$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa File: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (raw, json) Hash identifier: G5SoPEVEMsa2P0+CI+OK9qKg3YXnhG5CNGyejs2VzS0= Subject key identifier: 51:76:5C:1D:8E:A3:EC:6F:F4:9C:96:E8:BC:82:4E:1C:CF:B3:8A:4E Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 9B Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa Signing time: Wed 17 Apr 2024 04:47:59 +0000 ROA not before: Wed 17 Apr 2024 04:47:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 152694 IP address blocks: 161.82.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Apr 17 04:47:59 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=661f547f-80a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:55:71:a3:cd:ef:80:3e:c7:6f:49:1f:8f:70: 3c:f3:42:e9:ef:e4:0e:a1:f3:15:dc:49:bb:08:f7: 44:77:e8:2a:28:b5:42:11:91:99:da:cc:c5:29:56: f5:ab:f2:5e:3b:d0:ff:68:59:8d:9d:5c:ee:df:0a: 71:c3:b9:79:6c:98:73:9e:c8:ef:49:b0:55:14:16: ec:11:ed:7e:c6:ad:a4:f4:da:94:fa:0d:0e:e2:ed: 8d:f0:87:42:13:48:d8:2a:4e:60:2a:1c:e1:74:6a: 51:5b:e1:ed:cf:19:8f:2b:71:89:80:58:d5:a7:08: be:1a:90:57:98:d9:8f:83:1c:18:19:af:e4:6d:16: 51:67:7d:bb:5f:26:8f:c0:b0:5d:01:1f:be:0e:20: f8:75:80:70:f8:7e:8f:c1:9c:e1:30:7d:df:c3:2b: 6f:76:a9:be:78:e7:3c:5f:6e:78:b6:b0:5b:d8:50: a6:8b:cd:06:16:26:1c:55:f6:2b:d5:5d:9d:59:d7: cc:1b:ba:60:5a:7b:ef:36:5c:cc:d5:7c:a8:1c:6f: e8:ed:de:a8:26:49:39:1d:77:29:d9:64:90:c0:8e: 12:2d:6d:dc:42:c2:e9:a9:e7:09:10:31:53:57:fb: c4:6c:e4:29:43:db:40:5d:a3:93:08:48:2e:0e:72: 8f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:76:5C:1D:8E:A3:EC:6F:F4:9C:96:E8:BC:82:4E:1C:CF:B3:8A:4E X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/AA36D97EFC7511EE9C9CD67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.183.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:1b:f8:7f:f0:ec:89:c3:77:55:28:ac:1d:dc:b9:62:aa:fe: 82:0f:b9:d7:08:08:01:eb:5f:95:6e:7c:b6:5c:15:b9:c6:35: ec:5c:7b:76:ba:15:ad:4b:18:88:1d:cf:f8:a0:b7:b6:c9:e9: dc:b4:99:92:d1:0d:f1:b1:31:67:46:ab:b2:59:fd:62:7b:b8: 18:2a:75:70:20:66:63:1a:e6:08:25:4c:df:de:6b:8a:06:3a: 07:3d:7d:2f:bd:17:fd:11:44:92:f8:0b:98:7f:90:10:52:89: b5:e7:a1:ab:58:14:56:1b:fa:92:69:59:59:75:d5:08:b7:a5: b1:32:b1:b3:78:52:79:1d:78:41:db:ce:f3:ea:51:d1:eb:c1: 25:e3:47:6e:0e:32:4a:dc:0a:24:59:3d:eb:77:40:9f:62:74: 12:71:f2:a9:2b:85:90:5b:4b:ba:31:ad:2e:fa:f9:00:a3:22: ed:a6:8f:92:28:ac:c3:1d:0f:76:eb:0d:1a:25:d7:1d:dc:8f: 53:8c:ab:b1:41:e9:d8:ee:3e:99:b8:99:b5:5e:67:f1:79:fb: 63:b3:3f:a5:89:56:d4:e3:9e:44:77:24:de:09:8e:c7:d0:f4: 4c:f6:d8:6a:93:85:d0:44:9b:31:de:d6:bf:c8:10:41:32:28: 30:66:78:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjQwNDE3MDQ0NzU5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNTQ3Zi04MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVVxo83vgD7Hb0kfj3A880Lp7+QOofMV3Em7CPdEd+gqKLVCEZGZ2szFKVb1 q/JeO9D/aFmNnVzu3wpxw7l5bJhznsjvSbBVFBbsEe1+xq2k9NqU+g0O4u2N8IdC E0jYKk5gKhzhdGpRW+HtzxmPK3GJgFjVpwi+GpBXmNmPgxwYGa/kbRZRZ327XyaP wLBdAR++DiD4dYBw+H6PwZzhMH3fwytvdqm+eOc8X254trBb2FCmi80GFiYcVfYr 1V2dWdfMG7pgWnvvNlzM1XyoHG/o7d6oJkk5HXcp2WSQwI4SLW3cQsLpqecJEDFT V/vEbOQpQ9tAXaOTCEguDnKPBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFF2XB2O o+xv9JyW6LyCThzPs4pOMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQUEzNkQ5N0VG Qzc1MTFFRTlDOUNENjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUrcwDQYJKoZIhvcNAQELBQADggEBAI8b+H/w7InDd1Uo rB3cuWKq/oIPudcICAHrX5VufLZcFbnGNexce3a6Fa1LGIgdz/igt7bJ6dy0mZLR DfGxMWdGq7JZ/WJ7uBgqdXAgZmMa5gglTN/ea4oGOgc9fS+9F/0RRJL4C5h/kBBS ibXnoatYFFYb+pJpWVl11Qi3pbEysbN4UnkdeEHbzvPqUdHrwSXjR24OMkrcCiRZ Pet3QJ9idBJx8qkrhZBbS7oxrS76+QCjIu2mj5IorMMdD3brDRol1x3cj1OMq7FB 6djuPpm4mbVeZ/F5+2OzP6WJVtTjnkR3JN4JjsfQ9Ez22GqThdBEmzHe1r/IEEEy KDBmeBA= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:35 2024 by rpki-client on console-fra.rpki-client.org