$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa File: C3ACCF42721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: B39zHkwKeCbuzk/8xLQzkNdhPQvRQxWgq2aqTvmrlEM= Subject key identifier: C2:62:85:5A:E1:BC:2A:BB:28:1E:6E:99:7D:69:5A:19:30:3D:1C:5A Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: AC Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:48 +0000 ROA not before: Sat 21 Dec 2024 05:49:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137394 IP address blocks: 202.28.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:48 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656fc-27b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:f1:c4:a9:8b:84:ac:9d:85:96:82:a8:bb: cb:a8:a2:a1:60:0d:13:7e:65:34:27:f1:c0:ce:9e: 77:85:56:85:6d:d4:ea:71:63:94:02:cd:9b:3c:2e: ec:21:50:cd:98:63:2d:d4:e9:e0:94:63:ca:7c:c0: 0c:10:b9:0c:59:3e:d4:d3:1b:89:e4:3a:19:2a:3e: eb:de:b2:6e:21:fe:29:83:bf:3b:a5:09:22:5b:ea: 37:d2:59:de:73:a6:34:6c:d6:98:73:4f:56:7e:c7: c2:54:0f:69:91:e9:db:c1:33:e6:84:f8:8e:3e:1e: 7a:87:e7:dd:50:ed:77:1d:2d:27:29:02:80:c3:45: f8:ce:51:16:9d:9e:80:26:44:2d:96:ce:dc:a2:b0: f1:49:bd:91:18:c4:05:55:33:13:8b:ea:2d:a7:65: 91:60:f7:db:06:d4:9f:99:e7:c4:2b:04:f2:ce:9b: 92:cd:c2:97:17:3b:d9:36:05:be:b5:ad:f1:35:6f: 0d:26:88:0a:07:99:a8:3e:e3:dd:e6:65:4b:fa:c3: d2:e8:e3:ad:34:9a:01:55:fd:3d:bb:26:a1:aa:bd: 76:89:ab:37:e8:41:0f:23:9e:92:68:ee:3e:e8:4b: ba:fa:ec:32:bb:2b:97:8d:93:b9:c7:88:d2:3b:0b: ac:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:62:85:5A:E1:BC:2A:BB:28:1E:6E:99:7D:69:5A:19:30:3D:1C:5A X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.54.0/24 Signature Algorithm: sha256WithRSAEncryption 33:03:72:73:41:cf:3d:6e:2d:82:36:d5:c2:a3:cd:bb:55:4f: 4f:f0:d5:0c:3f:1e:aa:4b:30:9b:98:c9:b6:3e:ab:77:60:5e: 71:3f:0d:3d:1b:7e:c4:4b:84:fc:2d:b3:2e:79:19:1e:14:ca: 5c:3f:8e:08:52:fc:c9:aa:5c:8b:75:d3:15:4b:2b:18:7b:d1: 5b:71:67:77:42:c1:d0:9c:93:8f:b2:42:e8:cd:a2:e4:bf:f1: 3b:c2:ec:7d:05:ca:31:1d:b7:9c:43:e7:fb:d8:1a:14:9b:ff: c7:24:61:16:35:44:ac:3d:3a:50:a2:63:7b:86:a4:db:1d:a9: 58:17:24:0f:60:5d:a0:0d:2d:c9:4c:ef:6b:af:a0:a4:89:33: 1f:10:b5:45:b3:83:18:ff:89:1d:78:f4:c7:11:62:72:41:42: 0a:89:f1:c2:e9:3a:cc:92:2e:77:6d:b9:eb:76:d0:69:1e:b0: 01:3a:a6:b0:cf:e4:7e:10:50:df:f8:56:3b:e6:45:ff:65:cb: 14:66:79:76:03:ff:ab:72:28:8c:74:d9:bd:90:69:7b:66:9d: b1:0f:74:0b:46:bd:61:6f:75:88:a6:5d:6b:c5:e3:fc:71:9a: 2b:b0:53:46:2c:57:d3:f5:9c:65:19:f8:b4:83:77:93:07:75: 96:72:d3:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmYy0yN2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiXxxKmLhKydhZaCqLvLqKKhYA0TfmU0J/HAzp53hVaFbdTqcWOUAs2bPC7s IVDNmGMt1OnglGPKfMAMELkMWT7U0xuJ5DoZKj7r3rJuIf4pg787pQkiW+o30lne c6Y0bNaYc09WfsfCVA9pkenbwTPmhPiOPh56h+fdUO13HS0nKQKAw0X4zlEWnZ6A JkQtls7corDxSb2RGMQFVTMTi+otp2WRYPfbBtSfmefEKwTyzpuSzcKXFzvZNgW+ ta3xNW8NJogKB5moPuPd5mVL+sPS6OOtNJoBVf09uyahqr12ias36EEPI56SaO4+ 6Eu6+uwyuyuXjZO5x4jSOwusSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMJihVrh vCq7KB5umX1pWhkwPRxaMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzNBQ0NGNDI3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHDYwDQYJKoZIhvcNAQELBQADggEBADMDcnNBzz1uLYI2 1cKjzbtVT0/w1Qw/HqpLMJuYybY+q3dgXnE/DT0bfsRLhPwtsy55GR4Uylw/jghS /MmqXIt10xVLKxh70VtxZ3dCwdCck4+yQujNouS/8TvC7H0FyjEdt5xD5/vYGhSb /8ckYRY1RKw9OlCiY3uGpNsdqVgXJA9gXaANLclM72uvoKSJMx8QtUWzgxj/iR14 9McRYnJBQgqJ8cLpOsySLndtuet20GkesAE6prDP5H4QUN/4VjvmRf9lyxRmeXYD /6tyKIx02b2QaXtmnbEPdAtGvWFvdYimXWvF4/xxmiuwU0YsV9P1nGUZ+LSDd5MH dZZy01s= -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:53 2025 by rpki-client