4c:ff:c4:e4:b5:67:82:91: 39:b5:eb:9e:d9:3c:10:e5:f2:9e:dc:50:e2:eb:45: 17:f8:7a:b4:47:a6:e4:30:98:64:d9:7e:b6:1a:05: 4a:33:e1:49:40:cf:67:ed:66:3f:9a:ac:9a:18:09: 3a:b9:af:cb:3f:02:1b:51:05:db:a2:a5:df:3a:0d: 7e:34:30:d9:d1:31:7f:fd:c9:71:b9:05:dc:db:6e: 00:c8:df:d3:b8:20:7c:11:2e:21:6e:1b:e1:b5:98: bf:8b:40:94:17:15:e0:4a:c3:3e:29:76:a7:de:06: 1b:24:a8:c9:2c:f3:d9:57:68:97:ad:60:67:47:60: 84:90:7b:15:bb:89:64:f5:47:d6:bb:7c:20:b3:11: 57:fd:0c:d6:20:f0:e6:5f:2e:5c:c4:8e:61:54:c5: 9d:e2:37:ab:d6:24:6f:a6:a4:55:83:c0:9a:36:94: fc:e5:8e:08:d1:fa:8b:4f:34:17:cb:4d:3e:41:46: 2f:0c:11:5a:86:34:12:1b:cc:f1:ec:35:48:d1:3c: f1:ed:1c:4e:d6:4d:39:03:35:00:65:9b:57:de:87: 3f:5c:44:f6:c1:f3:b5:75:22:05:3e:96:24:61:f7: 25:3b:dc:bb:15:74:1a:6e:f3:19:e6:8f:9d:3a:6f: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:27:85:B3:91:74:9B:F2:7B:DE:93:F8:31:E2:9D:F1:21:C3:61:F8 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/C1BECCFC68ED11EF85713047C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.69.31.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:8b:2a:fd:f1:14:99:a2:f6:26:f6:00:37:51:3c:88:bd:79: 6e:04:b5:3a:d1:eb:e1:36:49:e9:d0:b2:82:05:58:2e:ca:1a: cc:9b:af:55:f6:fa:cd:c6:9c:20:60:53:99:f2:f7:c6:22:5f: 52:4a:66:cc:d0:9a:b4:45:ca:5a:e8:26:73:2c:b1:9a:f8:95: a1:7f:49:39:e2:e9:2b:8c:1a:53:72:de:6c:c1:80:c4:5c:4d: 2c:5d:70:55:d5:3a:12:f4:f3:8a:00:f6:0d:6c:99:a2:f3:b4: de:e7:ec:bb:dc:8d:71:96:96:0b:03:33:49:04:f5:54:dd:0f: 1a:58:d3:e6:5c:d3:3a:09:27:88:37:30:6d:60:f3:2e:a0:26: f1:2f:2f:d2:1a:2b:8c:37:ca:07:0d:98:03:47:c7:41:f9:4d: eb:34:fe:24:f5:3f:f8:61:60:e0:c9:ed:e2:28:ba:d9:3b:fd: 9c:75:f5:00:e6:80:c1:fa:7d:c3:80:ed:42:9e:bf:a1:e6:2a: ad:5b:23:35:0c:69:e9:2b:26:b4:88:71:d4:f8:c7:41:81:0d: b5:96:c8:fa:36:ef:2a:fa:e4:71:f5:fb:af:a2:2d:83:fc:d4: c0:39:e4:b2:f3:86:d7:91:bb:e4:25:4d:95:c4:ee:0c:f9:fe: a2:3c:1c:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjQxMTE5MDQxOTA0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjMTFiOC0xZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgumSdDNTP/E5LVngpE5teue2TwQ5fKe3FDi60UX+Hq0R6bkMJhk2X62GgVK M+FJQM9n7WY/mqyaGAk6ua/LPwIbUQXboqXfOg1+NDDZ0TF//clxuQXc224AyN/T uCB8ES4hbhvhtZi/i0CUFxXgSsM+KXan3gYbJKjJLPPZV2iXrWBnR2CEkHsVu4lk 9UfWu3wgsxFX/QzWIPDmXy5cxI5hVMWd4jer1iRvpqRVg8CaNpT85Y4I0fqLTzQX y00+QUYvDBFahjQSG8zx7DVI0Tzx7RxO1k05AzUAZZtX3oc/XET2wfO1dSIFPpYk YfclO9y7FXQabvMZ5o+dOm/zEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGknhbOR dJvye96T+DHinfEhw2H4MB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMxOEEvRUNGRjJBRjg4N0U2MTFFRTk3RTZDNzQ2QzRGOUFFMDIvQzFCRUNDRkM2 OEVEMTFFRjg1NzEzMDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACcRR8wDQYJKoZIhvcNAQELBQADggEBAIqLKv3xFJmi9ib2 ADdRPIi9eW4EtTrR6+E2SenQsoIFWC7KGsybr1X2+s3GnCBgU5ny98YiX1JKZszQ mrRFylroJnMssZr4laF/STni6SuMGlNy3mzBgMRcTSxdcFXVOhL084oA9g1smaLz tN7n7LvcjXGWlgsDM0kE9VTdDxpY0+Zc0zoJJ4g3MG1g8y6gJvEvL9IaK4w3ygcN mANHx0H5Tes0/iT1P/hhYODJ7eIoutk7/Zx19QDmgMH6fcOA7UKev6HmKq1bIzUM aekrJrSIcdT4x0GBDbWWyPo27yr65HH1+6+iLYP81MA55LLzhteRu+QlTZXE7gz5 /qI8HNc= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:26 2025 by rpki-client