$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa File: DC3455AAEC3A11EE8CC3B820C4F9AE02.roa (raw, json) Hash identifier: 6hF0dU4P0MeRm30VM912ctfTPw2gKNG03HdGNM+nqro= Subject key identifier: A6:3B:C3:1F:CF:54:09:FC:36:4C:EB:91:FC:29:C5:57:EA:14:63:9B Certificate issuer: /CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Certificate serial: 26 Authority key identifier: EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa Signing time: Wed 27 Mar 2024 13:06:45 +0000 ROA not before: Wed 27 Mar 2024 13:06:44 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140224 IP address blocks: 83.229.40.0/21 maxlen: 21 83.229.40.0/23 maxlen: 23 83.229.42.0/23 maxlen: 23 83.229.44.0/23 maxlen: 23 83.229.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Validity Not Before: Mar 27 13:06:44 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=660419e4-e3c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8e:d2:1a:1c:2d:0e:23:e3:e7:7b:55:f3:47: 3c:7f:bb:d7:c1:c9:14:b6:89:4e:55:15:64:aa:92: 54:01:d4:45:ff:d5:43:9a:a9:de:98:91:59:7f:31: 89:56:d2:7b:bc:e9:e3:74:be:65:f5:8d:55:7f:57: df:12:e4:c2:6d:d3:f4:97:6a:e2:90:69:f6:87:d5: e7:c7:be:1f:9c:e4:22:8e:c5:11:b4:9d:6f:c2:a6: c7:4c:8b:74:30:0c:a4:09:ef:95:7d:24:c7:20:66: 75:1d:93:42:2a:93:f5:5e:38:6b:47:9a:d2:f5:65: a4:2d:e4:b0:3b:f6:38:f5:8e:f5:d3:b9:84:be:8d: cd:ea:23:90:8d:64:f1:a3:0b:61:5f:9b:9b:1f:84: 38:6b:12:e7:da:2c:0e:05:cc:ff:bb:0e:b2:ee:98: 10:c8:15:b9:6b:4a:a0:49:db:e6:a5:5c:8c:14:d9: 3e:e2:23:7b:14:7b:dc:35:12:c3:01:c2:6c:a5:42: 93:8f:d5:2c:d6:ec:5a:3e:bd:43:35:4d:83:1a:33: 9f:61:f5:19:2b:b6:2a:d9:9a:fc:6b:bb:40:de:24: 5c:ca:95:1f:be:f3:d6:8e:df:d6:dc:52:21:b5:6e: 1b:9c:4b:c0:93:6c:c6:1e:f2:27:b8:00:0a:31:88: 68:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3B:C3:1F:CF:54:09:FC:36:4C:EB:91:FC:29:C5:57:EA:14:63:9B X509v3 Authority Key Identifier: keyid:EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.229.40.0/21 Signature Algorithm: sha256WithRSAEncryption 26:08:32:b6:3f:dd:a0:5a:9d:ef:75:f9:10:34:7b:80:fe:36: 7c:7f:ca:51:96:83:71:69:7f:fb:8a:a5:c8:01:0b:06:95:e7: 8a:8c:f0:a1:39:69:d8:d9:eb:3d:92:81:51:4d:c4:32:c4:a7: 41:d1:5e:29:87:e7:f7:2c:a1:25:fc:51:92:dc:e8:06:29:64: 81:55:98:16:db:d2:a8:e7:32:58:28:d9:9a:83:80:2f:73:da: b6:18:81:d3:0e:28:c7:a9:e4:5c:60:f4:e2:c3:a2:0b:8d:ad: 44:0a:8e:73:43:ea:a6:b5:e8:96:02:a1:1d:48:42:15:7c:06: c5:25:9b:17:1b:b2:7a:f6:b4:d9:2e:94:0c:a4:26:e1:67:92: 96:ec:45:60:16:1b:0b:c1:f6:8b:d1:42:2b:0b:fd:15:b8:f9: 2c:f2:8c:a9:77:06:5c:cb:a3:ec:23:eb:47:6d:b2:9b:81:12: e5:1f:cc:57:40:c4:36:5a:5b:b4:21:6f:84:95:77:f7:4b:14: eb:20:f6:f2:ce:f6:d8:34:1f:44:ce:23:5f:0d:e2:0e:ca:ea: dc:9c:3d:95:61:fd:aa:76:ce:c0:28:05:eb:40:ea:92:c0:de: c7:04:f5:e9:c2:64:d0:42:9f:1e:8b:62:cd:4b:37:8a:ae:30: 41:b8:e6:21 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjUzNTExMC8GA1UEBRMoRUFENjQ2MzU1RDc1OTM2Q0I5M0VENkJBREI3OTBBODdG RTE1Mzc0QTAeFw0yNDAzMjcxMzA2NDRaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDQxOWU0LWUzYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtjtIaHC0OI+Pne1XzRzx/u9fByRS2iU5VFWSqklQB1EX/1UOaqd6YkVl/MYlW 0nu86eN0vmX1jVV/V98S5MJt0/SXauKQafaH1efHvh+c5CKOxRG0nW/CpsdMi3Qw DKQJ75V9JMcgZnUdk0Iqk/VeOGtHmtL1ZaQt5LA79jj1jvXTuYS+jc3qI5CNZPGj C2Ffm5sfhDhrEufaLA4FzP+7DrLumBDIFblrSqBJ2+alXIwU2T7iI3sUe9w1EsMB wmylQpOP1SzW7Fo+vUM1TYMaM59h9RkrtirZmvxru0DeJFzKlR++89aO39bcUiG1 bhucS8CTbMYe8ie4AAoxiGh5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpjvDH89U Cfw2TOuR/CnFV+oUY5swHwYDVR0jBBgwFoAU6tZGNV11k2y5Pta623kKh/4VN0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNTM1LzYxOTgwQTU0QkE2 NjExRUVCQzM5NjI2RUM0RjlBRTAyLzZ0WkdOVjExazJ5NVB0YTYyM2tLaF80Vk4w by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvNnRaR05WMTFrMnk1UHRhNjIza0toXzRWTjBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjUzNS82MTk4MEE1NEJBNjYxMUVFQkMzOTYyNkVDNEY5QUUwMi9EQzM0NTVBQUVD M0ExMUVFOENDM0I4MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA1PlKDANBgkqhkiG9w0BAQsFAAOCAQEAJggytj/doFqd73X5 EDR7gP42fH/KUZaDcWl/+4qlyAELBpXniozwoTlp2NnrPZKBUU3EMsSnQdFeKYfn 9yyhJfxRktzoBilkgVWYFtvSqOcyWCjZmoOAL3PathiB0w4ox6nkXGD04sOiC42t RAqOc0PqprXolgKhHUhCFXwGxSWbFxuyeva02S6UDKQm4WeSluxFYBYbC8H2i9FC Kwv9Fbj5LPKMqXcGXMuj7CPrR22ym4ES5R/MV0DENlpbtCFvhJV390sU6yD28s72 2DQfRM4jXw3iDsrq3Jw9lWH9qnbOwCgF60DqksDexwT16cJk0EKfHotizUs3iq4w QbjmIQ== -----END CERTIFICATE-----Generated at Fri May 3 09:08:46 2024 by rpki-client on console-fra.rpki-client.org