$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa File: EE4C9E82721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: Ew+eGmqU2QtC5dUCrnjbQOUwegMVNFnOrkg4jXdniiY= Subject key identifier: 68:31:49:B6:6D:DB:6E:81:BA:E4:0F:2A:43:34:99:E8:D1:F6:FC:F4 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 1C Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:40 +0000 ROA not before: Fri 13 Sep 2024 21:05:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137850 IP address blocks: 202.28.44.0/24 maxlen: 24 202.28.45.0/24 maxlen: 24 202.28.46.0/24 maxlen: 24 202.28.47.0/24 maxlen: 24 2001:3c8:5505::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a924-ecb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:45:0f:33:7c:3e:fc:11:98:7a:04:73:e4:19: 0d:ba:22:7a:fd:90:06:cc:cf:30:04:7b:42:0a:2d: e2:49:5c:37:f3:3b:46:5d:21:77:8b:f3:95:a2:3b: 76:86:c7:77:74:fd:f5:ea:d0:f0:da:5a:c9:e4:74: ef:d2:d0:8e:e1:b5:e4:13:02:8b:bb:e7:ca:96:37: fd:e3:b4:28:f1:4d:df:de:a0:d4:72:07:05:97:6e: c1:af:95:c6:56:de:41:8b:0b:45:6f:b5:2c:57:51: df:cc:a0:11:fe:a7:68:1c:86:f8:e3:e1:6e:e9:cd: dd:82:d1:70:5b:cc:29:cb:25:2a:05:16:b8:f6:f7: e4:c9:1d:13:37:98:5e:e6:fc:21:0b:9a:20:9b:4f: 9e:d0:89:b9:90:34:c9:14:f4:01:64:1f:a7:d8:36: 6e:85:bf:14:47:63:e5:82:fd:83:b0:35:11:35:c6: 8a:8e:90:2f:d0:19:db:a1:b0:17:d1:62:77:e1:68: a5:79:c9:4d:7b:74:ec:62:ab:3c:1f:60:72:cb:a8: df:48:a0:48:75:be:db:f8:52:13:7e:e5:72:04:88: c7:d7:8c:8a:19:75:9e:a5:0b:01:d9:1d:7b:69:d8: 44:19:2f:1d:69:18:fe:03:cd:7d:f5:ee:fc:5b:f4: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:31:49:B6:6D:DB:6E:81:BA:E4:0F:2A:43:34:99:E8:D1:F6:FC:F4 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.44.0/22 IPv6: 2001:3c8:5505::/48 Signature Algorithm: sha256WithRSAEncryption a2:88:68:e3:f2:b3:11:e7:fc:6f:f3:a2:bd:62:51:ba:7a:99: 19:ed:a3:1b:b0:82:ee:54:41:fe:c3:0f:c6:d3:df:ba:a0:4a: 6e:61:ba:c0:98:68:36:4f:fa:a7:aa:ee:5e:bd:9e:8d:f3:69: a7:5b:f4:9a:1f:ec:73:e9:a2:e4:d4:d6:11:00:1b:fb:ac:a2: 07:97:f7:17:d4:ad:81:98:88:12:74:3e:3d:9d:c2:fd:f3:36: 67:84:29:44:5e:93:4d:94:17:24:2a:4b:51:4f:46:17:e6:d7: c1:69:26:cc:8b:1e:8d:a1:a0:e5:62:f0:3a:01:72:ec:4e:92: ba:fa:66:6e:e8:b9:3a:53:dd:6b:4d:f8:fa:34:ec:4d:c3:25: b8:b7:c7:20:87:cd:ed:0e:e4:7b:e2:8e:b3:be:2b:6b:ab:a4: ad:1b:82:a0:6a:46:79:5c:ca:e6:86:86:16:9d:f1:09:c7:88: 15:03:76:40:ee:c9:34:d6:b6:b4:bd:a7:8a:9e:eb:51:c2:b9: c3:72:3e:d3:99:ac:0c:b7:37:4b:fe:e1:05:18:7f:02:9e:bc: 1e:05:20:3b:d2:f7:36:19:d1:7d:9f:77:2f:46:21:55:8e:69: e7:39:82:6d:45:35:73:45:8f:c3:66:cc:df:c4:25:7a:b9:3b: 0e:83:41:de -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDBaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTI0LWVjYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbRQ8zfD78EZh6BHPkGQ26Inr9kAbMzzAEe0IKLeJJXDfzO0ZdIXeL85WiO3aG x3d0/fXq0PDaWsnkdO/S0I7hteQTAou758qWN/3jtCjxTd/eoNRyBwWXbsGvlcZW 3kGLC0VvtSxXUd/MoBH+p2gchvjj4W7pzd2C0XBbzCnLJSoFFrj29+TJHRM3mF7m /CELmiCbT57QibmQNMkU9AFkH6fYNm6FvxRHY+WC/YOwNRE1xoqOkC/QGduhsBfR YnfhaKV5yU17dOxiqzwfYHLLqN9IoEh1vtv4UhN+5XIEiMfXjIoZdZ6lCwHZHXtp 2EQZLx1pGP4DzX317vxb9IEPAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUaDFJtm3b boG65A8qQzSZ6NH2/PQwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FRTRDOUU4Mjcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAsocLDAPBAIAAjAJAwcAIAEDyFUFMA0GCSqGSIb3DQEBCwUA A4IBAQCiiGjj8rMR5/xv86K9YlG6epkZ7aMbsILuVEH+ww/G09+6oEpuYbrAmGg2 T/qnqu5evZ6N82mnW/SaH+xz6aLk1NYRABv7rKIHl/cX1K2BmIgSdD49ncL98zZn hClEXpNNlBckKktRT0YX5tfBaSbMix6NoaDlYvA6AXLsTpK6+mZu6Lk6U91rTfj6 NOxNwyW4t8cgh83tDuR74o6zvitrq6StG4KgakZ5XMrmhoYWnfEJx4gVA3ZA7sk0 1ra0vaeKnutRwrnDcj7TmawMtzdL/uEFGH8CnrweBSA70vc2GdF9n3cvRiFVjmnn OYJtRTVzRY/DZszfxCV6uTsOg0He -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org