$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa File: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (raw, json) Hash identifier: wXMGwG7lxViwNnrJDB749sBIiL2piUFxteIQBHCkVTo= Subject key identifier: 3B:06:6B:AC:CE:18:9E:E6:DC:57:F5:9C:33:E4:A1:1B:B5:A7:C6:17 Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0104 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa Signing time: Thu 03 Apr 2025 04:32:23 +0000 ROA not before: Thu 03 Apr 2025 04:32:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133126 IP address blocks: 180.94.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:24:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767 Validity Not Before: Apr 3 04:32:23 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ee0f57-ea7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:41:4c:ef:a0:5a:50:db:d4:17:8e:89:84: 62:37:09:01:ba:18:63:9f:38:89:cf:99:b6:55:93: c2:8f:28:b0:59:8c:1e:7f:65:69:24:68:5c:7e:6b: ef:f5:52:e0:f3:8a:3c:60:46:eb:7c:e1:b0:f4:7e: f6:60:14:0c:ea:cf:33:bc:37:aa:d7:a9:95:eb:80: e1:36:a8:53:d5:d6:70:a2:f6:a7:d8:29:79:c5:24: 92:84:e9:c6:ce:ca:43:05:cc:f6:1c:44:71:81:f0: 62:53:c6:df:e6:9a:f0:83:ed:e3:90:f6:37:d0:bf: 75:8a:ee:5a:68:2f:be:94:60:6f:3f:bb:a8:2b:45: c1:59:95:60:64:f4:37:dc:8e:3a:e6:1b:24:ce:94: 89:d3:06:f5:7a:b2:da:a6:44:39:9b:90:3f:ba:ab: 0a:50:85:f9:ea:bb:66:87:09:11:56:69:9c:c6:de: c5:19:a6:8b:e2:1d:9e:51:c5:b4:6c:f8:4b:aa:3a: 7d:29:91:eb:fa:36:81:b9:21:37:06:0d:3f:dd:86: 04:4a:55:65:cb:7f:34:c6:2c:e0:68:43:db:e5:f8: 68:fa:59:94:de:89:15:23:2f:00:e3:a0:55:17:55: 35:ad:ab:5a:e9:51:3c:fb:38:11:91:4c:1f:f6:ea: e0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:06:6B:AC:CE:18:9E:E6:DC:57:F5:9C:33:E4:A1:1B:B5:A7:C6:17 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.0.0/24 Signature Algorithm: sha256WithRSAEncryption 69:31:d5:5b:ed:fe:7d:7d:47:87:e2:ad:1b:aa:b6:02:82:35: 6a:50:19:92:88:0d:85:44:a9:32:ae:2d:4d:e6:5d:e6:b1:ed: ae:d7:0b:0b:cb:81:37:cd:e2:de:12:3d:e1:c3:35:57:7c:35: 25:e6:9c:74:7e:2f:a1:32:60:5f:e3:85:21:c8:8e:76:47:56: 87:9e:f5:b5:b5:18:aa:05:75:85:3e:f0:87:d5:e1:22:e3:c0: 28:d1:ff:12:79:01:29:fa:cb:c2:20:a9:96:4a:95:ff:09:1f: 59:d9:18:ac:82:e6:13:f1:1d:b5:5b:29:77:1b:b4:a9:44:92: 09:3a:d7:d8:b9:bc:ab:b8:d3:10:2e:e1:3c:82:c5:5a:31:19: 63:cf:c0:04:8d:13:b0:ed:a6:d5:63:09:f4:0f:78:39:fc:6e: b8:49:c4:8c:34:15:86:18:aa:2e:bc:87:1f:ac:85:ae:b4:25: 4b:15:c7:1b:fd:ae:84:9f:2b:86:31:6b:42:27:8d:99:85:e1: ca:06:35:79:c1:8a:ee:43:e7:71:1d:7e:00:df:ac:fa:78:46: 50:ab:2a:b4:14:da:d1:60:5d:d9:c6:b4:55:94:f4:e6:80:cf: 0b:94:f4:47:24:67:94:c1:81:42:af:e8:22:9f:3b:79:07:65: fe:a4:da:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwNDAzMDQzMjIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMGY1Ny1lYTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6RBTO+gWlDb1BeOiYRiNwkBuhhjnziJz5m2VZPCjyiwWYwef2VpJGhcfmvv 9VLg84o8YEbrfOGw9H72YBQM6s8zvDeq16mV64DhNqhT1dZwovan2Cl5xSSShOnG zspDBcz2HERxgfBiU8bf5prwg+3jkPY30L91iu5aaC++lGBvP7uoK0XBWZVgZPQ3 3I465hskzpSJ0wb1erLapkQ5m5A/uqsKUIX56rtmhwkRVmmcxt7FGaaL4h2eUcW0 bPhLqjp9KZHr+jaBuSE3Bg0/3YYESlVly380xizgaEPb5fho+lmU3okVIy8A46BV F1U1rata6VE8+zgRkUwf9urgUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsGa6zO GJ7m3Ff1nDPkoRu1p8YXMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg3NjcvN0JDNjFEODI4ODRCMTFFRTgxN0ZCNjdGQzRGOUFFMDIvN0JBQkI0QkU4 ODRDMTFFRTgxQzcxQTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC0XgAwDQYJKoZIhvcNAQELBQADggEBAGkx1Vvt/n19R4fi rRuqtgKCNWpQGZKIDYVEqTKuLU3mXeax7a7XCwvLgTfN4t4SPeHDNVd8NSXmnHR+ L6EyYF/jhSHIjnZHVoee9bW1GKoFdYU+8IfV4SLjwCjR/xJ5ASn6y8IgqZZKlf8J H1nZGKyC5hPxHbVbKXcbtKlEkgk619i5vKu40xAu4TyCxVoxGWPPwASNE7DtptVj CfQPeDn8brhJxIw0FYYYqi68hx+sha60JUsVxxv9roSfK4Yxa0InjZmF4coGNXnB iu5D53EdfgDfrPp4RlCrKrQU2tFgXdnGtFWU9OaAzwuU9EckZ5TBgUKv6CKfO3kH Zf6k2oQ= -----END CERTIFICATE-----Generated at Sun Apr 6 12:25:13 2025 by rpki-client