$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa File: A08711E2366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: ekGkDDIKWLiqVV7h6ESwSg8vnFxwfp+WHxsTHsOalhs= Subject key identifier: 1E:19:C4:A4:42:F2:72:C2:F3:60:A2:60:BD:4D:EA:D8:84:31:0E:46 Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: CB Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa Signing time: Tue 25 Jun 2024 06:22:00 +0000 ROA not before: Tue 25 Jun 2024 06:22:00 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138003 IP address blocks: 161.82.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 25 06:22:00 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a6208-1bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a9:9c:15:39:65:f9:8c:ae:46:3b:c3:c3:94: 42:39:bc:75:ff:07:1a:20:2e:e9:66:12:cd:40:1e: 6c:77:2d:fd:3a:11:e1:48:3d:c4:2e:7a:4d:7c:74: e9:f0:7f:7d:6a:a2:00:70:4a:1f:7c:57:e7:73:40: e5:13:21:fb:eb:d1:77:3a:99:37:59:ec:36:6c:99: ee:c5:d2:87:ef:10:28:65:0f:c8:a2:41:59:8d:0c: 82:67:91:27:e5:e7:19:c8:b7:65:69:35:95:db:72: 7b:a6:6a:2f:f9:25:a3:2b:e8:5d:8f:91:65:fb:96: 49:fe:cb:52:58:f6:18:ec:79:06:cc:5a:b9:c9:3f: c4:45:8b:0e:a4:9a:f4:9f:41:f2:cc:bd:bf:65:75: 72:f7:de:02:7d:a8:d5:9f:d6:60:9c:5a:1d:8c:c8: a9:48:0c:a9:63:a2:f8:a2:39:44:50:05:87:0c:c3: 84:3a:91:86:d2:c4:7c:0b:b9:3a:b2:f6:41:1b:b2: e7:97:17:b0:19:16:5d:c2:57:7b:8a:e2:97:99:a0: 4c:a0:fd:dc:4c:30:2d:89:92:ac:50:77:86:eb:4d: aa:64:1e:cb:79:ee:bf:89:86:2a:e0:0e:7e:12:f6: 31:a4:8f:a6:4f:45:9c:44:f2:32:b0:f1:bd:08:57: 3b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:19:C4:A4:42:F2:72:C2:F3:60:A2:60:BD:4D:EA:D8:84:31:0E:46 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.148.0/24 Signature Algorithm: sha256WithRSAEncryption 24:25:29:34:ff:b3:fb:3e:f0:d4:3d:b6:d3:7f:23:2d:a9:b9: d6:bf:49:2a:f4:5e:cd:d6:94:13:6c:3f:57:8d:21:94:6f:01: b8:f2:0c:f2:0f:93:fe:9c:9d:a1:10:ad:6a:d9:51:75:9a:cd: 16:93:3c:64:5a:3e:fe:26:68:8a:d7:80:5d:90:14:44:0c:7e: e0:ff:9b:89:34:04:82:a1:97:e7:f8:5a:51:2a:9e:38:bc:49: 4a:b9:ee:40:b0:27:20:44:a8:58:9f:95:3b:8c:79:44:e9:61: c3:bb:a5:79:c2:ea:49:e0:9c:76:78:62:69:d2:f1:f5:97:b6: fe:41:83:66:c7:1d:88:31:0c:f9:29:7d:80:70:76:97:b0:11: c4:3b:27:8d:2d:6f:70:9d:35:1b:80:6d:5f:93:0e:c7:7e:79: fd:06:af:89:18:64:fc:a5:77:89:4c:6f:4d:e6:db:db:32:40: b9:fe:dc:44:bd:c9:7c:32:60:33:d2:43:64:fc:63:c4:4f:b5: c4:d0:ac:e5:d3:4d:03:94:c9:b8:a7:c6:d7:47:19:2d:30:bd: a1:e8:8f:7d:7d:d8:16:02:5a:da:1a:49:34:b3:1f:13:09:3a: 98:c1:51:2e:56:79:cd:2c:db:6d:54:04:44:ed:a5:41:22:bd: 37:3f:2f:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjQwNjI1MDYyMjAwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNjIwOC0xYmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqmcFTll+YyuRjvDw5RCObx1/wcaIC7pZhLNQB5sdy39OhHhSD3ELnpNfHTp 8H99aqIAcEoffFfnc0DlEyH769F3Opk3Wew2bJnuxdKH7xAoZQ/IokFZjQyCZ5En 5ecZyLdlaTWV23J7pmov+SWjK+hdj5Fl+5ZJ/stSWPYY7HkGzFq5yT/ERYsOpJr0 n0HyzL2/ZXVy994CfajVn9ZgnFodjMipSAypY6L4ojlEUAWHDMOEOpGG0sR8C7k6 svZBG7LnlxewGRZdwld7iuKXmaBMoP3cTDAtiZKsUHeG602qZB7Lee6/iYYq4A5+ EvYxpI+mT0WcRPIysPG9CFc7YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4ZxKRC 8nLC82CiYL1N6tiEMQ5GMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTA4NzExRTIz NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUpQwDQYJKoZIhvcNAQELBQADggEBACQlKTT/s/s+8NQ9 ttN/Iy2puda/SSr0Xs3WlBNsP1eNIZRvAbjyDPIPk/6cnaEQrWrZUXWazRaTPGRa Pv4maIrXgF2QFEQMfuD/m4k0BIKhl+f4WlEqnji8SUq57kCwJyBEqFiflTuMeUTp YcO7pXnC6kngnHZ4YmnS8fWXtv5Bg2bHHYgxDPkpfYBwdpewEcQ7J40tb3CdNRuA bV+TDsd+ef0Gr4kYZPyld4lMb03m29syQLn+3ES9yXwyYDPSQ2T8Y8RPtcTQrOXT TQOUybinxtdHGS0wvaHoj3192BYCWtoaSTSzHxMJOpjBUS5Wec0s221UBETtpUEi vTc/L1Y= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:01 2024 by rpki-client on console-fra.rpki-client.org