$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa File: 4F7F735071BF11EF9707C757C4F9AE02.roa (raw, json) Hash identifier: aEvgfM0oWCcz0V6MCoUcd91oQO6pxQHTgRLGmnt6Ijk= Subject key identifier: F2:47:B9:83:FB:08:83:32:1F:54:61:80:AA:15:AF:5B:53:59:86:73 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 13 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa Signing time: Fri 13 Sep 2024 10:59:56 +0000 ROA not before: Fri 13 Sep 2024 10:59:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 17479 IP address blocks: 202.28.24.0/22 maxlen: 22 202.28.24.0/24 maxlen: 24 202.28.25.0/24 maxlen: 24 202.28.26.0/24 maxlen: 24 202.28.27.0/24 maxlen: 24 202.28.244.0/22 maxlen: 22 202.28.244.0/24 maxlen: 24 202.28.245.0/24 maxlen: 24 202.28.246.0/24 maxlen: 24 202.28.247.0/24 maxlen: 24 202.28.248.0/22 maxlen: 22 202.28.248.0/24 maxlen: 24 202.28.249.0/24 maxlen: 24 202.28.250.0/24 maxlen: 24 202.28.251.0/24 maxlen: 24 2001:3c8:5007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 10:59:56 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e41b2c-3cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:93:8c:21:fc:c1:3a:81:c5:a2:6e:0e:be: 83:17:4e:40:9d:c1:b9:71:4d:61:52:e1:c0:f7:5c: e3:70:fb:e3:99:04:e9:1a:da:8d:a4:e6:32:dc:8c: 17:ff:58:9e:f1:3c:b7:c6:c1:c3:fd:2a:91:c2:fe: 8a:18:b5:dd:5a:9a:be:72:d0:0e:bc:ce:f4:ea:79: 35:d8:21:be:40:7e:47:09:46:09:e4:df:9c:4d:9c: e2:bc:fc:e6:7f:e2:e1:2e:43:0a:53:a7:b3:aa:09: ba:c2:3b:16:6d:28:15:7d:b0:25:a3:ca:04:8b:cb: b6:90:6f:20:ae:94:7e:eb:0d:3a:0f:d5:5d:59:80: d6:73:bb:e3:57:36:2e:7b:ba:4e:3b:a3:cd:e8:08: ef:f5:cf:d3:3a:c0:bc:77:d6:1e:48:b1:ce:58:67: 9d:1d:24:bc:ac:2a:a4:4a:d1:96:bb:2e:90:8f:32: 9b:5a:7c:8a:d6:7b:3e:a1:10:81:dd:50:80:30:27: 19:f7:39:b1:7f:cf:cd:e2:03:b4:5c:74:6e:65:54: c2:e3:5e:0c:fa:05:54:2c:9d:20:00:89:82:b5:22: de:93:cb:a0:2e:48:39:05:b9:18:52:a6:5a:ec:17: 1a:68:bf:2a:d7:98:20:5f:01:93:da:a3:eb:1b:10: 7a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:47:B9:83:FB:08:83:32:1F:54:61:80:AA:15:AF:5B:53:59:86:73 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/4F7F735071BF11EF9707C757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.24.0/22 202.28.244.0-202.28.251.255 IPv6: 2001:3c8:5007::/48 Signature Algorithm: sha256WithRSAEncryption a5:31:64:2c:fb:c6:1d:ff:55:be:2e:6b:ff:5d:17:f6:6f:40: 16:fa:1e:50:25:20:84:69:14:ea:25:ea:7e:36:20:a5:34:1a: 9f:13:82:f9:78:45:8e:0c:9c:a7:a5:79:d5:c7:5b:ea:86:d2: 65:62:d7:d2:f0:30:d0:05:ad:94:76:a7:1d:a7:1e:c0:ba:bc: 04:bb:bc:ab:fe:eb:de:cf:7f:ce:c8:1a:bc:8d:79:ce:92:b6: 83:72:46:01:de:15:fa:9e:e7:38:1d:e8:0c:06:ed:a1:a1:f0: 82:e1:c1:64:20:57:af:83:5e:1e:90:4a:79:9b:24:03:bf:2a: 7c:65:bf:49:28:e9:05:5f:2b:e4:62:ae:8c:91:64:85:87:6c: a6:9d:50:86:1b:61:5e:95:e8:c7:8f:34:3e:2c:6e:1e:57:e3: 60:37:56:a2:ce:ee:7d:fe:85:50:f4:bb:85:83:9f:12:87:c3: b2:db:83:ca:d7:d8:a3:ee:61:a0:21:74:b6:66:bd:df:d1:67: fb:f9:5f:0b:cb:80:11:23:3f:e6:96:9e:58:aa:10:52:4e:59: c5:b0:e2:7a:c1:fb:0f:df:0c:93:29:56:b9:9b:16:b4:1e:fd: 34:17:36:01:50:03:57:6f:79:a4:4d:09:c9:2b:7e:84:15:9a: e4:5c:73:bd -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMxMDU5NTZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxYjJjLTNjZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLq5OMIfzBOoHFom4OvoMXTkCdwblxTWFS4cD3XONw++OZBOka2o2k5jLcjBf/ WJ7xPLfGwcP9KpHC/ooYtd1amr5y0A68zvTqeTXYIb5AfkcJRgnk35xNnOK8/OZ/ 4uEuQwpTp7OqCbrCOxZtKBV9sCWjygSLy7aQbyCulH7rDToP1V1ZgNZzu+NXNi57 uk47o83oCO/1z9M6wLx31h5Isc5YZ50dJLysKqRK0Za7LpCPMptafIrWez6hEIHd UIAwJxn3ObF/z83iA7RcdG5lVMLjXgz6BVQsnSAAiYK1It6Ty6AuSDkFuRhSplrs FxpovyrXmCBfAZPao+sbEHr9AgMBAAGjggK0MIICsDAdBgNVHQ4EFgQU8ke5g/sI gzIfVGGAqhWvW1NZhnMwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi80RjdGNzM1MDcx QkYxMUVGOTcwN0M3NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA+BggrBgEFBQcBBwEB/wQv MC0wGgQCAAEwFAMEAsocGDAMAwQCyhz0AwQCyhz4MA8EAgACMAkDBwAgAQPIUAcw DQYJKoZIhvcNAQELBQADggEBAKUxZCz7xh3/Vb4ua/9dF/ZvQBb6HlAlIIRpFOol 6n42IKU0Gp8Tgvl4RY4MnKeledXHW+qG0mVi19LwMNAFrZR2px2nHsC6vAS7vKv+ 697Pf87IGryNec6StoNyRgHeFfqe5zgd6AwG7aGh8ILhwWQgV6+DXh6QSnmbJAO/ Knxlv0ko6QVfK+RiroyRZIWHbKadUIYbYV6V6MePND4sbh5X42A3VqLO7n3+hVD0 u4WDnxKHw7Lbg8rX2KPuYaAhdLZmvd/RZ/v5XwvLgBEjP+aWnliqEFJOWcWw4nrB +w/fDJMpVrmbFrQe/TQXNgFQA1dveaRNCckrfoQVmuRcc70= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org