$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/8ADEE00C71AB11EFB9222180C4F9AE02.roa File: 8ADEE00C71AB11EFB9222180C4F9AE02.roa (raw, json) Hash identifier: P8Q5bX8zdP5CgeaewudPd4NGwvmEuslDWV4vSQC1YFo= Subject key identifier: F2:1D:C7:21:D7:24:0C:1B:2D:58:9E:21:96:8A:FF:59:02:24:52:DB Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/8ADEE00C71AB11EFB9222180C4F9AE02.roa Signing time: Fri 13 Sep 2024 10:36:09 +0000 ROA not before: Fri 13 Sep 2024 10:36:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9546 IP address blocks: 202.28.92.0/22 maxlen: 22 202.28.116.0/24 maxlen: 24 202.28.117.0/24 maxlen: 24 202.28.118.0/24 maxlen: 24 202.28.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 10:36:09 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e41599-275b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3b:31:e4:6d:42:86:e9:fc:8a:e3:35:e7:17: 22:32:4e:7a:af:d1:4a:89:ee:64:83:7e:e8:de:38: 3e:65:55:f4:a0:6c:c1:04:9b:0a:7b:41:4b:7f:5f: 9c:b3:95:aa:f5:d8:c7:26:8a:38:1d:83:79:aa:24: c2:32:45:d9:e5:77:fd:4b:62:56:16:9d:c9:ec:0e: cb:bc:ee:53:bb:c0:e4:cd:01:d5:6d:c5:cb:82:77: 7a:86:17:a1:3b:fb:b6:e7:ef:37:83:5d:fb:e8:4c: 2a:78:db:87:14:22:2d:d0:00:fc:83:0b:1b:87:90: 97:79:d3:aa:9f:d0:46:9a:ca:3d:f0:98:24:db:ad: e4:5d:08:ae:89:b7:26:e5:2f:5a:23:29:0d:84:99: 38:c9:66:2d:3f:0d:85:b6:86:5b:4a:fe:3c:02:a8: d0:e7:45:43:a4:c7:5a:89:7d:02:e2:70:41:bf:fd: 01:a3:56:03:83:c0:41:98:18:cf:b5:d9:52:d5:34: 2c:55:05:c4:f4:2c:98:78:77:f3:27:53:fa:3c:72: be:03:a5:e7:e8:ed:f8:c3:ad:ce:f1:c4:18:a2:68: e0:e1:ba:ae:c6:0c:24:26:23:66:07:5e:09:a3:3f: a0:80:a4:5c:79:9b:f8:af:43:50:f8:da:15:4b:ab: 4e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1D:C7:21:D7:24:0C:1B:2D:58:9E:21:96:8A:FF:59:02:24:52:DB X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/8ADEE00C71AB11EFB9222180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.92.0/22 202.28.116.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:14:68:34:cc:7d:58:52:3c:f3:ca:c8:d3:34:dc:1b:8d:33: 5a:13:7c:69:54:7b:f0:64:9c:12:47:c3:48:18:c8:43:02:b3: ad:1c:25:a9:d7:77:d1:22:a2:5d:73:18:2f:95:b8:0c:36:fa: 4b:56:6d:c2:8d:42:1b:c4:5e:c3:65:3d:84:c5:cc:de:30:9a: e4:31:e4:30:c8:4f:dc:3a:99:20:17:f2:76:6e:ac:28:1b:55: d0:3a:4a:55:67:87:d0:d8:2e:67:1e:3c:d6:33:24:4b:22:75: 4b:ca:71:2b:98:5d:a8:84:ce:88:c8:44:db:3c:02:73:b6:78: 4c:b1:2a:88:f4:40:93:20:e5:9e:a7:f0:37:af:8e:ff:b7:a2: d0:c8:55:33:4d:f0:12:14:ce:3c:be:1d:ec:d9:6b:54:f8:9c: 6a:7e:f7:cd:03:d9:d7:0c:4f:12:75:be:ce:10:17:fb:48:b1: 38:4b:22:b5:0c:92:cb:13:90:9a:60:f2:ce:9f:59:11:30:ec: e1:35:d9:5c:c4:03:c0:86:5e:16:bd:27:16:c2:93:5d:e6:9b: f0:41:26:fb:04:12:87:a6:af:b6:9a:0e:ea:99:b2:c0:85:5e: c0:d1:30:08:30:62:23:e0:c6:aa:95:03:d6:e2:b4:37:7d:cd: cb:db:2d:58 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMxMDM2MDlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxNTk5LTI3NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbOzHkbUKG6fyK4zXnFyIyTnqv0UqJ7mSDfujeOD5lVfSgbMEEmwp7QUt/X5yz lar12Mcmijgdg3mqJMIyRdnld/1LYlYWncnsDsu87lO7wOTNAdVtxcuCd3qGF6E7 +7bn7zeDXfvoTCp424cUIi3QAPyDCxuHkJd506qf0Eaayj3wmCTbreRdCK6Jtybl L1ojKQ2EmTjJZi0/DYW2hltK/jwCqNDnRUOkx1qJfQLicEG//QGjVgODwEGYGM+1 2VLVNCxVBcT0LJh4d/MnU/o8cr4Dpefo7fjDrc7xxBiiaODhuq7GDCQmI2YHXgmj P6CApFx5m/ivQ1D42hVLq07lAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU8h3HIdck DBstWJ4hlor/WQIkUtswHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi84QURFRTAwQzcx QUIxMUVGQjkyMjIxODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAsocXAMEAsocdDANBgkqhkiG9w0BAQsFAAOCAQEAHhRoNMx9 WFI888rI0zTcG40zWhN8aVR78GScEkfDSBjIQwKzrRwlqdd30SKiXXMYL5W4DDb6 S1Ztwo1CG8Rew2U9hMXM3jCa5DHkMMhP3DqZIBfydm6sKBtV0DpKVWeH0NguZx48 1jMkSyJ1S8pxK5hdqITOiMhE2zwCc7Z4TLEqiPRAkyDlnqfwN6+O/7ei0MhVM03w EhTOPL4d7NlrVPican73zQPZ1wxPEnW+zhAX+0ixOEsitQySyxOQmmDyzp9ZETDs 4TXZXMQDwIZeFr0nFsKTXeab8EEm+wQSh6avtpoO6pmywIVewNEwCDBiI+DGqpUD 1uK0N33Ny9stWA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org