$ rpki-client -vvf rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa File: 1D5E8EB6887B11EE8981CE28C4F9AE02.roa (raw, json) Hash identifier: Zs2Z+hAq1MAHKiuGtG/bZ3NLLDe/abdCjv4LPoTmR14= Subject key identifier: 76:9E:D0:FB:4E:AD:25:B5:FF:BF:F5:67:DB:F0:80:38:D5:C4:85:DB Certificate issuer: /CN=A911A1FC/serialNumber=118F9298590C79879AA1D8FC6D17F665454BCBB9 Certificate serial: 02 Authority key identifier: 11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa Signing time: Tue 21 Nov 2023 14:34:45 +0000 ROA not before: Tue 21 Nov 2023 14:34:45 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132408 IP address blocks: 180.94.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.crl rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A1FC/serialNumber=118F9298590C79879AA1D8FC6D17F665454BCBB9 Validity Not Before: Nov 21 14:34:45 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655cc005-2ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:dc:f9:9a:df:18:c2:81:81:be:d5:aa:dd: e7:0f:6b:c7:c6:c3:6d:7f:b9:45:6c:46:4a:09:25: fa:01:99:a1:40:83:b7:be:6d:b4:4f:b2:6e:ea:10: 34:87:24:de:9a:d8:5c:23:27:ee:99:60:16:ea:0d: f1:ad:23:36:35:4d:63:5c:7b:d8:15:b2:83:27:66: b0:0e:bb:e4:6d:cf:8b:55:b0:78:93:31:75:ea:58: 86:eb:64:1a:a4:65:2f:96:56:42:65:14:85:f7:f5: 17:49:12:f4:0e:05:75:9d:de:45:40:2d:9c:35:46: e7:f7:c0:e3:dd:b1:12:10:65:52:a8:2e:64:96:33: 0b:c9:a8:23:10:02:9d:66:fa:38:39:cd:7b:c6:c8: 3c:86:8b:3b:b5:6a:de:c3:2b:ad:16:44:21:db:ec: 4f:d5:ef:2c:a8:b2:98:aa:80:43:18:5c:73:01:59: 99:08:86:6e:92:29:51:ab:e8:bf:34:66:d9:67:a7: 9c:83:08:20:07:45:f5:5b:e9:db:4d:13:c3:cc:26: 66:a4:b0:d9:de:dd:06:cb:96:39:62:46:27:68:d3: 12:65:0d:27:cb:af:bb:05:bc:3e:8e:c6:4d:42:1b: 92:07:f5:18:7d:73:2a:ed:fd:f1:e6:90:d3:e6:1d: ed:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9E:D0:FB:4E:AD:25:B5:FF:BF:F5:67:DB:F0:80:38:D5:C4:85:DB X509v3 Authority Key Identifier: keyid:11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/1D5E8EB6887B11EE8981CE28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.2.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:57:58:11:c3:c0:97:32:a8:a4:03:2f:bb:63:40:91:38:4a: 09:84:7e:02:b0:1c:9e:ad:50:28:2e:88:a6:fb:96:4b:e3:8d: e8:06:cd:58:d6:8b:53:01:3a:eb:1a:df:a7:9c:bb:4b:06:25: 85:c8:cb:b6:4c:d4:9e:21:76:5b:fe:77:02:74:7a:e1:20:7d: cd:f8:30:14:e6:1d:04:17:cc:d1:e3:31:b5:9e:70:f1:1e:48: 71:d9:a2:48:8b:53:9f:1f:49:05:52:97:63:8d:96:6a:03:a5: 11:63:ea:ac:f7:80:e6:53:31:28:47:d3:1b:a2:e0:3c:63:5a: 71:80:5d:c9:c3:75:90:24:de:fa:9f:c9:f1:85:c7:ba:b9:c3: 92:c7:bf:5f:32:24:be:46:20:8c:3f:d7:d1:1d:11:fe:6a:66: 09:09:d6:70:9f:b3:3b:c1:c4:44:1d:60:81:31:3f:e6:dd:6d: cc:f7:a6:3e:59:76:da:37:9a:53:7d:8d:f9:1e:6a:09:ff:17: 88:0f:fa:c5:b2:3b:63:16:e9:de:a2:a0:91:74:e1:2b:e7:ca: 6e:db:1c:a2:9c:ea:ee:49:e0:73:2f:53:55:5c:18:d8:2f:20: 3f:98:1f:93:89:24:70:42:95:08:24:d4:e6:48:bb:2c:ee:79: 1a:31:07:0f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTFGQzExMC8GA1UEBRMoMTE4RjkyOTg1OTBDNzk4NzlBQTFEOEZDNkQxN0Y2NjU0 NTRCQ0JCOTAeFw0yMzExMjExNDM0NDVaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWNjMDA1LTJjYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnhNz5mt8YwoGBvtWq3ecPa8fGw21/uUVsRkoJJfoBmaFAg7e+bbRPsm7qEDSH JN6a2FwjJ+6ZYBbqDfGtIzY1TWNce9gVsoMnZrAOu+Rtz4tVsHiTMXXqWIbrZBqk ZS+WVkJlFIX39RdJEvQOBXWd3kVALZw1Ruf3wOPdsRIQZVKoLmSWMwvJqCMQAp1m +jg5zXvGyDyGizu1at7DK60WRCHb7E/V7yyospiqgEMYXHMBWZkIhm6SKVGr6L80 Ztlnp5yDCCAHRfVb6dtNE8PMJmaksNne3QbLljliRido0xJlDSfLr7sFvD6Oxk1C G5IH9Rh9cyrt/fHmkNPmHe0fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUdp7Q+06t JbX/v/Vn2/CAONXEhdswHwYDVR0jBBgwFoAUEY+SmFkMeYeaodj8bRf2ZUVLy7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBMUZDLzgxOTFGQjZDODg3 QTExRUU5REI0NUIxNEM0RjlBRTAyL0VZLVNtRmtNZVllYW9kajhiUmYyWlVWTHk3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRVktU21Ga01lWWVhb2RqOGJSZjJaVVZMeTdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTFGQy84MTkxRkI2Qzg4N0ExMUVFOURCNDVCMTRDNEY5QUUwMi8xRDVFOEVCNjg4 N0IxMUVFODk4MUNFMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAbReAjANBgkqhkiG9w0BAQsFAAOCAQEALFdYEcPAlzKopAMv u2NAkThKCYR+ArAcnq1QKC6IpvuWS+ON6AbNWNaLUwE66xrfp5y7SwYlhcjLtkzU niF2W/53AnR64SB9zfgwFOYdBBfM0eMxtZ5w8R5IcdmiSItTnx9JBVKXY42WagOl EWPqrPeA5lMxKEfTG6LgPGNacYBdycN1kCTe+p/J8YXHurnDkse/XzIkvkYgjD/X 0R0R/mpmCQnWcJ+zO8HERB1ggTE/5t1tzPemPll22jeaU32N+R5qCf8XiA/6xbI7 Yxbp3qKgkXThK+fKbtscopzq7kngcy9TVVwY2C8gP5gfk4kkcEKVCCTU5ki7LO55 GjEHDw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org