$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa File: EE4C9E82721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 0uvqsazMy++HR/w8cZBG+QAIQJq5pTvyvHTiJMq6OCQ= Subject key identifier: E4:41:A1:37:73:7D:40:31:00:2F:F6:84:60:B1:9A:8C:57:2C:9C:35 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: AE Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:50 +0000 ROA not before: Sat 21 Dec 2024 05:49:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137850 IP address blocks: 202.28.44.0/24 maxlen: 24 202.28.45.0/24 maxlen: 24 202.28.46.0/24 maxlen: 24 202.28.47.0/24 maxlen: 24 2001:3c8:5505::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:50 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656fe-be25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:88:09:87:43:d8:8a:82:ca:a8:f7:55:2b:f9: 4b:24:c5:1e:8c:22:5a:33:be:85:ec:12:84:f6:79: 7c:4f:13:1c:15:ca:5f:76:2f:52:cc:1c:a0:54:f1: 7d:64:eb:45:10:f7:87:45:be:84:8a:27:ab:be:5c: 2c:de:6b:b2:0e:62:ce:9e:51:38:d1:8e:7f:ed:24: eb:c5:de:ad:cf:62:6e:7c:4c:cf:a3:07:e1:37:53: 15:ed:f6:93:16:c9:cc:73:87:94:38:80:b9:c7:2a: 9e:b3:f9:d2:72:09:17:64:83:a4:75:a8:e1:9b:84: 16:72:0b:03:3e:c5:20:6e:61:59:fb:35:11:2c:28: 91:5e:da:dd:f4:ac:31:52:12:6b:95:b4:17:25:06: 79:c9:81:cd:df:71:e2:d3:54:5d:d1:aa:c7:9d:ce: 60:97:38:34:4f:8a:fe:4b:c2:c4:82:aa:98:95:05: 9d:32:d4:0f:98:4b:cf:a1:40:40:db:ae:a5:26:c3: 3e:bf:c3:a6:6d:a3:3d:bd:97:f5:44:e8:38:c8:83: 42:5e:68:2a:1e:7a:37:a0:13:0f:b0:b0:6d:ad:5e: 28:03:74:22:ba:b2:30:a6:48:e2:89:3b:c3:4f:f4: 1d:2c:bc:de:41:99:9b:5b:6d:20:36:17:01:47:09: 19:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:41:A1:37:73:7D:40:31:00:2F:F6:84:60:B1:9A:8C:57:2C:9C:35 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EE4C9E82721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.44.0/22 IPv6: 2001:3c8:5505::/48 Signature Algorithm: sha256WithRSAEncryption 07:a9:3a:f9:73:71:fc:0e:c3:98:70:de:17:0f:da:f2:45:a0: d6:07:7b:12:fa:21:cb:51:d1:4b:65:df:8e:f8:bf:5c:ef:73: 60:b8:3b:e6:79:e5:ed:1f:c9:e1:5d:3f:de:21:b7:00:ea:4c: 29:75:00:83:a7:6e:35:01:f3:13:a8:2a:58:f0:94:02:23:9a: 85:bc:01:d8:c5:59:e9:e7:68:6c:1b:73:d2:e6:3d:24:4d:ac: 02:3e:53:9a:6a:c7:b1:3a:04:0f:ce:ab:17:34:8c:0a:06:ca: c7:29:3d:10:3d:1c:8f:2a:e2:cd:06:13:f8:e8:5f:53:e1:fd: 36:ba:92:2a:a2:12:89:69:75:a4:b2:cc:41:f1:b4:66:63:31: 48:b0:71:45:cd:76:81:f9:10:65:d6:6d:8e:ae:83:5b:40:1e: 35:61:25:d9:c1:18:e9:70:bf:47:ec:74:ab:e9:cc:2f:45:08: ae:8d:19:c6:2a:cd:4f:18:a1:4a:ac:7f:39:f5:1a:71:8d:bf: 1a:d1:7d:b7:db:13:47:b2:97:82:94:20:cb:1d:1e:c5:ce:8d: a3:a5:9a:e9:a7:c9:b7:49:d3:91:75:d0:dd:17:96:09:1a:83: f6:d9:f1:d6:00:06:fd:64:d3:74:71:04:e4:71:80:93:f3:70: 41:7d:06:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTUwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmZS1iZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmogJh0PYioLKqPdVK/lLJMUejCJaM76F7BKE9nl8TxMcFcpfdi9SzBygVPF9 ZOtFEPeHRb6Eiiervlws3muyDmLOnlE40Y5/7STrxd6tz2JufEzPowfhN1MV7faT FsnMc4eUOIC5xyqes/nScgkXZIOkdajhm4QWcgsDPsUgbmFZ+zURLCiRXtrd9Kwx UhJrlbQXJQZ5yYHN33Hi01Rd0arHnc5glzg0T4r+S8LEgqqYlQWdMtQPmEvPoUBA 266lJsM+v8OmbaM9vZf1ROg4yINCXmgqHno3oBMPsLBtrV4oA3QiurIwpkjiiTvD T/QdLLzeQZmbW20gNhcBRwkZyQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFORBoTdz fUAxAC/2hGCxmoxXLJw1MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUU0QzlFODI3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKHCwwDwQCAAIwCQMHACABA8hVBTANBgkqhkiG9w0BAQsF AAOCAQEAB6k6+XNx/A7DmHDeFw/a8kWg1gd7Evohy1HRS2Xfjvi/XO9zYLg75nnl 7R/J4V0/3iG3AOpMKXUAg6duNQHzE6gqWPCUAiOahbwB2MVZ6edobBtz0uY9JE2s Aj5TmmrHsToED86rFzSMCgbKxyk9ED0cjyrizQYT+OhfU+H9NrqSKqISiWl1pLLM QfG0ZmMxSLBxRc12gfkQZdZtjq6DW0AeNWEl2cEY6XC/R+x0q+nML0UIro0ZxirN TxihSqx/OfUacY2/GtF9t9sTR7KXgpQgyx0exc6No6Wa6afJt0nTkXXQ3ReWCRqD 9tnx1gAG/WTTdHEE5HGAk/NwQX0GFA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:57:54 2025 by rpki-client