$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7E87079C721B11EF81654E68C4F9AE02.roa File: 7E87079C721B11EF81654E68C4F9AE02.roa (raw, json) Hash identifier: bxzdsqatWhUVqtuxJMKtEnUZu6ndP5zKIST5BM+UIyU= Subject key identifier: 21:45:47:08:8C:8D:53:61:66:D0:7A:71:DC:F8:C9:07:08:4A:04:4E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 4C Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7E87079C721B11EF81654E68C4F9AE02.roa Signing time: Fri 13 Sep 2024 21:59:48 +0000 ROA not before: Fri 13 Sep 2024 21:59:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140618 IP address blocks: 202.28.72.0/24 maxlen: 24 202.28.73.0/24 maxlen: 24 202.28.74.0/24 maxlen: 24 202.28.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:59:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4b5d4-f47a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:f3:8a:3e:4c:b8:63:f3:f2:e1:7e:8e:14: a8:86:9f:9b:f3:d0:c3:a9:e2:c5:75:12:c4:88:2b: ba:2e:97:e4:21:f7:27:21:84:1c:47:82:45:3e:ca: 85:25:d5:0c:b5:f4:df:12:24:d4:27:17:15:d7:ac: 62:43:eb:80:dd:e8:63:af:93:53:31:50:85:a7:bf: 62:61:36:49:6c:70:05:e4:de:1c:c3:e6:6e:1e:c4: ed:9c:77:05:89:6c:be:88:85:2f:1f:96:8b:36:06: 1e:f5:ce:ff:75:f7:18:45:ca:21:e3:95:df:bd:d1: 11:e2:02:17:3f:32:37:5b:d0:77:7d:e2:68:59:05: 41:9b:e0:aa:fa:8c:d7:a5:ed:4e:17:77:a5:1e:bf: d1:b3:8e:94:99:8d:17:18:d9:19:3b:87:2e:29:9f: bb:c7:e8:cc:3c:9f:a5:b5:8f:ef:9f:dd:c0:85:01: 1a:a7:1d:9c:ce:54:77:e2:4d:a2:a8:e9:8a:8d:f6: 39:b3:94:67:95:9a:9c:d9:80:cd:ff:5c:70:07:77: 28:b1:b6:76:89:c6:ba:cb:e7:dd:f0:32:5d:38:0c: 6f:f0:fd:1a:42:25:ce:98:df:cb:33:8f:42:4a:6e: ee:46:64:8b:1a:e7:58:61:b3:25:cf:c8:b3:24:49: 4f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:45:47:08:8C:8D:53:61:66:D0:7A:71:DC:F8:C9:07:08:4A:04:4E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7E87079C721B11EF81654E68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.72.0/22 Signature Algorithm: sha256WithRSAEncryption 79:7b:79:13:15:81:6f:fe:56:32:fa:92:f7:1d:c7:87:5e:35: 00:76:91:5c:90:f2:a1:d9:28:f7:e8:17:68:72:50:47:60:55: 41:52:8d:69:50:3f:2f:fa:cf:e9:52:3f:79:f1:1a:80:97:17: ae:20:bb:28:9f:d4:ac:93:d5:57:06:dc:c6:ff:f1:96:2c:b4: 54:4e:1a:c0:25:90:3b:67:02:63:ba:46:7f:60:e4:e5:ba:70: 84:06:d5:11:7b:20:1f:b2:78:87:ae:2a:01:70:be:bc:ea:32: 5c:1a:4e:1a:4a:a5:72:07:f4:7c:7b:60:40:03:2b:0c:d6:4d: ab:d0:d8:00:2e:0e:92:ca:29:69:c5:ac:2b:8f:47:41:d3:e0: c3:7a:fc:82:b6:4c:79:5d:88:04:13:b7:63:c9:93:70:2b:d6: 8f:e5:24:5d:18:71:01:e9:e6:28:9f:e4:0a:e6:d9:89:2d:9a: 49:5f:cd:0f:2d:8e:5e:df:1f:74:07:02:53:b0:ab:de:ea:f3: 91:28:62:ee:af:e5:01:5f:ee:95:88:d7:93:b6:5d:d5:d4:13: b0:89:33:6c:d4:04:db:39:26:cf:4e:93:42:1e:59:75:5d:26: 52:4d:b2:02:db:e7:a7:1d:66:42:7e:9d:03:54:67:6f:71:13: ed:3a:5f:d4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTU5NDhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRiNWQ0LWY0N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6h/OKPky4Y/Py4X6OFKiGn5vz0MOp4sV1EsSIK7oul+Qh9ychhBxHgkU+yoUl 1Qy19N8SJNQnFxXXrGJD64Dd6GOvk1MxUIWnv2JhNklscAXk3hzD5m4exO2cdwWJ bL6IhS8flos2Bh71zv919xhFyiHjld+90RHiAhc/Mjdb0Hd94mhZBUGb4Kr6jNel 7U4Xd6Uev9GzjpSZjRcY2Rk7hy4pn7vH6Mw8n6W1j++f3cCFARqnHZzOVHfiTaKo 6YqN9jmzlGeVmpzZgM3/XHAHdyixtnaJxrrL593wMl04DG/w/RpCJc6Y38szj0JK bu5GZIsa51hhsyXPyLMkSU8XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIUVHCIyN U2Fm0Hpx3PjJBwhKBE4wHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi83RTg3MDc5Qzcy MUIxMUVGODE2NTRFNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsocSDANBgkqhkiG9w0BAQsFAAOCAQEAeXt5ExWBb/5WMvqS 9x3Hh141AHaRXJDyodko9+gXaHJQR2BVQVKNaVA/L/rP6VI/efEagJcXriC7KJ/U rJPVVwbcxv/xliy0VE4awCWQO2cCY7pGf2Dk5bpwhAbVEXsgH7J4h64qAXC+vOoy XBpOGkqlcgf0fHtgQAMrDNZNq9DYAC4OksopacWsK49HQdPgw3r8grZMeV2IBBO3 Y8mTcCvWj+UkXRhxAenmKJ/kCubZiS2aSV/NDy2OXt8fdAcCU7Cr3urzkShi7q/l AV/ulYjXk7Zd1dQTsIkzbNQE2zkmz06TQh5ZdV0mUk2yAtvnpx1mQn6dA1Rnb3ET 7Tpf1A== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org