$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/7704C7B0D65111EC8F5E2576C4F9AE02.roa File: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (raw, json) Hash identifier: taeHKSQWipXWAdVzTuKaHFKdvJk17h6okEmsUH46UHg= Subject key identifier: 83:87:A0:81:3F:3F:10:CE:34:87:26:E7:69:D1:12:A8:2C:FC:DA:A8 Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 01E7 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/7704C7B0D65111EC8F5E2576C4F9AE02.roa Signing time: Thu 09 Nov 2023 03:34:22 +0000 ROA not before: Thu 09 Nov 2023 03:34:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4768 IP address blocks: 167.179.196.0/24 maxlen: 24 167.179.197.0/24 maxlen: 24 167.179.198.0/24 maxlen: 24 167.179.208.0/24 maxlen: 24 167.179.209.0/24 maxlen: 24 167.179.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Nov 9 03:34:22 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c533e-b166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1d:49:dd:f0:b6:35:45:60:2c:09:52:66:74: c9:52:08:ea:88:76:11:85:3f:62:b1:f4:4d:94:3a: ef:15:bd:ea:1e:42:31:db:0e:5b:96:53:b3:f9:75: 41:b3:45:0e:0a:15:07:95:eb:3e:96:5f:9d:0d:81: a4:3f:cf:6f:d1:74:49:62:7e:ea:f3:cd:a3:d6:cf: 7e:93:f2:a2:6d:32:ae:8a:7e:60:83:d9:a0:46:bd: 83:ca:13:95:99:d9:81:c0:2c:1a:3e:e1:92:9e:8b: ee:d5:7a:c8:d2:b9:7e:f3:af:ea:9e:84:1c:b7:dc: 0e:fa:f3:c2:bc:0d:0f:88:bc:43:6b:91:70:f7:20: c5:66:66:c9:da:a3:af:cf:cd:78:3e:aa:f6:ba:de: cc:61:9c:5f:71:dc:58:19:70:bb:07:bb:e3:7a:7d: c4:61:04:f1:5d:7f:01:12:c7:b6:e3:1d:a4:97:f1: c4:84:c5:d0:85:e0:9a:65:3a:ab:17:ec:54:f4:4e: e5:e5:06:83:64:8c:24:2e:2a:17:cc:f6:e6:86:0a: c2:6c:14:8f:ec:4a:8f:c9:3b:02:65:e6:cf:c6:5a: 80:63:ec:56:a4:b0:09:54:40:ea:4f:22:ff:8b:c9: 04:02:17:76:f3:b2:69:bb:e8:0b:d6:e5:00:96:c7: 17:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:87:A0:81:3F:3F:10:CE:34:87:26:E7:69:D1:12:A8:2C:FC:DA:A8 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/7704C7B0D65111EC8F5E2576C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.196.0-167.179.198.255 167.179.208.0-167.179.210.255 Signature Algorithm: sha256WithRSAEncryption 8d:62:20:44:fa:04:d0:b5:48:a7:7a:88:49:a1:e5:6a:80:f4: 30:8b:86:4f:69:63:d1:24:44:cd:01:c3:e3:1c:96:0c:0d:58: 4b:6e:62:2c:54:95:dc:0a:70:e6:6b:d6:19:51:a1:c2:0d:b1: 8b:28:3a:c4:e3:2a:f2:9e:fa:c7:ef:73:43:fe:24:c9:da:3c: b2:d2:ec:67:2d:43:34:45:c8:07:69:73:69:af:a3:06:a6:71: e0:bd:13:af:22:d3:65:10:31:c5:15:4e:af:9c:4f:0d:3d:1b: d8:88:91:b5:28:56:6d:c3:91:79:2a:b7:47:a9:bc:b5:16:39: 7c:16:f8:80:8f:2e:b5:1c:0a:00:49:34:9d:d2:0d:a8:9e:60: 45:eb:e5:a1:28:85:a0:bd:d7:81:43:cd:8e:73:f5:8f:fd:d6: 2e:ce:db:01:de:5c:2c:3c:17:47:e3:c0:d3:66:8e:7a:f8:8b: 48:db:de:e1:f4:f5:41:1b:20:62:95:83:3f:c6:5d:4a:94:5c: b8:bb:02:9f:b1:5f:6e:b8:03:ec:80:5a:51:bc:0c:4e:f9:30: 7e:fd:00:6f:98:5a:18:df:c4:1a:11:0f:81:c9:12:92:3a:1e: fd:b6:96:f6:74:59:b2:1c:05:ea:4b:09:7c:75:40:0e:d9:18: fb:90:d6:c1 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjMxMTA5MDMzNDIyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNTMzZS1iMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh1J3fC2NUVgLAlSZnTJUgjqiHYRhT9isfRNlDrvFb3qHkIx2w5bllOz+XVB s0UOChUHles+ll+dDYGkP89v0XRJYn7q882j1s9+k/KibTKuin5gg9mgRr2DyhOV mdmBwCwaPuGSnovu1XrI0rl+86/qnoQct9wO+vPCvA0PiLxDa5Fw9yDFZmbJ2qOv z814Pqr2ut7MYZxfcdxYGXC7B7vjen3EYQTxXX8BEse24x2kl/HEhMXQheCaZTqr F+xU9E7l5QaDZIwkLioXzPbmhgrCbBSP7EqPyTsCZebPxlqAY+xWpLAJVEDqTyL/ i8kEAhd287Jpu+gL1uUAlscXswIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFIOHoIE/ PxDONIcm52nREqgs/NqoMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCREIvNjU3RTBGMzRENjRCMTFFQ0FCMjBFMzZCQzRGOUFFMDIvNzcwNEM3QjBE NjUxMTFFQzhGNUUyNTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAqezxAMEAKezxjAMAwQEp7PQAwQAp7PSMA0GCSqGSIb3 DQEBCwUAA4IBAQCNYiBE+gTQtUineohJoeVqgPQwi4ZPaWPRJETNAcPjHJYMDVhL bmIsVJXcCnDma9YZUaHCDbGLKDrE4yrynvrH73ND/iTJ2jyy0uxnLUM0RcgHaXNp r6MGpnHgvROvItNlEDHFFU6vnE8NPRvYiJG1KFZtw5F5KrdHqby1Fjl8FviAjy61 HAoASTSd0g2onmBF6+WhKIWgvdeBQ82Oc/WP/dYuztsB3lwsPBdH48DTZo56+ItI 297h9PVBGyBilYM/xl1KlFy4uwKfsV9uuAPsgFpRvAxO+TB+/QBvmFoY38QaEQ+B yRKSOh79tpb2dFmyHAXqSwl8dUAO2Rj7kNbB -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:58 2024 by rpki-client on console-fra.rpki-client.org