$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa File: F2D69B1A721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: F/ncOXSKmknYvd/MQquNsO83wKbtpSt4BZ+zg5c7kvk= Subject key identifier: CB:29:DA:4C:72:8F:7D:25:06:04:4E:65:AF:7F:39:68:05:68:24:9B Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B8 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:59 +0000 ROA not before: Sat 21 Dec 2024 05:49:59 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149800 IP address blocks: 202.28.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:59 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665707-360f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5b:90:b4:9e:da:fb:1d:e4:85:4f:87:b7:f2: 0e:b3:5a:6a:ae:a1:84:db:ae:44:ad:d4:62:54:58: 37:7f:56:3f:f9:99:2e:ae:a6:88:f8:a2:0a:67:fc: 52:77:25:86:f7:2a:ed:57:8e:81:eb:21:2c:e8:de: 79:b5:31:b2:e1:d8:8a:15:80:ef:b8:15:5d:24:06: cb:37:ea:44:17:88:86:af:26:53:25:1c:da:02:6b: 8c:f6:2c:51:e6:2c:01:fb:9a:1c:6f:7a:49:c5:37: 77:b0:26:62:e1:18:23:ee:79:a8:a8:ea:83:eb:ef: e1:81:64:6a:34:cc:51:eb:da:82:9a:e7:f6:c5:ea: e1:d4:62:6f:ce:42:70:78:9f:25:05:a2:25:b1:2b: f2:53:2a:7d:3c:8b:27:98:2d:cc:e0:c3:aa:af:cc: 1d:57:13:7c:12:ce:51:48:4d:de:ec:77:9a:21:7c: 56:62:06:4e:35:63:98:2f:fd:b1:63:8a:f6:6d:49: 26:a2:f0:b7:e7:d2:11:96:70:3a:33:86:af:4c:a4: 8f:ea:ce:15:cd:fb:f7:1f:95:22:ba:b7:ed:aa:cb: f0:84:79:75:62:ea:f0:46:31:1f:77:38:1f:32:83: d4:dc:7e:68:41:96:78:55:10:af:01:6a:d2:f4:3d: ff:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:29:DA:4C:72:8F:7D:25:06:04:4E:65:AF:7F:39:68:05:68:24:9B X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F2D69B1A721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.80.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:87:23:dc:8a:82:b6:19:1f:57:0f:79:8a:72:4d:b6:0f:47: bf:61:5e:33:43:8e:5c:8a:37:ad:1e:b5:4f:c8:a7:ad:10:a1: 3a:79:5b:34:9f:87:e8:1c:96:0f:1a:75:01:ac:1e:01:3f:e1: b3:9d:c7:03:d2:a5:5c:ac:3d:d5:bf:c4:b4:b1:3c:a1:2f:7e: a8:93:fe:d8:22:96:7e:a3:79:be:88:2f:7d:14:e9:e5:42:d5: 25:0a:d9:a3:2c:c6:c0:0d:f8:58:e3:bc:29:38:b0:63:76:b1: 7c:85:5f:bd:45:68:72:15:b7:a9:43:d3:1f:77:92:83:bb:20: 9f:26:23:26:10:69:f8:87:fa:75:1e:8d:2b:53:84:83:61:b0: 17:aa:33:73:91:7e:3b:82:cc:70:25:07:13:45:11:11:5b:0a: c0:fb:6e:76:75:a3:f8:a1:99:e1:0e:9d:1d:27:a3:60:55:91: cb:9a:30:77:4d:aa:3d:7d:a3:0b:54:56:86:0d:03:30:c1:e6: 12:2f:ac:bd:80:00:81:fb:ba:96:06:b9:c4:80:ae:1f:8f:4a: 6d:36:fb:0f:8e:bf:c6:e7:db:11:98:c8:c4:77:66:0b:3d:02: e2:43:b5:d7:9f:2d:42:4a:fc:80:e8:37:b4:d7:69:5f:a3:5d: f5:d3:bf:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTU5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwNy0zNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FuQtJ7a+x3khU+Ht/IOs1pqrqGE265ErdRiVFg3f1Y/+ZkurqaI+KIKZ/xS dyWG9yrtV46B6yEs6N55tTGy4diKFYDvuBVdJAbLN+pEF4iGryZTJRzaAmuM9ixR 5iwB+5ocb3pJxTd3sCZi4Rgj7nmoqOqD6+/hgWRqNMxR69qCmuf2xerh1GJvzkJw eJ8lBaIlsSvyUyp9PIsnmC3M4MOqr8wdVxN8Es5RSE3e7HeaIXxWYgZONWOYL/2x Y4r2bUkmovC359IRlnA6M4avTKSP6s4Vzfv3H5UiurftqsvwhHl1YurwRjEfdzgf MoPU3H5oQZZ4VRCvAWrS9D3/HwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMsp2kxy j30lBgROZa9/OWgFaCSbMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjJENjlCMUE3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKHFAwDQYJKoZIhvcNAQELBQADggEBAC+HI9yKgrYZH1cP eYpyTbYPR79hXjNDjlyKN60etU/Ip60QoTp5WzSfh+gclg8adQGsHgE/4bOdxwPS pVysPdW/xLSxPKEvfqiT/tgiln6jeb6IL30U6eVC1SUK2aMsxsAN+FjjvCk4sGN2 sXyFX71FaHIVt6lD0x93koO7IJ8mIyYQafiH+nUejStThINhsBeqM3ORfjuCzHAl BxNFERFbCsD7bnZ1o/ihmeEOnR0no2BVkcuaMHdNqj19owtUVoYNAzDB5hIvrL2A AIH7upYGucSArh+PSm02+w+Ov8bn2xGYyMR3Zgs9AuJDtdefLUJK/IDoN7TXaV+j XfXTv3U= -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:00 2025 by rpki-client