$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa File: EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 4J0u3fFgZ4BqPHihd+1Ov4lN6ImJ4c39Xi5qY8TAhnA= Subject key identifier: 0C:39:BD:C1:75:8E:C5:28:0E:E6:AF:C2:C9:FE:6C:4B:A7:08:4C:6F Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 19 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:37 +0000 ROA not before: Fri 13 Sep 2024 21:05:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132514 IP address blocks: 202.28.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:37 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a920-15bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:34:bc:31:66:92:70:79:f0:d0:87:1d:52:2b: a3:fe:f4:e8:0f:91:6c:ee:7a:8a:ce:8b:55:46:97: c9:6c:33:99:55:85:dd:b7:a5:33:e4:9c:09:2f:c6: f1:9e:81:9b:3b:8c:ac:93:a7:65:22:d8:34:b9:3b: 14:df:30:8d:ed:44:08:57:cb:7e:05:ef:0b:3d:b8: df:9f:05:8e:f7:7c:e4:18:b7:db:88:cf:85:a9:db: 34:54:01:9b:9c:40:93:40:11:4c:6b:3c:84:1b:08: c2:87:fe:bc:a4:3a:11:b5:af:de:64:79:02:45:d3: 94:3f:a2:f3:0c:59:35:53:9f:cc:ee:18:ce:40:c8: 3d:06:07:32:b4:b5:7d:cf:cc:68:a7:87:9b:5a:29: d2:25:e1:50:64:24:61:1d:e9:c6:8a:0a:c8:d3:eb: df:54:43:4a:ba:62:95:89:6d:e4:62:d1:20:b9:be: 2b:6a:bd:a0:2b:50:b9:e7:50:55:21:e3:29:43:ab: 31:11:11:57:ce:58:cb:c1:37:ec:7b:87:4c:7a:f2: 8a:5d:16:5e:a6:d6:65:78:98:d2:b7:43:96:e2:6a: 9c:1a:d3:50:97:f6:a0:d0:18:62:cc:ff:02:1a:53: 06:12:b9:7f:6d:4e:1c:a2:de:88:62:3d:a2:6d:bb: ae:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:39:BD:C1:75:8E:C5:28:0E:E6:AF:C2:C9:FE:6C:4B:A7:08:4C:6F X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.48.0/22 Signature Algorithm: sha256WithRSAEncryption 88:63:8a:6a:57:61:41:d3:dc:f2:79:9c:84:04:84:23:2e:c3: e3:3d:b5:8e:81:3c:b1:e3:05:59:13:79:47:c6:89:d4:7f:1b: c8:e2:be:b6:aa:e5:30:c4:bc:ff:a6:0d:8b:a4:cc:5e:d8:7d: 57:3a:0c:23:cf:60:50:7c:cf:b7:01:48:f8:1e:86:80:1d:fc: a5:d1:64:78:fb:cf:37:22:c9:1b:b8:17:7a:d6:19:d5:c1:54: 84:ba:9a:15:07:47:be:12:ef:aa:57:39:89:a3:d2:02:60:91: b1:61:8c:2d:79:34:d3:81:50:78:ca:39:ae:17:58:1c:dc:11: 94:ef:a6:19:3b:76:d8:f3:0f:50:76:2f:4c:42:f1:da:90:2d: 9f:97:2a:8c:37:4c:38:94:97:ca:40:77:ba:af:c2:51:9e:ea: e2:21:45:76:23:22:f6:fd:8c:25:51:62:55:7e:61:6a:43:92: 0b:46:44:ff:84:9d:43:2a:66:47:38:ce:4a:9b:2d:12:e3:26: dc:2a:1c:06:f2:6b:a6:6b:0f:06:5c:99:7c:d2:4a:44:cb:bd: 67:6a:14:45:8b:93:4b:6f:8e:3b:a0:0b:57:08:2c:67:af:04: 9f:72:5d:a0:c0:13:1f:18:9c:9f:24:33:c8:c9:d4:fb:dc:1f: 67:1b:bc:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1MzdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTIwLTE1YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsNLwxZpJwefDQhx1SK6P+9OgPkWzueorOi1VGl8lsM5lVhd23pTPknAkvxvGe gZs7jKyTp2Ui2DS5OxTfMI3tRAhXy34F7ws9uN+fBY73fOQYt9uIz4Wp2zRUAZuc QJNAEUxrPIQbCMKH/rykOhG1r95keQJF05Q/ovMMWTVTn8zuGM5AyD0GBzK0tX3P zGinh5taKdIl4VBkJGEd6caKCsjT699UQ0q6YpWJbeRi0SC5vitqvaArULnnUFUh 4ylDqzEREVfOWMvBN+x7h0x68opdFl6m1mV4mNK3Q5biapwa01CX9qDQGGLM/wIa UwYSuX9tThyi3ohiPaJtu67JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDDm9wXWO xSgO5q/Cyf5sS6cITG8wHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FQzRFQ0JGQTcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsocMDANBgkqhkiG9w0BAQsFAAOCAQEAiGOKaldhQdPc8nmc hASEIy7D4z21joE8seMFWRN5R8aJ1H8byOK+tqrlMMS8/6YNi6TMXth9VzoMI89g UHzPtwFI+B6GgB38pdFkePvPNyLJG7gXetYZ1cFUhLqaFQdHvhLvqlc5iaPSAmCR sWGMLXk004FQeMo5rhdYHNwRlO+mGTt22PMPUHYvTELx2pAtn5cqjDdMOJSXykB3 uq/CUZ7q4iFFdiMi9v2MJVFiVX5hakOSC0ZE/4SdQypmRzjOSpstEuMm3CocBvJr pmsPBlyZfNJKRMu9Z2oURYuTS2+OO6ALVwgsZ68En3JdoMATHxicnyQzyMnU+9wf Zxu8Cg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org