$ rpki-client -vvf rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa File: 1D5E8EB6887B11EE8981CE28C4F9AE02.roa (raw, json) Hash identifier: r83+P5wwwiIwwYZo3ZZK7LMVTjywGsoMBTEhdRdJ9rc= Subject key identifier: 4B:D6:64:A3:D9:DA:0C:A7:4E:4F:11:69:BE:87:69:2F:C4:F8:EA:63 Certificate issuer: /CN=A911A1FC/serialNumber=118F9298590C79879AA1D8FC6D17F665454BCBB9 Certificate serial: C0 Authority key identifier: 11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa Signing time: Wed 27 Nov 2024 04:08:33 +0000 ROA not before: Wed 27 Nov 2024 04:08:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132408 IP address blocks: 180.94.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.crl rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A1FC Validity Not Before: Nov 27 04:08:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67469b40-22c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:2b:84:26:03:26:75:30:c9:23:c9:1d:ce: 8c:92:c4:ae:4d:c2:9e:48:ff:0c:5b:5d:e1:e0:3f: 21:e5:24:e7:b5:8b:76:b9:4d:09:fc:f7:55:66:99: fb:fb:1f:e0:01:9d:17:85:38:c6:c3:52:99:ce:be: de:29:77:cb:ce:9c:88:ea:7e:dd:e8:ec:ef:30:78: ab:e4:34:d9:34:11:32:fa:9c:a2:6f:a0:74:74:4b: 50:8f:29:d3:c2:9c:c5:f0:69:1a:10:54:83:45:9f: a7:eb:a1:db:e4:a5:ac:61:d0:b4:12:12:c9:3a:47: 00:4d:b9:5d:3e:ef:26:03:96:3f:f1:8b:27:d6:cc: 87:18:f7:56:7d:03:0b:d6:8a:97:97:97:d9:3b:e0: c9:b3:fb:8f:59:cf:ce:86:29:62:39:0a:cc:71:ee: dc:b1:99:23:7d:38:36:f3:53:16:4c:dd:c2:c4:6e: e8:30:c7:23:92:f5:b5:f0:16:22:dc:56:d1:20:d4: 3a:c8:eb:08:0e:7c:fe:a6:61:73:fb:bd:35:97:6d: 03:c2:9c:a3:8a:de:5c:9d:d7:6a:3d:28:15:c6:ae: c3:a1:9f:46:58:13:12:78:31:ac:16:31:09:d4:f0: 87:2b:c4:3c:0c:57:21:cf:7c:d8:1f:c7:aa:f6:37: 12:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D6:64:A3:D9:DA:0C:A7:4E:4F:11:69:BE:87:69:2F:C4:F8:EA:63 X509v3 Authority Key Identifier: keyid:11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.2.0/23 Signature Algorithm: sha256WithRSAEncryption 68:4a:7c:a5:0f:06:6c:5b:1d:4a:54:0c:f9:43:8b:2b:85:76: e6:c0:ea:7e:7c:52:3b:44:7b:fe:2b:c3:89:2b:0c:44:1b:6d: 75:d4:d7:5d:92:1b:84:4e:d2:29:b3:6f:51:79:3a:04:38:f5: 6c:5a:74:aa:5f:4f:c5:7f:99:f5:19:6b:10:f9:8c:31:9f:c6: 86:6d:77:a3:d9:4e:2a:55:1f:ca:cc:91:c7:56:39:6d:27:51: f8:02:73:9d:e1:32:02:d4:af:e0:63:6f:7d:03:da:d5:51:ac: 54:23:81:71:8a:14:67:38:38:64:8c:6b:ea:64:67:9d:74:e9: 56:67:09:7a:ff:1a:d3:89:7a:a9:29:f3:5e:8f:e4:13:2f:80: 7f:8f:14:8c:b1:b4:bd:22:04:a5:9e:fd:71:b1:d3:d5:be:5e: 88:aa:d3:eb:1a:71:52:40:66:f0:74:5c:f5:58:53:c1:4e:2d: 49:c8:c4:13:fb:73:96:21:a4:b1:0f:5e:55:aa:25:9d:b9:cc: 0a:22:d6:50:b9:12:a6:50:89:22:e0:48:09:d3:da:3d:01:5d: c2:4a:4d:16:14:fc:5e:0a:cb:7b:69:ce:1c:71:b2:b1:de:0e: fc:6b:e9:7e:65:81:a0:d3:a0:61:e4:04:59:bc:f1:34:00:01: b3:57:ab:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExRkMxMTAvBgNVBAUTKDExOEY5Mjk4NTkwQzc5ODc5QUExRDhGQzZEMTdGNjY1 NDU0QkNCQjkwHhcNMjQxMTI3MDQwODMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2OWI0MC0yMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMcrhCYDJnUwySPJHc6MksSuTcKeSP8MW13h4D8h5STntYt2uU0J/PdVZpn7 +x/gAZ0XhTjGw1KZzr7eKXfLzpyI6n7d6OzvMHir5DTZNBEy+pyib6B0dEtQjynT wpzF8GkaEFSDRZ+n66Hb5KWsYdC0EhLJOkcATbldPu8mA5Y/8Ysn1syHGPdWfQML 1oqXl5fZO+DJs/uPWc/OhiliOQrMce7csZkjfTg281MWTN3CxG7oMMcjkvW18BYi 3FbRINQ6yOsIDnz+pmFz+701l20Dwpyjit5cnddqPSgVxq7DoZ9GWBMSeDGsFjEJ 1PCHK8Q8DFchz3zYH8eq9jcSUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEvWZKPZ 2gynTk8Rab6HaS/E+OpjMB8GA1UdIwQYMBaAFBGPkphZDHmHmqHY/G0X9mVFS8u5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTFGQy84MTkxRkI2Qzg4 N0ExMUVFOURCNDVCMTRDNEY5QUUwMi9FWS1TbUZrTWVZZWFvZGo4YlJmMlpVVkx5 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZLVNtRmtNZVllYW9kajhiUmYyWlVWTHk3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUExRkMvODE5MUZCNkM4ODdBMTFFRTlEQjQ1QjE0QzRGOUFFMDIvMUQ1RThFQjY4 ODdCMTFFRTg5ODFDRTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAG0XgIwDQYJKoZIhvcNAQELBQADggEBAGhKfKUPBmxbHUpU DPlDiyuFdubA6n58UjtEe/4rw4krDEQbbXXU112SG4RO0imzb1F5OgQ49WxadKpf T8V/mfUZaxD5jDGfxoZtd6PZTipVH8rMkcdWOW0nUfgCc53hMgLUr+Bjb30D2tVR rFQjgXGKFGc4OGSMa+pkZ5106VZnCXr/GtOJeqkp816P5BMvgH+PFIyxtL0iBKWe /XGx09W+Xoiq0+sacVJAZvB0XPVYU8FOLUnIxBP7c5YhpLEPXlWqJZ25zAoi1lC5 EqZQiSLgSAnT2j0BXcJKTRYU/F4Ky3tpzhxxsrHeDvxr6X5lgaDToGHkBFm88TQA AbNXq8c= -----END CERTIFICATE-----Generated at Sat Apr 5 16:42:33 2025 by rpki-client