$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/31471C24E77311EFA0F80E53C4F9AE02.roa File: 31471C24E77311EFA0F80E53C4F9AE02.roa (raw, json) Hash identifier: ZmMACpx0tXblh0b0hKepgV++JlkkfQUXi26fcUJQ2dU= Subject key identifier: 17:E2:D3:9D:5E:30:17:76:7A:09:95:6E:FD:10:B0:50:AB:1A:8E:00 Certificate issuer: /CN=A91A7273/serialNumber=09067882CDC020349161E093BF34731B3F822BD7 Certificate serial: 02 Authority key identifier: 09:06:78:82:CD:C0:20:34:91:61:E0:93:BF:34:73:1B:3F:82:2B:D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/31471C24E77311EFA0F80E53C4F9AE02.roa Signing time: Mon 10 Feb 2025 05:52:21 +0000 ROA not before: Mon 10 Feb 2025 05:52:21 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132894 IP address blocks: 160.191.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.crl rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=09067882CDC020349161E093BF34731B3F822BD7 Validity Not Before: Feb 10 05:52:21 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67a99414-0bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ce:c9:43:ad:13:cf:00:7a:5f:a2:7d:ff:1d: 47:e3:22:41:a4:25:bf:09:3a:97:66:76:1b:07:9e: 51:94:0e:3f:c6:b9:a8:51:e4:08:58:7b:1a:06:32: c6:6a:68:ed:e9:02:e6:dd:8e:d7:17:62:32:a4:46: 44:99:6c:8a:eb:0d:f5:b4:97:5c:30:76:c0:54:c0: bc:b3:8e:89:c1:a9:87:dd:1e:39:80:fa:e8:b1:ce: 83:8d:22:48:b6:96:a7:35:74:c4:6d:5a:27:f8:6b: 2f:aa:9d:ab:76:c5:fd:38:9e:7a:15:f8:02:24:04: f5:b9:0e:b9:62:08:e6:b8:e7:2b:bc:be:0f:32:ca: 68:92:df:d3:24:7f:40:55:e1:ec:76:f8:07:2d:96: a4:d0:75:21:ef:d9:76:6e:c0:e6:28:f0:84:ff:87: d9:e7:19:c0:e2:83:6d:0a:f9:f1:62:ec:bd:15:c1: c0:92:cf:a5:a3:fc:21:05:9b:c1:5c:c0:65:b3:87: fa:0c:59:a5:28:9e:5e:0a:90:b0:a2:c0:24:38:8e: 80:87:1a:77:ca:db:d4:ad:e9:15:64:a5:eb:e1:58: d2:be:ad:de:e9:66:b0:b9:64:f3:0d:11:b3:b3:6b: b1:c7:45:f9:1f:09:e9:bb:ba:54:6d:4c:3d:be:20: df:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E2:D3:9D:5E:30:17:76:7A:09:95:6E:FD:10:B0:50:AB:1A:8E:00 X509v3 Authority Key Identifier: keyid:09:06:78:82:CD:C0:20:34:91:61:E0:93:BF:34:73:1B:3F:82:2B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/31471C24E77311EFA0F80E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:93:d7:c1:a5:4b:6d:28:a5:61:b9:71:ff:ca:cc:bd:cf:d9: 9f:a4:e2:5a:b3:eb:bc:bb:d4:91:55:98:b4:b7:7f:a3:c8:9d: 2c:75:14:3b:b5:15:06:24:cc:d3:04:58:6a:ba:fe:9c:7f:0d: 2a:5c:8e:9f:ae:76:37:f6:a5:a0:f1:05:ee:78:b7:ce:11:5d: 20:a8:51:02:b3:8e:da:5b:52:76:50:c3:06:75:38:96:3d:bd: 5f:11:77:cc:11:bf:77:11:11:96:69:d5:6e:50:f1:49:14:b4: cc:7b:bf:c1:c0:d8:28:da:ec:f1:fa:f1:66:04:2d:d0:99:04: 0d:6c:be:18:9e:31:b8:37:a4:22:82:34:6c:0c:6b:a3:58:3b: f0:4d:45:a0:b9:b0:6e:56:39:08:cd:12:bc:ab:bf:84:23:65: 5d:3e:7d:ae:47:5e:a5:fc:c3:69:af:d8:52:a6:7f:d5:21:6c: 0d:35:c3:37:29:fb:9d:b3:b4:bd:05:a1:5c:f0:af:b1:6a:3d: 21:5a:a0:a0:7f:b9:2a:a3:d2:37:a4:94:f3:24:f7:d9:55:05: 9d:df:e3:15:ff:e7:e2:c3:bc:8a:b1:36:cc:ea:31:9e:c1:05: c7:9c:05:60:70:e9:bd:ee:5f:4c:22:c5:4e:aa:0b:86:80:da: 5d:2a:1a:9d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzI3MzExMC8GA1UEBRMoMDkwNjc4ODJDREMwMjAzNDkxNjFFMDkzQkYzNDczMUIz RjgyMkJENzAeFw0yNTAyMTAwNTUyMjFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTk5NDE0LTBiZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYzslDrRPPAHpfon3/HUfjIkGkJb8JOpdmdhsHnlGUDj/GuahR5AhYexoGMsZq aO3pAubdjtcXYjKkRkSZbIrrDfW0l1wwdsBUwLyzjonBqYfdHjmA+uixzoONIki2 lqc1dMRtWif4ay+qnat2xf04nnoV+AIkBPW5DrliCOa45yu8vg8yymiS39Mkf0BV 4ex2+ActlqTQdSHv2XZuwOYo8IT/h9nnGcDig20K+fFi7L0VwcCSz6Wj/CEFm8Fc wGWzh/oMWaUonl4KkLCiwCQ4joCHGnfK29St6RVkpevhWNK+rd7pZrC5ZPMNEbOz a7HHRfkfCem7ulRtTD2+IN+jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF+LTnV4w F3Z6CZVu/RCwUKsajgAwHwYDVR0jBBgwFoAUCQZ4gs3AIDSRYeCTvzRzGz+CK9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3MjczL0YzRDIyQzJDRTc3 MTExRUY5REZCREQ1MEM0RjlBRTAyL0NRWjRnczNBSURTUlllQ1R2elJ6R3otQ0s5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ1FaNGdzM0FJRFNSWWVDVHZ6UnpHei1DSzljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GM0QyMkMyQ0U3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zMTQ3MUMyNEU3 NzMxMUVGQTBGODBFNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/PDANBgkqhkiG9w0BAQsFAAOCAQEAW5PXwaVLbSilYblx /8rMvc/Zn6TiWrPrvLvUkVWYtLd/o8idLHUUO7UVBiTM0wRYarr+nH8NKlyOn652 N/aloPEF7ni3zhFdIKhRArOO2ltSdlDDBnU4lj29XxF3zBG/dxERlmnVblDxSRS0 zHu/wcDYKNrs8frxZgQt0JkEDWy+GJ4xuDekIoI0bAxro1g78E1FoLmwblY5CM0S vKu/hCNlXT59rkdepfzDaa/YUqZ/1SFsDTXDNyn7nbO0vQWhXPCvsWo9IVqgoH+5 KqPSN6SU8yT32VUFnd/jFf/n4sO8irE2zOoxnsEFx5wFYHDpve5fTCLFTqoLhoDa XSoanQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:00 2025 by rpki-client