$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa File: F2D69B1A721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 3DkQKNI/1/fQXqZeVlj1wHmV3BzeGtfxd/BAbiI/yvc= Subject key identifier: 5C:04:D2:2A:9A:8D:D5:07:43:81:94:EF:43:9B:9C:72:94:EB:FB:FC Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 23 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:48 +0000 ROA not before: Fri 13 Sep 2024 21:05:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149800 IP address blocks: 202.28.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a92b-2a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:7b:8a:24:dc:d5:40:2a:bb:8f:1b:ac:c5: dd:af:be:98:6b:e0:33:57:ef:57:52:cf:98:43:94: a8:51:23:32:10:3a:2f:89:3d:73:9c:af:78:da:30: 18:42:0b:0a:8c:17:ea:5c:06:af:e7:e2:14:13:c7: 95:6e:8b:5f:5e:35:f7:0d:5c:45:1f:3a:78:fa:f7: fc:d8:13:ca:0c:05:c3:17:af:41:98:10:1b:1c:1a: 57:64:98:19:37:d6:0b:bc:6c:da:97:49:b6:58:d1: 60:09:3b:98:17:18:a3:17:af:97:03:18:86:f2:2b: ee:6a:e0:14:df:c4:04:cd:fa:35:90:10:93:ca:a4: e9:77:0d:34:a9:d3:88:b3:a0:4d:be:f7:4d:2b:e3: a1:0b:0d:e3:ff:d5:58:49:bc:36:e0:16:a2:79:c7: 4a:91:19:df:38:6e:dc:ed:a0:68:92:26:69:1a:06: fc:d6:f4:76:ff:05:d6:a7:b9:4e:44:99:19:ec:96: 5f:19:db:4f:f1:7b:74:85:26:70:32:dd:63:4e:cb: d5:dd:43:d9:4c:17:1a:cc:b9:87:ea:ca:93:a1:9d: 66:fd:ea:f8:c3:0c:e6:f8:52:9a:d4:6f:39:fc:60: 66:04:24:6e:92:e7:f4:68:26:9b:bd:cb:3e:27:ab: 24:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:04:D2:2A:9A:8D:D5:07:43:81:94:EF:43:9B:9C:72:94:EB:FB:FC X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.80.0/23 Signature Algorithm: sha256WithRSAEncryption 64:d3:19:12:85:92:60:3a:50:69:76:8e:d1:f1:49:1d:c1:26: 9c:72:95:a1:aa:a5:60:a8:16:1c:14:a5:2f:02:6a:ff:96:0e: bb:37:f1:cc:1d:0a:90:bc:d3:8a:78:97:e9:16:5e:1f:cb:8c: 33:38:43:2a:76:82:45:05:24:03:7d:38:01:d3:eb:b4:3a:b4: c8:3b:f6:5d:ae:47:d1:aa:37:4c:37:a7:7a:e9:52:64:2a:24: b6:37:c7:f4:3f:7a:85:25:95:b7:a5:54:2e:94:6e:23:c2:07: 77:8a:84:8c:de:eb:a4:11:92:cf:5e:7e:06:48:4c:9a:bd:c4: 14:8e:4b:55:a7:eb:5e:a4:e0:d3:86:a1:aa:22:5c:32:4b:ab: c3:f5:d2:d6:94:26:09:1d:7a:a0:6d:2f:7f:33:f1:4f:a0:e6: 75:49:6b:89:66:14:08:ec:74:d2:48:20:1f:e4:48:29:be:1f: 92:b8:79:c3:11:06:f8:19:0e:d5:3f:e9:b7:76:10:76:98:31: ea:9a:22:d0:03:70:cc:fc:ec:34:ad:0b:c1:6e:dd:8a:14:a6: d1:67:34:2e:47:37:14:02:73:03:dc:56:89:3d:c5:70:d1:98: 6e:0d:71:6c:0e:06:5c:98:4b:c4:0e:49:e7:0e:b6:0c:b7:44: 28:2b:0c:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTJiLTJhNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDREXuKJNzVQCq7jxusxd2vvphr4DNX71dSz5hDlKhRIzIQOi+JPXOcr3jaMBhC CwqMF+pcBq/n4hQTx5Vui19eNfcNXEUfOnj69/zYE8oMBcMXr0GYEBscGldkmBk3 1gu8bNqXSbZY0WAJO5gXGKMXr5cDGIbyK+5q4BTfxATN+jWQEJPKpOl3DTSp04iz oE2+900r46ELDeP/1VhJvDbgFqJ5x0qRGd84btztoGiSJmkaBvzW9Hb/BdanuU5E mRnsll8Z20/xe3SFJnAy3WNOy9XdQ9lMFxrMuYfqypOhnWb96vjDDOb4UprUbzn8 YGYEJG6S5/RoJpu9yz4nqySlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXATSKpqN 1QdDgZTvQ5uccpTr+/wwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GMkQ2OUIxQTcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcocUDANBgkqhkiG9w0BAQsFAAOCAQEAZNMZEoWSYDpQaXaO 0fFJHcEmnHKVoaqlYKgWHBSlLwJq/5YOuzfxzB0KkLzTiniX6RZeH8uMMzhDKnaC RQUkA304AdPrtDq0yDv2Xa5H0ao3TDeneulSZCoktjfH9D96hSWVt6VULpRuI8IH d4qEjN7rpBGSz15+BkhMmr3EFI5LVafrXqTg04ahqiJcMkurw/XS1pQmCR16oG0v fzPxT6DmdUlriWYUCOx00kggH+RIKb4fkrh5wxEG+BkO1T/pt3YQdpgx6poi0ANw zPzsNK0LwW7dihSm0Wc0Lkc3FAJzA9xWiT3FcNGYbg1xbA4GXJhLxA5J5w62DLdE KCsMdw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org