$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa File: CF415DDA520111EEBD942A6FC4F9AE02.roa (raw, json) Hash identifier: sGNeudGsjKQYxdr3S2rAF3HoccrfyBnH+QSvEfzchv8= Subject key identifier: 31:C9:B9:76:69:B8:84:F3:08:D9:90:49:60:08:E1:E0:DA:AE:7B:A8 Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: CF Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa Signing time: Tue 25 Jun 2024 06:22:05 +0000 ROA not before: Tue 25 Jun 2024 06:22:04 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151780 IP address blocks: 161.82.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 25 06:22:04 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a620c-ab05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3c:a1:89:df:a8:03:1a:62:86:2e:a6:71:a8: ef:cc:69:81:d0:94:70:a9:d2:2f:2d:85:a4:fd:69: 5f:b4:96:7c:25:9f:37:c4:f5:8f:09:46:7e:68:e5: 16:c0:6d:41:fd:84:b1:27:b5:71:6a:53:9c:dc:f8: 74:76:54:69:7f:d2:20:fe:dc:63:c0:b2:4d:4a:e3: aa:8a:62:31:22:4b:0a:2d:b3:99:73:c9:a7:c6:8c: c7:99:a2:07:f4:ac:23:6f:a3:57:8d:b4:83:ed:2c: ec:20:1c:bd:ba:9c:6f:16:93:a5:96:15:3b:ed:c2: 8d:0e:59:db:e0:1c:39:3a:b2:ec:f7:13:23:9b:6a: 48:e1:3d:3b:d2:3f:c6:cf:5c:04:39:1b:c0:a1:ea: d2:2b:06:40:de:00:0e:05:df:bc:d1:1e:4e:23:4c: 4c:bd:1f:fc:0a:75:e8:bc:83:bb:89:4d:3d:79:01: 67:fb:14:34:d1:37:84:a5:a2:db:b1:90:24:d5:77: c8:94:eb:8a:82:4e:98:1e:d9:4e:7f:37:b9:9e:8b: 8f:c6:30:42:3b:50:d5:8e:8e:cf:81:dc:75:1d:b0: a1:10:be:97:e1:06:4b:77:fd:5b:cb:81:9e:26:44: 95:d5:fe:d3:08:fd:aa:fa:64:34:86:39:06:37:5a: 6d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C9:B9:76:69:B8:84:F3:08:D9:90:49:60:08:E1:E0:DA:AE:7B:A8 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/CF415DDA520111EEBD942A6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.229.0/24 Signature Algorithm: sha256WithRSAEncryption 43:bc:20:f9:bb:b1:43:af:d7:42:20:87:1b:7d:04:cf:25:f6: 26:c3:93:02:c2:38:13:f0:03:85:ed:29:a9:2e:65:44:b4:94: a0:77:6a:1d:02:e1:9d:c2:b2:5b:97:f1:ed:d5:ca:3d:c6:de: 16:33:91:02:64:6e:f0:b7:36:d5:ed:07:32:21:87:b6:9b:6e: de:73:d4:39:49:97:fe:05:f8:db:f5:cc:cc:7a:d3:de:10:1c: c5:a1:7a:01:a9:8c:8a:ca:f5:28:87:7b:ab:8b:c5:f8:64:14: 62:65:e1:d5:8e:de:c7:c5:cf:79:03:44:d7:5c:66:62:39:bb: 4a:92:ff:0c:39:90:39:70:bc:5f:a6:b3:af:31:57:94:cc:9e: 2c:b4:63:57:ac:65:2a:1f:69:eb:b0:6f:2f:ed:f0:8d:2b:36: f1:48:17:6d:ae:ef:70:1b:fa:a2:4c:3a:3b:9e:cb:66:ca:31: d3:87:4e:a1:31:6a:e3:a2:45:c6:9d:e1:d2:c3:ee:43:3c:94: f5:81:e2:44:c9:68:47:be:d8:2c:e0:16:20:53:39:aa:4f:fa: 1b:0c:ff:d8:90:0a:ef:c0:10:50:30:c4:df:d9:2c:7e:57:2c: 81:5d:b4:10:8b:f0:a4:03:6f:31:12:b3:93:42:66:e7:d5:4c: af:45:f4:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjQwNjI1MDYyMjA0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNjIwYy1hYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzyhid+oAxpihi6mcajvzGmB0JRwqdIvLYWk/WlftJZ8JZ83xPWPCUZ+aOUW wG1B/YSxJ7VxalOc3Ph0dlRpf9Ig/txjwLJNSuOqimIxIksKLbOZc8mnxozHmaIH 9Kwjb6NXjbSD7SzsIBy9upxvFpOllhU77cKNDlnb4Bw5OrLs9xMjm2pI4T070j/G z1wEORvAoerSKwZA3gAOBd+80R5OI0xMvR/8CnXovIO7iU09eQFn+xQ00TeEpaLb sZAk1XfIlOuKgk6YHtlOfze5nouPxjBCO1DVjo7Pgdx1HbChEL6X4QZLd/1by4Ge JkSV1f7TCP2q+mQ0hjkGN1ptsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDHJuXZp uITzCNmQSWAI4eDarnuoMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQ0Y0MTVEREE1 MjAxMTFFRUJEOTQyQTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUuUwDQYJKoZIhvcNAQELBQADggEBAEO8IPm7sUOv10Ig hxt9BM8l9ibDkwLCOBPwA4XtKakuZUS0lKB3ah0C4Z3CsluX8e3Vyj3G3hYzkQJk bvC3NtXtBzIhh7abbt5z1DlJl/4F+Nv1zMx6094QHMWhegGpjIrK9SiHe6uLxfhk FGJl4dWO3sfFz3kDRNdcZmI5u0qS/ww5kDlwvF+ms68xV5TMniy0Y1esZSofaeuw by/t8I0rNvFIF22u73Ab+qJMOjuey2bKMdOHTqExauOiRcad4dLD7kM8lPWB4kTJ aEe+2CzgFiBTOapP+hsM/9iQCu/AEFAwxN/ZLH5XLIFdtBCL8KQDbzESs5NCZufV TK9F9OA= -----END CERTIFICATE-----Generated at Sat Apr 26 17:15:49 2025 by rpki-client