$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/5B76DF12820611EE8A06123AC4F9AE02.roa File: 5B76DF12820611EE8A06123AC4F9AE02.roa (raw, json) Hash identifier: 2F6msvEoxhf3yMkdkG6hwiZZB9ls61DIlAbmxkj7kXQ= Subject key identifier: 47:83:5B:7A:1B:E5:6A:39:B7:3E:9D:3E:E0:81:E8:76:E1:FE:21:67 Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: D0 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/5B76DF12820611EE8A06123AC4F9AE02.roa Signing time: Tue 25 Jun 2024 06:22:06 +0000 ROA not before: Tue 25 Jun 2024 06:22:06 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152102 IP address blocks: 161.82.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C Validity Not Before: Jun 25 06:22:06 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a620d-cec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:0d:71:6a:a2:f2:93:a6:16:f4:81:99:45: 3a:b6:e2:40:ef:04:5a:92:f9:8d:fe:52:e5:dc:2a: f5:32:b5:9c:c6:4a:24:c8:ed:da:50:79:6e:c9:37: 78:92:8d:4a:5a:45:80:07:14:3f:f5:d1:66:af:8d: a9:19:c4:30:9d:32:a6:8f:71:19:14:60:11:9b:ff: fd:c7:d2:53:6e:7a:4f:06:f6:d4:f6:c6:7c:24:1f: 99:53:dd:d5:6d:b1:dd:80:e2:cb:70:41:91:38:4e: 9c:dc:0c:2f:64:44:cf:71:fe:74:e6:fd:40:4b:89: eb:15:e4:b3:d2:f4:27:54:48:95:25:ab:72:5a:14: d1:e0:d8:a1:d9:cc:f9:b0:bb:b1:63:da:77:2f:fc: 01:01:b3:1b:93:a6:1d:f7:e6:4e:ff:f5:06:18:5e: 7d:74:70:eb:5c:66:9e:a0:bb:50:1b:06:9d:75:d7: e3:78:d2:2c:ab:b5:28:08:6e:cc:9f:e4:cc:bd:00: 8a:a3:32:e4:d9:88:45:f9:df:f3:ba:3a:63:90:76: cb:e1:14:f1:e0:ff:b7:f2:0a:66:1f:ab:fb:e7:08: 7f:08:65:92:3a:4e:25:c0:14:c2:b4:43:5d:ae:eb: 56:1b:20:5c:63:9d:fe:f5:5c:38:dd:40:90:08:5c: cc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:83:5B:7A:1B:E5:6A:39:B7:3E:9D:3E:E0:81:E8:76:E1:FE:21:67 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/5B76DF12820611EE8A06123AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.201.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b9:ac:36:0e:c1:d1:4d:06:6d:69:75:0a:97:4a:3e:1c:02: 5e:a0:45:84:f0:6f:e8:cb:cf:b8:be:6d:9e:95:9f:aa:e8:f9: 49:09:7e:e4:88:ef:e3:0a:fa:8e:63:48:e0:b6:05:30:b7:a9: 1e:63:3b:bf:79:5b:35:30:00:bb:67:e7:f0:21:de:25:79:c1: 09:38:32:29:d5:90:2a:a5:02:14:cd:c2:4e:48:63:0e:51:5a: 37:56:87:2d:17:00:1f:24:8d:88:9a:e1:12:29:cd:a9:40:d8: 85:a0:83:3e:31:c8:24:a2:62:82:e3:f6:ad:71:d7:ab:90:37: bb:d3:6d:12:54:e1:a0:b5:3d:25:f2:88:6e:ff:e8:a3:b7:5a: a6:89:20:28:c0:22:de:7e:85:12:1c:29:88:cc:eb:fb:60:28: b0:c2:2d:28:4a:e7:18:c0:fb:20:92:ec:a2:f7:9d:cc:d1:a2: 49:da:3b:fe:d5:61:f0:2e:b0:02:5c:90:5a:49:cb:3f:f5:88: f6:93:60:98:e6:45:9f:61:c8:f3:c8:8e:cb:e2:94:a0:51:12: 22:06:9f:50:34:6c:93:b6:b6:ee:24:e7:d9:1e:4c:33:cc:cf: 95:08:2b:c2:ee:9b:5d:0d:42:9e:93:52:f3:ee:0b:d2:12:02: ed:44:87:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjQwNjI1MDYyMjA2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNjIwZC1jZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgENcWqi8pOmFvSBmUU6tuJA7wRakvmN/lLl3Cr1MrWcxkokyO3aUHluyTd4 ko1KWkWABxQ/9dFmr42pGcQwnTKmj3EZFGARm//9x9JTbnpPBvbU9sZ8JB+ZU93V bbHdgOLLcEGROE6c3AwvZETPcf505v1AS4nrFeSz0vQnVEiVJatyWhTR4Nih2cz5 sLuxY9p3L/wBAbMbk6Yd9+ZO//UGGF59dHDrXGaeoLtQGwadddfjeNIsq7UoCG7M n+TMvQCKozLk2YhF+d/zujpjkHbL4RTx4P+38gpmH6v75wh/CGWSOk4lwBTCtENd rutWGyBcY53+9Vw43UCQCFzMOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEeDW3ob 5Wo5tz6dPuCB6Hbh/iFnMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvNUI3NkRGMTI4 MjA2MTFFRThBMDYxMjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUskwDQYJKoZIhvcNAQELBQADggEBAEG5rDYOwdFNBm1p dQqXSj4cAl6gRYTwb+jLz7i+bZ6Vn6ro+UkJfuSI7+MK+o5jSOC2BTC3qR5jO795 WzUwALtn5/Ah3iV5wQk4MinVkCqlAhTNwk5IYw5RWjdWhy0XAB8kjYia4RIpzalA 2IWggz4xyCSiYoLj9q1x16uQN7vTbRJU4aC1PSXyiG7/6KO3WqaJICjAIt5+hRIc KYjM6/tgKLDCLShK5xjA+yCS7KL3nczRoknaO/7VYfAusAJckFpJyz/1iPaTYJjm RZ9hyPPIjsvilKBREiIGn1A0bJO2tu4k59keTDPMz5UIK8Lum10NQp6TUvPuC9IS Au1Eh94= -----END CERTIFICATE-----Generated at Wed Feb 19 20:37:24 2025 by rpki-client