$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa File: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (raw, json) Hash identifier: 7Q5TQ0GutKyzM0PazgyPbgCiIYVuSp/HifdYRSL6/UE= Subject key identifier: 9B:F5:90:1E:40:B4:6C:3B:42:8F:10:64:B3:4C:9A:0D:6C:93:EC:4B Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0C7C Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa Signing time: Mon 10 Jun 2024 19:32:57 +0000 ROA not before: Mon 10 Jun 2024 19:32:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 27435 IP address blocks: 116.68.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3196 (0xc7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jun 10 19:32:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666754e8-e785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:a1:e4:04:b5:5e:1c:31:cc:39:44:4c:cb: 82:03:88:b7:f5:a3:89:80:07:64:47:ee:89:0b:51: 3a:8e:1e:3f:c2:16:fd:8d:f7:cb:50:6b:04:04:85: a8:35:1d:db:74:43:83:ff:ff:4f:34:a8:65:05:2c: 1d:0a:1d:eb:ec:da:10:d7:94:ea:8d:e9:d6:4a:12: 81:d5:ee:f4:6f:08:f6:24:0c:8c:61:42:6c:cf:05: 40:36:cb:b6:94:1c:44:49:8e:7f:7d:62:94:3c:d3: f2:4b:b2:e7:e2:20:2e:70:37:af:89:2c:c3:76:35: 2b:7b:81:81:1e:97:cb:90:7e:9a:3a:b7:19:dd:bd: 6d:7b:18:0e:e9:39:79:74:66:2f:ec:48:72:80:fd: 6a:a8:a2:e9:fc:3d:3b:eb:f4:13:92:ce:11:26:3e: 5b:d7:3a:7b:4a:ef:85:23:33:c8:a3:f9:00:aa:e5: 90:b8:4f:75:6b:db:e9:1b:03:4d:ae:b2:6a:41:17: 7f:94:38:46:93:32:3b:a7:1d:af:24:57:da:1c:63: 16:80:f2:27:b6:cb:28:de:43:10:ae:de:d2:e4:68: a5:9f:84:0c:40:c8:3a:fb:11:5f:71:d0:66:7e:d5: d2:c7:c6:76:1a:bf:ac:c6:6e:24:93:7f:38:5d:60: 7e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F5:90:1E:40:B4:6C:3B:42:8F:10:64:B3:4C:9A:0D:6C:93:EC:4B X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.68.157.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:25:01:42:99:2e:6b:0f:c9:ba:4f:b6:bf:56:6f:77:d5:47: 31:96:40:b1:0b:94:37:8c:20:66:79:42:8e:95:cf:79:99:3f: cf:af:65:20:d8:9b:d1:9a:1c:bc:a5:81:bc:8e:1b:df:72:c1: 35:6a:1f:c2:b0:d8:a6:39:d7:63:61:c9:62:b6:f7:b0:a9:93: db:32:c5:74:3f:ae:43:a2:53:e8:9c:b9:19:c7:63:15:3a:2f: 45:6a:fb:1e:50:12:98:5e:a1:58:af:49:59:e7:d5:6a:39:12: ab:f4:3e:d3:f3:24:4c:20:87:ab:59:a6:19:13:73:9c:b0:f0: 71:6f:d9:3a:8d:f2:d8:6b:69:8d:9c:58:e4:a7:22:80:c2:c7: 43:1d:a8:f3:16:5d:95:1b:a0:00:71:6d:a6:9d:11:16:4d:60: 08:1b:7d:11:db:0c:ec:06:15:78:d0:7f:2f:fa:46:53:df:fe: 0d:df:ab:f8:77:89:bc:9e:94:0b:93:df:2f:ec:c0:b2:1d:e4: c3:a3:7a:20:3e:eb:d5:82:19:e3:60:c8:96:e4:dc:05:5a:c2: 61:33:a8:b7:41:9f:25:20:77:a6:26:1b:58:f3:51:ea:a4:08: 87:74:71:f6:45:72:4d:ae:ad:8a:12:b7:4c:8a:e1:6d:c8:68: be:a4:f6:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjQwNjEwMTkzMjU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3NTRlOC1lNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Tuh5AS1XhwxzDlETMuCA4i39aOJgAdkR+6JC1E6jh4/whb9jffLUGsEBIWo NR3bdEOD//9PNKhlBSwdCh3r7NoQ15TqjenWShKB1e70bwj2JAyMYUJszwVANsu2 lBxESY5/fWKUPNPyS7Ln4iAucDeviSzDdjUre4GBHpfLkH6aOrcZ3b1texgO6Tl5 dGYv7EhygP1qqKLp/D076/QTks4RJj5b1zp7Su+FIzPIo/kAquWQuE91a9vpGwNN rrJqQRd/lDhGkzI7px2vJFfaHGMWgPIntsso3kMQrt7S5Giln4QMQMg6+xFfcdBm ftXSx8Z2Gr+sxm4kk384XWB+BwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJv1kB5A tGw7Qo8QZLNMmg1sk+xLMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMkJBQkVFQjQ4 MkVFMTFFQUIxNzBGRDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0RJ0wDQYJKoZIhvcNAQELBQADggEBAJwlAUKZLmsPybpP tr9Wb3fVRzGWQLELlDeMIGZ5Qo6Vz3mZP8+vZSDYm9GaHLylgbyOG99ywTVqH8Kw 2KY512NhyWK297Cpk9syxXQ/rkOiU+icuRnHYxU6L0Vq+x5QEpheoVivSVnn1Wo5 Eqv0PtPzJEwgh6tZphkTc5yw8HFv2TqN8thraY2cWOSnIoDCx0MdqPMWXZUboABx baadERZNYAgbfRHbDOwGFXjQfy/6RlPf/g3fq/h3ibyelAuT3y/swLId5MOjeiA+ 69WCGeNgyJbk3AVawmEzqLdBnyUgd6YmG1jzUeqkCId0cfZFck2urYoSt0yK4W3I aL6k9tQ= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org