$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa File: C3ACCF42721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: n5RRvSwIxd6IRyvVCp2I3MNqkKL6RtTxBvk9vhwJT0c= Subject key identifier: 27:7A:BF:76:96:2C:17:86:58:11:39:ED:54:EA:22:A6:46:BA:BE:44 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 31 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:48 +0000 ROA not before: Fri 13 Sep 2024 21:18:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137394 IP address blocks: 202.28.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac37-bc3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:eb:f2:9c:e1:9d:3f:e6:19:b6:ca:43:92: 68:db:6f:f9:c4:8d:82:cf:03:93:12:8f:dd:e9:77: 78:c2:c3:8e:d6:86:93:74:e5:db:16:17:4e:10:74: a4:62:db:4c:87:41:45:ae:7e:4f:59:35:2f:3f:64: fb:ec:9e:7d:c1:95:08:32:71:c0:df:c5:dd:f3:95: 01:b6:e9:4d:df:56:11:ce:f0:d7:3a:82:bb:a7:59: 5f:36:41:60:ba:71:fb:6c:31:bc:dd:34:bd:f1:93: 7b:4d:d8:97:64:a2:00:9d:50:3f:f9:bb:c5:36:00: f6:3a:92:a5:82:6d:4f:41:f3:f6:8e:28:9a:37:49: 5b:f9:65:b6:e8:99:25:9b:f7:f7:19:e2:e6:f8:30: c1:2f:b8:b6:30:da:2d:0f:f5:dd:3d:e4:9a:a9:1e: 00:0d:00:cc:63:32:b3:d1:da:50:a8:d9:38:df:a2: c2:be:7e:39:0c:c3:23:69:8d:29:9f:6e:f0:78:e5: f7:41:fd:da:9b:c4:ef:7d:16:aa:4e:f5:f1:45:f9: 2b:ae:f0:1f:ef:c2:dd:e9:90:5c:84:82:f3:ad:a8: 5b:34:cb:fa:53:2b:ef:05:de:b2:4b:93:37:ad:e9: a5:73:f6:85:d8:02:6b:45:58:91:45:28:01:52:f8: 19:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7A:BF:76:96:2C:17:86:58:11:39:ED:54:EA:22:A6:46:BA:BE:44 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C3ACCF42721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.54.0/24 Signature Algorithm: sha256WithRSAEncryption 06:94:72:37:c1:89:0f:d2:97:8e:56:73:e6:b4:92:de:58:eb: 7d:64:aa:dc:34:16:95:17:6b:0b:d1:86:9c:b2:14:8b:08:29: 6d:9e:b1:fa:ad:df:68:e4:cd:a3:1e:11:41:ed:84:65:02:ec: 30:39:cc:8d:06:04:e8:94:c7:35:eb:2a:69:19:84:9a:47:07: d8:3a:e4:ae:ea:86:9d:b8:9c:06:65:cf:1a:79:9d:ad:d9:35: ca:55:94:9d:9f:e6:eb:9b:90:11:6e:e8:31:d5:f2:11:a5:0d: a1:7b:04:84:9c:5a:7e:29:48:e8:8a:71:e5:4b:6f:b2:73:75: 05:1e:40:a4:97:0b:a3:60:71:59:0b:ab:8b:79:1b:7c:ae:a0: 87:d0:2d:a7:41:ea:84:57:9b:20:a5:d6:a6:b8:23:8d:d3:ac: cc:c7:ca:d9:d0:e2:88:6d:70:2a:d2:96:2a:b3:9c:66:3c:ea: a6:8f:5b:c5:9f:11:f7:50:35:f3:89:90:75:07:b2:0c:fd:5b: c1:d8:3f:46:b9:c0:91:77:46:2f:82:7e:8c:50:13:f9:ea:8d: 7c:95:aa:cc:08:fc:43:ef:4d:04:74:91:58:fc:64:7c:ef:0c: 67:fd:c2:0f:ad:06:ed:73:e6:7b:ac:f9:42:8e:d3:29:4e:c1: 9b:a4:4b:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4NDhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzM3LWJjM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCeevynOGdP+YZtspDkmjbb/nEjYLPA5MSj93pd3jCw47WhpN05dsWF04QdKRi 20yHQUWufk9ZNS8/ZPvsnn3BlQgyccDfxd3zlQG26U3fVhHO8Nc6grunWV82QWC6 cftsMbzdNL3xk3tN2JdkogCdUD/5u8U2APY6kqWCbU9B8/aOKJo3SVv5ZbbomSWb 9/cZ4ub4MMEvuLYw2i0P9d095JqpHgANAMxjMrPR2lCo2TjfosK+fjkMwyNpjSmf bvB45fdB/dqbxO99FqpO9fFF+Suu8B/vwt3pkFyEgvOtqFs0y/pTK+8F3rJLkzet 6aVz9oXYAmtFWJFFKAFS+BlrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ3q/dpYs F4ZYETntVOoipka6vkQwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9DM0FDQ0Y0Mjcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMocNjANBgkqhkiG9w0BAQsFAAOCAQEABpRyN8GJD9KXjlZz 5rSS3ljrfWSq3DQWlRdrC9GGnLIUiwgpbZ6x+q3faOTNox4RQe2EZQLsMDnMjQYE 6JTHNesqaRmEmkcH2DrkruqGnbicBmXPGnmdrdk1ylWUnZ/m65uQEW7oMdXyEaUN oXsEhJxafilI6Ipx5UtvsnN1BR5ApJcLo2BxWQuri3kbfK6gh9Atp0HqhFebIKXW prgjjdOszMfK2dDiiG1wKtKWKrOcZjzqpo9bxZ8R91A184mQdQeyDP1bwdg/RrnA kXdGL4J+jFAT+eqNfJWqzAj8Q+9NBHSRWPxkfO8MZ/3CD60G7XPme6z5Qo7TKU7B m6RLlA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org