$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa File: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (raw, json) Hash identifier: yux+dEwmBwNyU/hTLCnztj/y9rn0KtneR4FPzepCfkM= Subject key identifier: 5C:CE:F4:AA:2D:B1:46:F0:A4:A9:4E:98:33:09:29:35:B3:C0:A5:58 Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 02 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa Signing time: Tue 21 Nov 2023 09:00:57 +0000 ROA not before: Tue 21 Nov 2023 09:00:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133126 IP address blocks: 180.94.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Nov 21 09:00:57 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=655c71c9-625a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:4d:da:73:a1:04:df:7d:d6:a4:48:c6:4e: 03:2e:14:17:02:59:ab:aa:d9:1a:22:53:1e:f2:e1: d7:e3:68:3f:34:2d:48:83:ec:98:54:97:54:96:98: 0d:eb:79:34:8a:49:1b:fd:ed:1f:23:0a:09:c0:7d: d0:c2:a7:14:0d:7e:65:8b:50:78:d6:57:5c:59:4f: ed:ed:dd:ce:95:e8:91:48:89:61:3a:8c:23:b3:1a: 69:37:d9:40:21:eb:2e:8f:5b:4a:b0:d5:9c:e1:b5: dd:46:50:c5:68:47:aa:66:32:a8:72:2d:df:e3:30: 22:5f:f0:f8:f0:41:18:38:6d:81:11:35:51:38:bf: 87:68:e0:43:2d:7d:b6:69:32:ff:2d:90:75:64:79: c1:57:7d:5f:ab:e7:60:fa:d9:c2:4d:86:45:99:8c: 2f:43:8f:56:3a:75:1a:a4:91:2f:a3:df:b7:db:26: 49:f0:cd:c9:de:5a:b0:42:36:cc:86:7e:d8:37:21: c8:5b:39:3d:64:05:71:13:ed:79:12:73:48:cb:c4: c4:69:3a:20:48:c2:8f:96:2e:bc:a4:3d:71:cc:3b: d5:ac:4e:28:2d:d3:d8:e8:25:b5:47:0c:e5:a9:24: 38:cb:f4:50:c5:2d:e8:81:68:8d:a8:f3:1b:b2:fd: 26:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CE:F4:AA:2D:B1:46:F0:A4:A9:4E:98:33:09:29:35:B3:C0:A5:58 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.0.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:f9:82:1a:33:8b:1c:00:d2:24:72:ea:bb:5e:e3:e0:dc:52: ef:f3:61:3e:45:b9:ea:b2:2a:45:b6:0b:58:c0:ea:72:03:73: d6:53:22:22:8f:22:cb:50:14:64:4b:09:c1:cb:41:e4:5b:8e: 94:81:7c:4d:c1:bd:5f:e0:89:40:bf:7c:fc:7a:29:c8:ce:4f: fe:c2:c4:75:4e:15:bb:0a:15:c6:a0:b0:e3:3a:19:ff:d2:be: 6b:ab:f7:a9:7b:3b:a0:27:58:18:f2:b8:c0:99:ba:91:2e:95: 35:2d:08:b8:08:fb:df:fa:b6:6d:b7:32:aa:77:6b:27:82:d9: 35:21:06:36:82:4c:73:a7:0b:11:72:c0:28:16:93:d8:eb:41: 26:e1:3a:1c:01:92:1b:ab:93:9f:cf:e9:f2:4d:f7:22:82:32: af:68:cd:96:22:b3:9d:ba:f3:42:36:53:df:93:1d:c1:79:42: fb:ad:cc:cb:30:73:1d:e2:1d:bd:1a:b3:5c:05:8c:da:c4:e3: df:3e:0e:70:fc:65:58:5d:7f:ad:ea:56:1e:b1:78:99:64:dc: 59:b2:2d:76:ac:c5:f2:0e:15:33:24:70:82:3a:c5:5c:f7:40: e3:1e:0d:13:c6:31:40:3c:ad:9d:4c:54:c6:eb:40:7a:65:0b: bf:11:89:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODc2NzExMC8GA1UEBRMoODQ2OEIwMjE5N0ZDOUI3NzBBRjg0MDU1N0JGNDE1QTBC NjEzODIwRDAeFw0yMzExMjEwOTAwNTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWM3MWM5LTYyNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqdU3ac6EE333WpEjGTgMuFBcCWauq2RoiUx7y4dfjaD80LUiD7JhUl1SWmA3r eTSKSRv97R8jCgnAfdDCpxQNfmWLUHjWV1xZT+3t3c6V6JFIiWE6jCOzGmk32UAh 6y6PW0qw1Zzhtd1GUMVoR6pmMqhyLd/jMCJf8PjwQRg4bYERNVE4v4do4EMtfbZp Mv8tkHVkecFXfV+r52D62cJNhkWZjC9Dj1Y6dRqkkS+j37fbJknwzcneWrBCNsyG ftg3IchbOT1kBXET7XkSc0jLxMRpOiBIwo+WLrykPXHMO9WsTigt09joJbVHDOWp JDjL9FDFLeiBaI2o8xuy/SbHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXM70qi2x RvCkqU6YMwkpNbPApVgwHwYDVR0jBBgwFoAUhGiwIZf8m3cK+EBVe/QVoLYTgg0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NzY3LzdCQzYxRDgyODg0 QjExRUU4MTdGQjY3RkM0RjlBRTAyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdn MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaEdpd0laZjhtM2NLLUVCVmVfUVZvTFlUZ2cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi83QkFCQjRCRTg4 NEMxMUVFODFDNzFBMzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEALReADANBgkqhkiG9w0BAQsFAAOCAQEAH/mCGjOLHADSJHLq u17j4NxS7/NhPkW56rIqRbYLWMDqcgNz1lMiIo8iy1AUZEsJwctB5FuOlIF8TcG9 X+CJQL98/HopyM5P/sLEdU4VuwoVxqCw4zoZ/9K+a6v3qXs7oCdYGPK4wJm6kS6V NS0IuAj73/q2bbcyqndrJ4LZNSEGNoJMc6cLEXLAKBaT2OtBJuE6HAGSG6uTn8/p 8k33IoIyr2jNliKznbrzQjZT35MdwXlC+63MyzBzHeIdvRqzXAWM2sTj3z4OcPxl WF1/repWHrF4mWTcWbItdqzF8g4VMyRwgjrFXPdA4x4NE8YxQDytnUxUxutAemUL vxGJ6Q== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org