$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F54A05F8721311EFA9D7CA3AC4F9AE02.roa File: F54A05F8721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: BDpZ3mOTvvqyzhxNZef7kEjjM0OQIW3VUsozWl2T+6A= Subject key identifier: F1:79:99:51:E3:95:A1:F5:56:8E:1B:E9:66:00:DA:20:5E:EE:84:9C Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: D3 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F54A05F8721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:27 +0000 ROA not before: Sat 21 Dec 2024 05:50:27 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9562 IP address blocks: 202.28.32.0/24 maxlen: 24 202.28.33.0/24 maxlen: 24 202.28.34.0/24 maxlen: 24 202.28.35.0/24 maxlen: 24 2001:3c8:a701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:27 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665723-b1d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9e:ce:3e:73:c9:02:6c:81:15:f2:52:33:0b: d6:80:6d:59:ac:20:ac:44:a0:e3:d9:ee:5c:ac:57: 13:fb:a5:e2:de:42:99:b8:09:ae:43:5c:a5:4e:04: e4:ba:2f:ba:a1:0c:ac:4f:3b:80:79:b8:74:7a:95: 04:31:b0:a4:41:2b:b8:d6:4d:51:04:e9:10:fc:8b: 10:25:fa:6b:3f:d8:cb:f8:04:d6:8e:e4:0d:dc:ac: 25:d4:8b:55:61:c0:b8:b7:9d:24:26:36:3c:db:84: 14:ac:35:50:b8:cc:44:bc:47:aa:12:5a:68:09:f1: 15:14:c2:5d:44:f6:b3:c1:38:f3:f9:de:b9:d1:e3: d4:56:19:0b:02:07:94:d9:96:7d:e8:cf:6e:25:7b: 4f:e6:88:a1:97:7e:cf:c7:16:b0:22:39:5f:d4:a4: ad:24:86:91:40:c7:8b:69:c5:73:cb:c9:bc:73:6e: ef:a7:ab:95:ff:e5:4d:31:81:cf:e6:66:76:cb:06: 66:7c:bf:80:0f:f6:54:60:37:8d:52:a1:fa:ce:64: 4a:f2:43:53:02:50:5b:a7:77:33:18:0c:12:c9:b3: ee:97:ce:b4:f2:d9:3e:52:bf:e2:c2:09:9d:20:c6: 25:d5:dd:82:12:32:20:e3:fc:09:f1:53:81:4e:d9: 1f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:79:99:51:E3:95:A1:F5:56:8E:1B:E9:66:00:DA:20:5E:EE:84:9C X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F54A05F8721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.32.0/22 IPv6: 2001:3c8:a701::/48 Signature Algorithm: sha256WithRSAEncryption 6a:8b:43:51:7d:c7:65:12:54:4e:19:33:52:6b:af:36:7d:8d: 79:cc:a0:91:1e:7b:de:3a:b5:e1:da:b0:dc:71:13:b7:0f:22: 17:37:30:cc:dd:4d:35:53:b7:49:df:9d:a4:92:ab:a5:79:77: cd:ae:1e:a9:7d:95:64:f6:9e:36:78:14:c1:9b:83:b5:69:6e: 05:60:5a:1b:fa:7c:f5:17:38:5c:20:03:c0:9e:35:97:13:85: 0a:52:53:42:a2:56:7c:f0:9d:c7:93:5a:4b:14:b0:13:54:47: a8:33:3d:0f:6a:96:56:1d:4b:a3:bf:89:aa:b5:55:f9:f5:2c: 10:18:06:5d:5b:bb:8d:1a:df:ba:61:57:9d:56:04:c1:2f:8e: 70:6c:e1:02:08:91:69:41:c6:f6:d8:5d:fb:6a:e2:17:0a:ce: 8f:d0:b1:c5:21:fd:a4:5b:7c:2b:0a:63:4f:dc:83:9e:42:7e: 29:9e:36:e3:85:a8:83:95:15:29:aa:36:b0:0d:06:01:68:75: 20:cd:31:0a:8b:d9:24:0e:12:90:06:3f:48:1d:8b:07:b9:67: d9:d3:69:f5:6e:77:24:f0:f8:e5:b9:ce:db:f2:18:21:4a:09: 3b:c0:07:2e:a3:95:5b:36:3a:8c:de:40:29:16:9a:be:06:bd: 3e:cc:ae:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDI3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcyMy1iMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ7OPnPJAmyBFfJSMwvWgG1ZrCCsRKDj2e5crFcT+6Xi3kKZuAmuQ1ylTgTk ui+6oQysTzuAebh0epUEMbCkQSu41k1RBOkQ/IsQJfprP9jL+ATWjuQN3Kwl1ItV YcC4t50kJjY824QUrDVQuMxEvEeqElpoCfEVFMJdRPazwTjz+d650ePUVhkLAgeU 2ZZ96M9uJXtP5oihl37PxxawIjlf1KStJIaRQMeLacVzy8m8c27vp6uV/+VNMYHP 5mZ2ywZmfL+AD/ZUYDeNUqH6zmRK8kNTAlBbp3czGAwSybPul8608tk+Ur/iwgmd IMYl1d2CEjIg4/wJ8VOBTtkfuwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPF5mVHj laH1Vo4b6WYA2iBe7oScMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjU0QTA1Rjg3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKHCAwDwQCAAIwCQMHACABA8inATANBgkqhkiG9w0BAQsF AAOCAQEAaotDUX3HZRJUThkzUmuvNn2NecygkR573jq14dqw3HETtw8iFzcwzN1N NVO3Sd+dpJKrpXl3za4eqX2VZPaeNngUwZuDtWluBWBaG/p89Rc4XCADwJ41lxOF ClJTQqJWfPCdx5NaSxSwE1RHqDM9D2qWVh1Lo7+JqrVV+fUsEBgGXVu7jRrfumFX nVYEwS+OcGzhAgiRaUHG9thd+2riFwrOj9CxxSH9pFt8KwpjT9yDnkJ+KZ4244Wo g5UVKao2sA0GAWh1IM0xCovZJA4SkAY/SB2LB7ln2dNp9W53JPD45bnO2/IYIUoJ O8AHLqOVWzY6jN5AKRaavga9Psyupw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:32 2025 by rpki-client