$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa File: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (raw, json) Hash identifier: xzZgqMDA4sRVnfCdaLDA6dVoRCpm16rxzJc3wo1vyY4= Subject key identifier: 3B:15:1D:A3:38:59:FA:03:86:6E:09:A5:E3:80:20:B5:7D:D4:25:43 Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: D1 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa Signing time: Tue 25 Jun 2024 06:22:07 +0000 ROA not before: Tue 25 Jun 2024 06:22:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152694 IP address blocks: 161.82.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 25 06:22:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a620f-0efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:5c:de:7a:c3:67:b6:0c:59:a3:f6:e9:9a: 03:5e:a8:3c:2a:5a:05:a3:36:65:e4:26:e8:4b:4f: 21:8c:cc:4b:26:3b:6e:13:95:e5:4e:a5:ab:49:9e: cf:49:d4:f4:1d:e2:51:75:dd:80:2a:46:70:c5:ac: 15:a8:d2:d7:9f:65:26:af:9d:98:3c:24:95:83:b8: 05:fc:31:30:e9:92:a2:c1:1f:ce:e0:7a:77:83:b0: 51:e7:c8:98:99:73:0d:49:4c:b1:c7:d1:c2:66:61: a5:b8:58:63:66:8b:f4:18:54:5f:a8:99:fe:15:65: af:04:1a:a7:d0:3a:bc:4a:0f:4d:cc:42:f4:00:96: 51:a8:cf:12:7c:55:9c:7c:fc:45:d5:04:c6:ae:ac: 55:65:f5:d9:ef:9e:7a:3e:8d:95:b5:50:d9:33:77: be:07:4c:f5:48:95:8b:8e:a3:85:9b:ae:67:d5:54: 1d:d8:94:d2:f2:e2:8a:1e:60:21:65:f7:4d:12:7c: ca:89:11:40:6b:da:7a:22:79:31:aa:fe:67:03:30: 1d:ff:91:52:ec:20:ac:e1:6e:5d:ab:87:e4:29:96: 6c:b3:e5:ab:3d:df:5f:fe:45:1a:be:90:ce:e7:9d: 40:48:52:79:28:83:d7:73:2a:ea:a5:75:14:b5:42: a8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:15:1D:A3:38:59:FA:03:86:6E:09:A5:E3:80:20:B5:7D:D4:25:43 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.183.0/24 Signature Algorithm: sha256WithRSAEncryption 39:08:3f:22:74:2a:6a:e4:3b:2a:c2:3d:47:38:a8:13:6f:d7: 9b:66:76:de:cf:c0:39:83:cf:3c:b7:26:ba:b1:cd:71:cc:df: 80:de:e7:60:1f:17:c5:72:6d:fc:e8:79:e8:b0:d4:2d:1d:97: 18:2b:08:23:d4:19:b8:4f:b3:fd:03:35:44:6f:9c:e4:34:2d: 1a:db:bc:d0:fe:b5:e5:d9:38:63:8f:a1:32:80:f9:71:18:c7: e2:24:a7:b0:56:af:e2:d7:df:62:80:4e:9c:d5:86:46:5e:1a: 2c:90:6b:ac:03:6a:0b:48:87:f8:80:ab:ed:54:52:7a:e5:55: 0e:36:5b:51:fd:07:3d:20:9e:ff:0d:4b:fc:90:69:8d:26:83: 13:e4:db:7a:f2:18:b6:ec:bb:1e:c1:a5:70:a8:a8:69:6f:c9: 78:48:73:11:c2:e1:1f:65:9d:e5:16:0a:d6:1c:31:3d:db:f7: af:f3:fb:17:10:d4:a7:3c:8e:5f:21:c4:99:2d:f6:49:9e:4f: 01:bd:d5:48:26:70:f1:8c:ee:0c:4f:79:d0:36:82:08:8b:06: cf:62:fd:40:43:b4:7f:aa:ba:d6:03:7b:45:64:3c:53:ea:6c: 3b:53:7e:fd:7e:13:2e:cf:f6:cf:fb:03:52:2a:ad:ce:34:9f: ef:e8:9e:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjQwNjI1MDYyMjA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNjIwZi0wZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAVc3nrDZ7YMWaP26ZoDXqg8KloFozZl5CboS08hjMxLJjtuE5XlTqWrSZ7P SdT0HeJRdd2AKkZwxawVqNLXn2Umr52YPCSVg7gF/DEw6ZKiwR/O4Hp3g7BR58iY mXMNSUyxx9HCZmGluFhjZov0GFRfqJn+FWWvBBqn0Dq8Sg9NzEL0AJZRqM8SfFWc fPxF1QTGrqxVZfXZ7556Po2VtVDZM3e+B0z1SJWLjqOFm65n1VQd2JTS8uKKHmAh ZfdNEnzKiRFAa9p6Inkxqv5nAzAd/5FS7CCs4W5dq4fkKZZss+WrPd9f/kUavpDO 551ASFJ5KIPXcyrqpXUUtUKoHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsVHaM4 WfoDhm4JpeOAILV91CVDMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQUEzNkQ5N0VG Qzc1MTFFRTlDOUNENjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUrcwDQYJKoZIhvcNAQELBQADggEBADkIPyJ0KmrkOyrC PUc4qBNv15tmdt7PwDmDzzy3JrqxzXHM34De52AfF8Vybfzoeeiw1C0dlxgrCCPU GbhPs/0DNURvnOQ0LRrbvND+teXZOGOPoTKA+XEYx+Ikp7BWr+LX32KATpzVhkZe GiyQa6wDagtIh/iAq+1UUnrlVQ42W1H9Bz0gnv8NS/yQaY0mgxPk23ryGLbsux7B pXCoqGlvyXhIcxHC4R9lneUWCtYcMT3b96/z+xcQ1Kc8jl8hxJkt9kmeTwG91Ugm cPGM7gxPedA2ggiLBs9i/UBDtH+qutYDe0VkPFPqbDtTfv1+Ey7P9s/7A1Iqrc40 n+/oni4= -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:57 2024 by rpki-client on console-ams.rpki-client.org