$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa File: 4F7F735071BF11EF9707C757C4F9AE02.roa (raw, json) Hash identifier: +AVcjrO/lygI1VxqLcuWyg3OYTzFmMTuMQ2BxSTBpXY= Subject key identifier: 9E:2F:F1:D0:5F:E3:0B:81:A6:0B:BC:4D:36:BE:E9:40:AC:DD:4B:06 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: BB Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:01 +0000 ROA not before: Sat 21 Dec 2024 05:50:01 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17479 IP address blocks: 202.28.24.0/22 maxlen: 22 202.28.24.0/24 maxlen: 24 202.28.25.0/24 maxlen: 24 202.28.26.0/24 maxlen: 24 202.28.27.0/24 maxlen: 24 202.28.244.0/22 maxlen: 22 202.28.244.0/24 maxlen: 24 202.28.245.0/24 maxlen: 24 202.28.246.0/24 maxlen: 24 202.28.247.0/24 maxlen: 24 202.28.248.0/22 maxlen: 22 202.28.248.0/24 maxlen: 24 202.28.249.0/24 maxlen: 24 202.28.250.0/24 maxlen: 24 202.28.251.0/24 maxlen: 24 2001:3c8:5007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:01 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665709-c0b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:11:cc:f7:c3:90:c2:1d:2d:2a:d2:e5:23: 6b:74:90:b3:e6:eb:47:3b:d3:8c:b2:85:1b:5a:2c: 25:7a:45:86:50:eb:3e:25:03:88:1c:75:60:df:44: 6d:bc:91:d2:ef:4d:9f:19:8a:00:33:6a:26:c9:cc: db:7a:66:c2:0f:b9:2f:71:92:1f:7a:3b:c3:64:e8: 92:dc:b1:5e:2e:ab:c9:87:42:9a:96:5f:02:a8:09: 82:e0:9c:37:32:6b:af:09:8b:e2:06:75:da:4c:d2: ab:32:d8:1a:03:96:b1:df:fc:32:12:3a:df:81:22: 71:39:ca:52:dc:92:cd:b8:03:0e:45:92:3e:fc:c1: 65:0a:6b:24:52:66:b3:f0:2e:57:3d:38:1f:a2:8a: f4:02:2c:e5:32:45:c2:54:b1:f0:94:02:72:df:bf: 39:99:50:ca:d2:a1:18:30:8f:06:eb:28:d4:e2:9f: 98:f0:3e:56:0c:28:74:6a:d1:f0:ec:df:8e:81:40: f4:c0:1b:d4:ba:f1:b9:fa:43:59:bc:2c:ea:3b:c4: be:61:f9:bc:7c:52:9b:79:7e:d7:b2:60:7d:9e:1f: c8:7a:9f:60:e1:34:a2:a8:c9:93:00:71:22:64:f1: c7:d0:f3:2c:ec:2b:46:cb:2c:87:b6:80:f3:a7:33: 81:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2F:F1:D0:5F:E3:0B:81:A6:0B:BC:4D:36:BE:E9:40:AC:DD:4B:06 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.24.0/22 202.28.244.0-202.28.251.255 IPv6: 2001:3c8:5007::/48 Signature Algorithm: sha256WithRSAEncryption 3f:5e:aa:c0:76:7e:40:17:7e:a2:04:63:6e:bd:51:64:41:31: e7:04:ba:ea:3e:a1:d0:67:d5:ca:71:e3:a3:c5:0b:16:bd:22: 69:22:fa:22:c3:ac:4c:4f:90:e1:df:29:8b:0f:e7:4e:ec:e3: be:c1:ea:6a:b5:34:ae:ff:36:3e:7b:a1:e7:44:90:e0:ba:9d: 60:f4:90:30:aa:e5:f6:ee:57:79:7d:aa:68:08:23:f5:cd:17: fd:08:b8:4c:ff:6b:58:bc:38:90:d1:43:e1:3e:d6:c0:47:51: 07:39:26:15:21:e5:8a:dd:38:22:97:f6:41:60:dc:87:c2:bd: 4d:37:0b:f8:09:a3:9f:b5:d8:83:19:e3:a1:24:3f:8b:5e:3d: d7:ae:aa:86:a9:35:ae:ff:2f:bb:d0:fd:5c:4a:77:56:fa:af: 30:f0:0c:3d:e6:d9:75:fb:8d:2b:a3:d2:85:c3:b7:1b:cc:29: 05:97:ca:1e:40:fa:da:fc:dc:da:a2:b8:ce:e6:47:ce:60:df: 3e:fb:b7:63:9c:fe:02:03:0c:f0:43:40:41:8d:08:88:e8:89: 64:08:0b:00:fd:3d:f3:ac:80:06:18:d6:c8:04:3b:63:7d:f6: 1a:98:93:63:60:ea:6a:98:1b:b4:84:3b:0d:88:75:b8:5c:fa: 0b:24:27:b7 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDAxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwOS1jMGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3QRzPfDkMIdLSrS5SNrdJCz5utHO9OMsoUbWiwlekWGUOs+JQOIHHVg30Rt vJHS702fGYoAM2omyczbembCD7kvcZIfejvDZOiS3LFeLqvJh0Kall8CqAmC4Jw3 MmuvCYviBnXaTNKrMtgaA5ax3/wyEjrfgSJxOcpS3JLNuAMORZI+/MFlCmskUmaz 8C5XPTgfoor0AizlMkXCVLHwlAJy3785mVDK0qEYMI8G6yjU4p+Y8D5WDCh0atHw 7N+OgUD0wBvUuvG5+kNZvCzqO8S+Yfm8fFKbeX7XsmB9nh/Iep9g4TSiqMmTAHEi ZPHH0PMs7CtGyyyHtoDzpzOBfwIDAQABo4ICtDCCArAwHQYDVR0OBBYEFJ4v8dBf 4wuBpgu8TTa+6UCs3UsGMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvNEY3RjczNTA3 MUJGMTFFRjk3MDdDNzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBALKHBgwDAMEAsoc9AMEAsoc+DAPBAIAAjAJAwcAIAEDyFAH MA0GCSqGSIb3DQEBCwUAA4IBAQA/XqrAdn5AF36iBGNuvVFkQTHnBLrqPqHQZ9XK ceOjxQsWvSJpIvoiw6xMT5Dh3ymLD+dO7OO+wepqtTSu/zY+e6HnRJDgup1g9JAw quX27ld5fapoCCP1zRf9CLhM/2tYvDiQ0UPhPtbAR1EHOSYVIeWK3Tgil/ZBYNyH wr1NNwv4CaOftdiDGeOhJD+LXj3XrqqGqTWu/y+70P1cSndW+q8w8Aw95tl1+40r o9KFw7cbzCkFl8oeQPra/NzaorjO5kfOYN8++7djnP4CAwzwQ0BBjQiI6IlkCAsA /T3zrIAGGNbIBDtjffYamJNjYOpqmBu0hDsNiHW4XPoLJCe3 -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:15 2025 by rpki-client