$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F000862E721A11EFBDE87567C4F9AE02.roa File: F000862E721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: mK8MMHTkWx03ulpOz1RB1Wvmis32Rd8sRbRb4u5ADFk= Subject key identifier: 5C:C5:22:CB:C1:71:47:21:14:88:B4:96:FE:A3:10:F8:DE:A2:2A:0C Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: CC Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F000862E721A11EFBDE87567C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:22 +0000 ROA not before: Sat 21 Dec 2024 05:50:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55545 IP address blocks: 202.28.40.0/24 maxlen: 24 202.28.41.0/24 maxlen: 24 202.28.42.0/24 maxlen: 24 202.28.43.0/24 maxlen: 24 2001:3c8:c301::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:22 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766571d-de9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:80:3f:97:12:22:30:5b:39:52:79:1a:5d:31: 8f:5a:f6:d2:41:2c:31:e4:32:2b:3a:99:2c:57:a7: 72:16:a5:54:3e:4e:c2:22:a1:a7:c8:9b:01:e3:dd: 3a:b0:3a:4f:b8:a8:48:4d:0e:1f:bc:ec:5c:0e:b0: de:cf:e4:b0:98:c2:d5:54:9e:2b:dc:fe:67:6b:22: 3e:ef:2c:0f:79:2b:b0:4f:56:8d:64:b5:e2:23:22: 20:6f:0e:ef:9a:f8:2f:7a:b4:ed:83:43:a8:a0:9a: 23:08:8a:c7:b2:e3:bb:2f:11:b1:92:dc:03:53:76: 67:4a:d1:db:10:c9:12:88:41:e8:c3:46:c2:c4:8c: a4:ed:f4:45:11:cb:d5:3d:2c:bb:39:40:c4:7d:98: 23:41:4f:ad:58:4e:18:c6:dd:ba:3e:08:b9:cf:e0: 07:2c:9d:7d:78:e9:32:8c:af:08:93:36:24:59:19: 48:fd:60:64:22:6c:da:2d:4a:f7:91:f7:16:d1:7f: 4c:12:17:ba:a1:15:d6:16:99:5e:5b:58:09:42:7b: 3a:b4:8c:95:ec:02:40:54:db:b9:86:43:28:9b:f7: 0f:44:0e:c7:8f:c9:91:bc:95:6c:0b:75:67:bd:70: cb:f4:53:8d:83:7a:f5:4c:12:6d:57:fd:98:7b:f4: a8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C5:22:CB:C1:71:47:21:14:88:B4:96:FE:A3:10:F8:DE:A2:2A:0C X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F000862E721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.40.0/22 IPv6: 2001:3c8:c301::/48 Signature Algorithm: sha256WithRSAEncryption 18:07:13:c3:1a:98:93:6d:4e:81:ef:53:e8:f3:71:a6:a4:46: 64:fc:e0:c0:aa:22:06:bf:97:a5:d8:b6:4e:37:82:bb:5b:1b: d2:35:51:1a:6b:55:dc:fd:6a:8e:e2:d4:62:d8:1e:ce:ad:56: c3:a3:f4:81:2f:34:a0:3e:5f:8d:1d:14:21:6f:79:3e:9a:51: 8d:7f:f2:c7:27:a1:5e:ca:28:d2:62:c6:2e:6e:9c:f9:57:57: 79:16:87:a0:0a:8a:9e:dd:17:2e:2f:26:1c:a3:8c:82:df:1a: dc:d2:a2:bc:89:10:f1:f0:ae:e7:02:01:0a:95:ac:f9:67:dd: e7:02:54:4b:b8:27:59:00:17:03:e5:c4:6d:77:2f:ea:67:07: e2:c1:a4:a0:3a:32:18:fe:2d:f2:11:a9:3d:b7:21:00:89:33: a9:ae:8f:73:fb:1b:7b:3a:fa:b3:42:ee:8f:2c:f6:ac:a4:b4: 08:f6:44:f2:de:8a:72:88:d1:ef:e9:23:b6:7f:67:4e:da:34: be:f2:95:31:c9:13:ea:9e:d9:5f:af:fd:bc:71:b9:fb:10:03: b2:a6:1d:8f:b8:88:d5:e7:fc:56:7b:a8:86:06:09:bd:6a:f5: 8f:07:17:f3:ad:78:70:94:ad:9d:38:86:25:df:9e:5a:52:75: 14:06:34:82 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxZC1kZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9oA/lxIiMFs5UnkaXTGPWvbSQSwx5DIrOpksV6dyFqVUPk7CIqGnyJsB4906 sDpPuKhITQ4fvOxcDrDez+SwmMLVVJ4r3P5nayI+7ywPeSuwT1aNZLXiIyIgbw7v mvgverTtg0OooJojCIrHsuO7LxGxktwDU3ZnStHbEMkSiEHow0bCxIyk7fRFEcvV PSy7OUDEfZgjQU+tWE4Yxt26Pgi5z+AHLJ19eOkyjK8IkzYkWRlI/WBkImzaLUr3 kfcW0X9MEhe6oRXWFpleW1gJQns6tIyV7AJAVNu5hkMom/cPRA7Hj8mRvJVsC3Vn vXDL9FONg3r1TBJtV/2Ye/SokQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFzFIsvB cUchFIi0lv6jEPjeoioMMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjAwMDg2MkU3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKHCgwDwQCAAIwCQMHACABA8jDATANBgkqhkiG9w0BAQsF AAOCAQEAGAcTwxqYk21Oge9T6PNxpqRGZPzgwKoiBr+Xpdi2TjeCu1sb0jVRGmtV 3P1qjuLUYtgezq1Ww6P0gS80oD5fjR0UIW95PppRjX/yxyehXsoo0mLGLm6c+VdX eRaHoAqKnt0XLi8mHKOMgt8a3NKivIkQ8fCu5wIBCpWs+Wfd5wJUS7gnWQAXA+XE bXcv6mcH4sGkoDoyGP4t8hGpPbchAIkzqa6Pc/sbezr6s0Lujyz2rKS0CPZE8t6K cojR7+kjtn9nTto0vvKVMckT6p7ZX6/9vHG5+xADsqYdj7iI1ef8VnuohgYJvWr1 jwcX8614cJStnTiGJd+eWlJ1FAY0gg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:09 2025 by rpki-client