$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/0BABC0DCB15D11EB8937582CC4F9AE02.roa File: 0BABC0DCB15D11EB8937582CC4F9AE02.roa (raw, json) Hash identifier: MgPPOqUabbysJ30azHsq0+KZaRUfNvm01tRHSvCQPaY= Subject key identifier: 59:A2:7E:DF:56:C3:22:11:16:BC:24:35:16:AD:28:30:C6:B1:42:F1 Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 054B Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/0BABC0DCB15D11EB8937582CC4F9AE02.roa Signing time: Thu 14 Dec 2023 23:52:01 +0000 ROA not before: Thu 14 Dec 2023 23:52:01 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 65488 IP address blocks: 168.134.3.0/25 maxlen: 25 168.134.3.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Dec 14 23:52:01 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b9521-5e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:91:94:34:59:3a:f3:1b:49:22:48:72:9d:c1: 0b:23:97:2c:77:2e:24:4f:5b:53:13:1a:28:53:8e: dc:7c:f5:42:3e:a3:c4:01:11:be:d1:ba:ca:df:26: 3d:33:22:7b:7a:1d:fa:62:1d:06:4f:b4:f1:4d:9a: 5a:0c:7d:b0:a2:e2:3b:3f:3d:44:56:48:66:1a:f5: 60:d7:14:5d:0e:6e:03:c7:69:9a:64:6f:66:18:19: 75:9a:10:9f:11:74:f5:cf:a9:30:ba:e2:45:77:52: d8:bc:4e:a2:cd:0e:6a:4d:3a:7a:3a:47:6c:4a:38: 28:5c:be:46:67:48:2e:15:4c:cf:ff:a4:bb:ba:c1: 6b:d1:7e:de:f0:ba:89:f9:17:69:26:ab:35:23:2a: d8:88:9c:71:4d:13:76:f7:11:65:45:0f:57:fc:57: 23:86:8c:82:74:41:5a:e2:a4:43:28:7f:2c:12:c5: db:12:f6:82:64:42:8a:ae:1b:25:ba:af:e0:be:75: 4d:d1:7e:68:c4:a1:48:db:12:71:06:95:15:45:60: 7e:1e:48:24:89:b2:ce:c6:81:81:a8:c5:1b:98:12: 41:aa:b7:35:3b:bc:8d:17:ec:c9:57:58:73:b5:62: 97:de:f4:2c:73:57:02:13:ea:a1:35:cc:2e:54:cf: a1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A2:7E:DF:56:C3:22:11:16:BC:24:35:16:AD:28:30:C6:B1:42:F1 X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/0BABC0DCB15D11EB8937582CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.134.3.0/24 Signature Algorithm: sha256WithRSAEncryption 81:77:ad:72:a1:0e:9b:77:09:1e:9a:cb:b7:11:31:b5:6d:92: 61:61:b5:4d:7c:2c:6f:72:91:68:19:38:68:51:d3:e1:65:a7: 4b:f8:2d:aa:a2:83:ec:94:31:5a:16:17:e7:e8:5d:37:8c:d6: 05:c7:e3:e5:0f:1f:fd:77:30:06:d2:1b:c3:ec:2c:7b:74:21: 50:ad:4c:59:51:c4:5d:84:53:6a:03:9f:d0:ef:11:b3:4a:a0: 3a:04:80:ff:e2:88:76:da:46:37:1a:45:85:d3:18:d1:9f:54: 04:5b:14:bb:a3:6f:71:c6:e5:f0:d9:e9:12:2e:2a:d9:a8:9d: 1d:90:5c:d7:5b:61:ae:b3:15:78:41:97:8a:bd:d9:d0:ea:a6: 71:eb:63:b9:1a:44:75:a1:65:7f:65:29:61:3b:af:a0:1f:04: d2:c2:67:78:fa:af:af:25:60:e1:52:30:f8:9c:dd:cc:1f:16: 07:81:ce:66:da:20:6c:a0:fc:77:ad:e5:5c:66:a3:1b:1c:31: b9:eb:d5:09:87:23:f9:db:81:6d:f9:d8:93:71:5f:43:bf:8e: 86:9d:c0:d3:24:6b:3e:47:00:81:32:24:62:8b:9d:94:38:2e: 10:31:f1:cc:e7:2a:93:fc:d7:5b:6c:1f:97:da:df:b4:1b:64: d7:77:d6:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjMxMjE0MjM1MjAxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOTUyMS01ZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZGUNFk68xtJIkhyncELI5csdy4kT1tTExooU47cfPVCPqPEARG+0brK3yY9 MyJ7eh36Yh0GT7TxTZpaDH2wouI7Pz1EVkhmGvVg1xRdDm4Dx2maZG9mGBl1mhCf EXT1z6kwuuJFd1LYvE6izQ5qTTp6OkdsSjgoXL5GZ0guFUzP/6S7usFr0X7e8LqJ +RdpJqs1IyrYiJxxTRN29xFlRQ9X/FcjhoyCdEFa4qRDKH8sEsXbEvaCZEKKrhsl uq/gvnVN0X5oxKFI2xJxBpUVRWB+HkgkibLOxoGBqMUbmBJBqrc1O7yNF+zJV1hz tWKX3vQsc1cCE+qhNcwuVM+hiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFmift9W wyIRFrwkNRatKDDGsULxMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvMEJBQkMwRENC MTVEMTFFQjg5Mzc1ODJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACohgMwDQYJKoZIhvcNAQELBQADggEBAIF3rXKhDpt3CR6a y7cRMbVtkmFhtU18LG9ykWgZOGhR0+Flp0v4Laqig+yUMVoWF+foXTeM1gXH4+UP H/13MAbSG8PsLHt0IVCtTFlRxF2EU2oDn9DvEbNKoDoEgP/iiHbaRjcaRYXTGNGf VARbFLujb3HG5fDZ6RIuKtmonR2QXNdbYa6zFXhBl4q92dDqpnHrY7kaRHWhZX9l KWE7r6AfBNLCZ3j6r68lYOFSMPic3cwfFgeBzmbaIGyg/Het5VxmoxscMbnr1QmH I/nbgW352JNxX0O/joadwNMkaz5HAIEyJGKLnZQ4LhAx8cznKpP811tsH5fa37Qb ZNd31uA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:50 2024 by rpki-client on console-fra.rpki-client.org