$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa File: EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 4/471tf16wMLgve7r7kgYDOh7qV0/Avi2saxdTIRLQs= Subject key identifier: 65:D2:C4:89:DE:48:A3:8E:7D:A3:17:BF:44:06:81:18:AE:34:75:A3 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: A0 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:38 +0000 ROA not before: Sat 21 Dec 2024 05:49:38 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132514 IP address blocks: 202.28.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:38 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656f1-5407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:37:76:4f:0d:33:4c:32:f7:69:2d:8d:0e:52: e0:ea:e6:14:27:6a:20:1e:d3:85:7b:39:af:27:6d: 0a:47:b6:d2:34:bd:8d:c6:05:a4:8b:19:b1:f7:65: c9:45:bf:23:15:08:ce:f7:b1:38:79:32:e1:f4:9b: 38:25:fa:5f:03:9a:f1:c5:7e:62:66:3c:67:6a:74: 5f:fb:95:bb:7b:aa:a7:a4:2c:3f:28:1e:07:20:46: 0b:b0:95:e6:b0:ad:6c:4c:8b:96:a1:be:35:21:92: d8:3a:04:cd:92:77:a2:a3:08:d3:93:3d:77:79:4d: a2:02:2d:cc:f1:84:4d:52:ae:f3:e0:a1:67:44:f3: da:4d:e3:19:55:45:1a:01:26:89:52:74:d4:03:12: cb:7b:c5:f7:8f:c7:57:2d:fe:f4:f4:fa:50:cd:e7: 7f:19:39:a3:24:1a:58:f4:e9:9e:2a:fc:2c:65:7f: dc:bf:18:e9:67:11:f7:af:64:94:cb:87:de:d0:ff: 7a:0d:db:6c:3e:ba:0f:5c:32:a4:09:f4:f8:e4:b7: 6d:b7:1e:df:9b:56:de:5a:2a:cd:e4:6e:9d:d9:bf: 2f:d0:bc:65:af:6a:7f:e3:11:ac:18:f6:a3:e3:10: 4c:45:3b:86:b1:62:40:62:dd:e0:4c:1d:cf:12:82: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D2:C4:89:DE:48:A3:8E:7D:A3:17:BF:44:06:81:18:AE:34:75:A3 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC4ECBFA721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.48.0/22 Signature Algorithm: sha256WithRSAEncryption 90:7d:2e:cd:80:4e:c4:3e:25:89:d5:19:c7:bd:c9:09:3a:58: aa:82:37:58:27:3e:0b:65:c7:56:24:d4:91:de:36:da:48:89: b8:36:0a:4b:8e:78:ee:23:41:e0:13:79:65:17:d5:07:0b:e5: 30:b9:65:ca:8f:32:3f:90:ce:c5:85:0b:9a:9f:57:6a:16:c3: 12:96:82:7b:5f:46:77:92:32:87:83:14:76:f9:7d:20:3e:e7: a9:e7:4c:50:dc:a2:5c:7d:56:66:f6:84:b0:d5:d8:91:7c:e9: 46:4c:03:96:ae:7d:55:a6:ce:a7:be:69:4a:0a:44:2e:0f:13: 99:10:85:ea:49:13:0a:00:4d:4a:92:ee:99:55:47:f7:30:dd: 64:41:f3:41:08:54:25:4e:ae:ca:33:44:e5:7e:e4:36:54:e3: 42:04:e1:76:70:59:fb:55:18:31:e2:bc:3c:a8:71:a4:77:d8: 95:cc:c4:49:9c:2d:71:c3:50:0f:fc:bb:57:2b:96:97:c4:47: d9:63:c0:4d:68:d1:1b:88:ec:16:6b:ac:1d:23:75:8c:e9:d3: f8:f7:5c:2b:d8:5c:1d:ec:ec:77:3a:16:e8:d1:e3:89:9a:0c: db:6e:31:66:04:de:05:17:ae:12:c0:53:2c:d1:f9:b1:e5:74: b3:a2:f3:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTM4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmMS01NDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDd2Tw0zTDL3aS2NDlLg6uYUJ2ogHtOFezmvJ20KR7bSNL2NxgWkixmx92XJ Rb8jFQjO97E4eTLh9Js4JfpfA5rxxX5iZjxnanRf+5W7e6qnpCw/KB4HIEYLsJXm sK1sTIuWob41IZLYOgTNkneiowjTkz13eU2iAi3M8YRNUq7z4KFnRPPaTeMZVUUa ASaJUnTUAxLLe8X3j8dXLf709PpQzed/GTmjJBpY9OmeKvwsZX/cvxjpZxH3r2SU y4fe0P96DdtsProPXDKkCfT45Ldttx7fm1beWirN5G6d2b8v0Lxlr2p/4xGsGPaj 4xBMRTuGsWJAYt3gTB3PEoIhXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGXSxIne SKOOfaMXv0QGgRiuNHWjMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUM0RUNCRkE3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKHDAwDQYJKoZIhvcNAQELBQADggEBAJB9Ls2ATsQ+JYnV Gce9yQk6WKqCN1gnPgtlx1Yk1JHeNtpIibg2CkuOeO4jQeATeWUX1QcL5TC5ZcqP Mj+QzsWFC5qfV2oWwxKWgntfRneSMoeDFHb5fSA+56nnTFDcolx9Vmb2hLDV2JF8 6UZMA5aufVWmzqe+aUoKRC4PE5kQhepJEwoATUqS7plVR/cw3WRB80EIVCVOrsoz ROV+5DZU40IE4XZwWftVGDHivDyocaR32JXMxEmcLXHDUA/8u1crlpfER9ljwE1o 0RuI7BZrrB0jdYzp0/j3XCvYXB3s7Hc6FujR44maDNtuMWYE3gUXrhLAUyzR+bHl dLOi87I= -----END CERTIFICATE-----Generated at Sat Apr 5 01:44:59 2025 by rpki-client