$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/836FCA52168411EFB6BDB96BC4F9AE02.roa File: 836FCA52168411EFB6BDB96BC4F9AE02.roa (raw, json) Hash identifier: TcxR5GasmaKH6rGfRvY0IoCldVHXhPAOZAWVkfzaYfo= Subject key identifier: A9:97:98:0E:6E:F8:92:6C:7D:77:EF:C8:4A:44:7A:F5:46:B7:B0:EA Certificate issuer: /CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Certificate serial: 4C Authority key identifier: EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/836FCA52168411EFB6BDB96BC4F9AE02.roa Signing time: Mon 20 May 2024 08:39:47 +0000 ROA not before: Mon 20 May 2024 08:39:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 400619 IP address blocks: 83.229.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 02:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Validity Not Before: May 20 08:39:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664b0c53-47b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6b:2e:c5:ec:b0:ad:1f:ee:73:d9:1d:7f:87: d9:ec:f1:5b:4e:c7:f5:93:18:9b:b4:54:77:77:ce: e1:7c:e0:41:72:5c:b7:a2:96:3b:74:05:4c:d4:f7: b7:66:37:c9:8d:37:38:9b:8d:1a:9d:61:4e:2c:da: da:fa:80:83:c4:95:62:f5:d1:c3:ed:4c:e5:f1:7c: 99:94:9b:2b:aa:a6:e5:2b:27:b6:bd:e0:07:8d:ca: f4:05:98:3c:84:f7:1b:47:2e:ed:7e:00:63:08:eb: ed:fc:74:73:d2:99:69:13:6c:4f:a7:95:b8:0b:e9: 7b:07:14:c1:05:37:c3:c2:c9:87:fa:0e:19:d7:e1: 66:a4:92:fe:71:92:9f:18:81:e2:42:c4:2b:0a:2e: 3f:3b:2e:bb:b8:0e:97:be:b0:1d:72:ed:bb:ac:b7: 6b:b1:8a:7d:a7:f4:de:b4:f7:b8:66:1c:04:2a:21: d5:4a:44:c7:11:5d:a3:1f:90:f5:9f:2b:4e:7c:33: b0:98:35:58:0e:b0:78:95:51:d9:32:bf:66:23:c9: 00:02:37:20:eb:3c:9d:b8:a8:14:df:9e:03:21:cf: 06:69:25:18:90:e8:ed:c2:1b:21:42:05:48:fa:c5: 61:98:f5:c6:71:7b:4d:43:df:34:00:02:44:0b:12: 8a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:97:98:0E:6E:F8:92:6C:7D:77:EF:C8:4A:44:7A:F5:46:B7:B0:EA X509v3 Authority Key Identifier: keyid:EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/836FCA52168411EFB6BDB96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.229.40.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:a7:d4:05:b2:b7:f5:33:6d:d2:97:69:8e:94:f1:8e:75:f0: ae:30:bc:df:08:3b:0e:78:fd:39:1b:05:c2:c5:5c:91:dc:94: e6:9e:34:76:a9:6b:14:9a:2c:8d:fe:61:cc:d6:dd:d2:f4:64: 0c:33:6f:71:c7:b2:3e:1a:f8:0c:bf:f5:43:d3:5d:56:69:97: a9:e6:40:d2:3e:61:93:54:01:be:e5:3a:72:2f:b0:e5:51:39: 25:fd:4c:b0:db:0d:b9:c7:a5:b5:a0:3d:04:0f:a5:04:1a:b6: 0e:bc:2c:6f:ab:5b:de:2a:6a:7d:64:2c:78:f3:54:3f:88:7f: b7:2d:3e:e8:5c:54:9d:72:f6:25:21:73:12:89:fe:b0:c1:bc: 77:35:aa:85:22:be:6b:ae:01:c0:cc:34:d3:63:ef:c3:55:64: 9a:68:21:bc:24:62:d6:0a:84:05:f1:7b:13:b9:8d:cd:63:1b: 8b:b0:6c:71:14:8d:fc:93:b4:19:35:10:f4:e9:44:27:aa:25: 8f:a8:76:2d:8f:eb:72:6b:61:36:c7:70:bd:ba:a0:c0:e7:62: ae:70:73:de:74:7e:31:73:eb:d7:36:4a:e6:41:9a:a2:20:7f: b5:20:10:77:61:97:d0:0e:9b:5e:e4:0e:85:84:b1:01:f1:50: 1b:88:c1:ff -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjUzNTExMC8GA1UEBRMoRUFENjQ2MzU1RDc1OTM2Q0I5M0VENkJBREI3OTBBODdG RTE1Mzc0QTAeFw0yNDA1MjAwODM5NDdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGIwYzUzLTQ3YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPay7F7LCtH+5z2R1/h9ns8VtOx/WTGJu0VHd3zuF84EFyXLeiljt0BUzU97dm N8mNNzibjRqdYU4s2tr6gIPElWL10cPtTOXxfJmUmyuqpuUrJ7a94AeNyvQFmDyE 9xtHLu1+AGMI6+38dHPSmWkTbE+nlbgL6XsHFMEFN8PCyYf6DhnX4Wakkv5xkp8Y geJCxCsKLj87Lru4Dpe+sB1y7bust2uxin2n9N6097hmHAQqIdVKRMcRXaMfkPWf K058M7CYNVgOsHiVUdkyv2YjyQACNyDrPJ24qBTfngMhzwZpJRiQ6O3CGyFCBUj6 xWGY9cZxe01D3zQAAkQLEorlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqZeYDm74 kmx9d+/ISkR69Ua3sOowHwYDVR0jBBgwFoAU6tZGNV11k2y5Pta623kKh/4VN0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNTM1LzYxOTgwQTU0QkE2 NjExRUVCQzM5NjI2RUM0RjlBRTAyLzZ0WkdOVjExazJ5NVB0YTYyM2tLaF80Vk4w by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvNnRaR05WMTFrMnk1UHRhNjIza0toXzRWTjBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjUzNS82MTk4MEE1NEJBNjYxMUVFQkMzOTYyNkVDNEY5QUUwMi84MzZGQ0E1MjE2 ODQxMUVGQjZCREI5NkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA1PlKDANBgkqhkiG9w0BAQsFAAOCAQEAm6fUBbK39TNt0pdp jpTxjnXwrjC83wg7Dnj9ORsFwsVckdyU5p40dqlrFJosjf5hzNbd0vRkDDNvccey Phr4DL/1Q9NdVmmXqeZA0j5hk1QBvuU6ci+w5VE5Jf1MsNsNuceltaA9BA+lBBq2 Drwsb6tb3ipqfWQsePNUP4h/ty0+6FxUnXL2JSFzEon+sMG8dzWqhSK+a64BwMw0 02Pvw1VkmmghvCRi1gqEBfF7E7mNzWMbi7BscRSN/JO0GTUQ9OlEJ6olj6h2LY/r cmthNsdwvbqgwOdirnBz3nR+MXPr1zZK5kGaoiB/tSAQd2GX0A6bXuQOhYSxAfFQ G4jB/w== -----END CERTIFICATE-----Generated at Tue Sep 17 06:00:04 2024 by rpki-client on console-ams.rpki-client.org