$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa File: CF415DDA520111EEBD942A6FC4F9AE02.roa (raw, json) Hash identifier: IGq0IE6/t/ToMAAUgfvTKUVFFnrfc7ekD/34Dq5JLeM= Subject key identifier: 15:6E:9F:6F:70:D1:02:43:4F:82:17:E7:A3:B9:4F:6F:71:0D:36:4C Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 25 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa Signing time: Wed 13 Sep 2023 06:50:22 +0000 ROA not before: Wed 13 Sep 2023 06:50:22 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151780 IP address blocks: 161.82.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Sep 13 06:50:22 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65015bae-7e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:be:bf:43:be:c1:33:48:b1:6b:88:f8:04: 6c:59:b3:ad:60:5e:f8:3f:02:03:e9:7b:62:35:7e: d6:e8:10:5f:c4:b9:26:13:37:d6:d5:45:da:91:87: fc:8d:29:83:25:81:af:c9:a9:a6:c0:dd:5d:26:80: 65:03:e9:f5:50:64:f0:96:01:a1:46:bf:15:db:fc: 3b:27:16:62:ce:7c:87:7e:c2:b9:72:6f:d8:74:61: 98:8b:a1:56:4f:1d:6d:c6:42:b4:72:04:d4:f7:5d: 0c:f5:b1:25:dd:43:7c:ba:6e:a0:2b:94:64:6f:92: 04:da:3f:34:2a:13:dc:58:3f:f9:e6:4a:eb:79:c3: 19:71:56:9c:51:88:a0:7f:ba:7e:d2:e2:fb:c3:4e: 49:dc:94:0b:c7:2a:60:b8:42:a3:00:72:3f:68:38: 1c:92:17:a1:3c:0f:0c:96:cf:19:bb:ec:80:27:ae: 18:44:34:84:26:34:ed:1b:7e:c5:74:ca:52:74:01: d8:64:1f:7d:49:6e:12:71:0f:52:84:ca:9a:70:8f: b3:02:f0:8f:c8:2f:e6:91:17:b5:67:7f:cb:75:a8: 40:22:92:42:70:17:74:38:12:58:dc:41:a4:4c:49: a7:68:44:1a:d6:74:e1:eb:4c:7d:a5:cb:c2:ab:5f: b4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6E:9F:6F:70:D1:02:43:4F:82:17:E7:A3:B9:4F:6F:71:0D:36:4C X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.229.0/24 Signature Algorithm: sha256WithRSAEncryption 21:83:f7:c1:8b:91:55:12:ee:e4:e2:56:b6:02:f0:91:4d:fb: cc:6b:32:27:aa:94:25:8b:9e:bc:01:53:c2:94:5c:ce:2b:61: 15:13:f9:12:26:b2:ff:f2:93:d7:79:f3:0b:00:f5:8f:9e:a3: a1:db:76:a8:d8:0f:04:70:a9:4b:6a:1a:bf:54:c0:03:a6:ec: 18:15:6d:26:58:72:ff:69:15:69:7b:1e:3c:cf:2a:f9:c5:1d: 1b:71:41:75:10:be:b2:80:be:e6:2f:65:db:39:40:ed:e6:a9: 7d:a9:44:2b:d9:a3:c4:2e:36:49:35:a9:95:9b:b6:e7:a7:1f: f4:08:bf:d6:da:43:56:13:7a:de:57:03:cf:56:03:97:e3:7c: 18:60:c6:85:13:39:e2:82:9e:20:c8:e6:e6:b9:b1:57:9f:fc: 3d:e9:3b:df:d9:31:c6:4d:7c:aa:75:63:43:3c:d3:ce:30:85: d4:58:3c:0c:73:00:11:45:af:eb:d9:98:56:e8:36:db:a4:4d: 51:e2:9f:f7:01:da:c4:c8:65:3f:3f:f8:22:e8:12:94:5e:4e: 22:ba:bf:9c:06:31:cb:51:da:15:0e:d9:78:07:27:9d:d1:6b: 32:ba:a5:eb:e9:a7:28:e0:f9:08:83:4f:cc:28:ad:c8:02:eb: 9f:c0:3e:36 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTM2QzExMC8GA1UEBRMoQTA5MEU1MjBCRjlENTFGMkZEQ0VFRDQxM0FGMjdBQzc1 OEY2QUUxRDAeFw0yMzA5MTMwNjUwMjJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MDE1YmFlLTdlM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG376/Q77BM0ixa4j4BGxZs61gXvg/AgPpe2I1ftboEF/EuSYTN9bVRdqRh/yN KYMlga/JqabA3V0mgGUD6fVQZPCWAaFGvxXb/DsnFmLOfId+wrlyb9h0YZiLoVZP HW3GQrRyBNT3XQz1sSXdQ3y6bqArlGRvkgTaPzQqE9xYP/nmSut5wxlxVpxRiKB/ un7S4vvDTknclAvHKmC4QqMAcj9oOBySF6E8DwyWzxm77IAnrhhENIQmNO0bfsV0 ylJ0AdhkH31JbhJxD1KEyppwj7MC8I/IL+aRF7Vnf8t1qEAikkJwF3Q4EljcQaRM SadoRBrWdOHrTH2ly8KrX7QzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFW6fb3DR AkNPghfno7lPb3ENNkwwHwYDVR0jBBgwFoAUoJDlIL+dUfL9zu1BOvJ6x1j2rh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MzZDLzc1Qjk4QkYwMzY2 MDExRUU4OEUwRjUzMEM0RjlBRTAyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0pEbElMLWRVZkw5enUxQk92SjZ4MWoycmgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83NUI5OEJGMDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9DRjQxNUREQTUy MDExMUVFQkQ5NDJBNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKFS5TANBgkqhkiG9w0BAQsFAAOCAQEAIYP3wYuRVRLu5OJW tgLwkU37zGsyJ6qUJYuevAFTwpRczithFRP5Eiay//KT13nzCwD1j56jodt2qNgP BHCpS2oav1TAA6bsGBVtJlhy/2kVaXsePM8q+cUdG3FBdRC+soC+5i9l2zlA7eap falEK9mjxC42STWplZu256cf9Ai/1tpDVhN63lcDz1YDl+N8GGDGhRM54oKeIMjm 5rmxV5/8Pek739kxxk18qnVjQzzTzjCF1Fg8DHMAEUWv69mYVug226RNUeKf9wHa xMhlPz/4IugSlF5OIrq/nAYxy1HaFQ7ZeAcnndFrMrql6+mnKOD5CINPzCityALr n8A+Ng== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:35 2024 by rpki-client on console-fra.rpki-client.org