$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa File: F851511E721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: XamN1VPoIag0H5XThFi2mfHbp05mSPdk5HUJ4eWrzCg= Subject key identifier: 3E:E9:DC:BB:EE:85:2A:F9:52:8D:11:70:08:FB:96:14:AE:04:EF:A2 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: D0 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:25 +0000 ROA not before: Sat 21 Dec 2024 05:50:25 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9533 IP address blocks: 202.28.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:25 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665721-163e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f4:85:46:0b:55:df:03:9e:16:fb:77:6d:8f: c2:b7:02:86:9b:55:c4:26:d3:3b:16:3a:1c:16:c7: 76:98:8a:f3:7d:6f:10:66:0e:2d:84:e9:79:17:73: 98:a7:bc:3c:30:c7:5d:37:db:db:91:a4:77:1e:b0: 69:c6:85:05:48:95:d8:a1:e2:72:ad:62:dd:6c:fc: 7b:8d:94:2b:f6:a4:29:d9:50:d8:64:ad:5a:96:b9: 5c:3e:6d:d1:cb:69:5a:ec:b9:d3:48:c2:b8:8e:e3: b7:0a:fb:c1:b0:0a:73:52:61:3f:79:bc:dd:5a:5e: f7:8f:7d:0d:3d:18:00:98:a2:b0:84:56:80:02:66: 3e:98:9a:e7:71:d7:00:54:04:56:49:fa:e8:17:1e: b4:6d:e0:52:7c:c6:bf:42:c5:6b:ba:71:54:bb:5c: 3f:3a:f9:00:3c:83:19:f1:03:1e:e7:a3:0e:2c:9a: bb:e1:c1:8a:a8:c5:03:3c:89:5a:45:2b:a1:c1:73: ca:c4:0a:87:79:c8:25:a3:4c:52:f7:64:78:ca:57: a0:a9:bf:c5:00:b4:03:3b:95:c0:09:10:0c:c1:c9: 11:5f:b6:db:d7:6c:ce:08:e8:d9:62:46:09:b9:a8: c4:15:b5:87:0e:b8:83:0d:40:88:ac:d7:e5:70:cb: c8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E9:DC:BB:EE:85:2A:F9:52:8D:11:70:08:FB:96:14:AE:04:EF:A2 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.17.0/24 Signature Algorithm: sha256WithRSAEncryption a3:66:b3:3b:7a:77:8d:e7:fd:66:06:07:31:2f:64:43:b5:5a: 98:e6:a0:35:34:4a:60:f0:3b:77:77:45:6c:68:d3:33:86:f6: f5:a5:9b:bb:6c:4f:d4:65:a5:33:30:c0:17:73:e1:c9:b5:63: 5f:5a:9d:6b:7a:a4:13:47:18:0f:34:28:b9:2f:07:94:10:69: dd:a3:da:1c:15:ff:2c:80:97:8a:e6:33:32:7a:5b:fe:74:b9: 63:00:21:cb:aa:dd:78:6a:e9:b5:16:3a:f4:d7:fd:cb:25:23: d2:ae:6d:b1:c8:e4:23:b7:dc:02:2a:0d:ac:dd:12:cb:4e:fd: 99:11:4c:f2:ee:01:f1:8d:86:55:92:9d:1a:34:56:a2:30:71: b0:71:0f:8b:01:0c:7d:81:5e:b0:31:58:66:16:f1:91:5f:06: bb:d2:a4:94:39:6e:81:96:3d:3c:74:27:11:a0:f2:f3:73:10: 52:cd:5d:fc:ce:39:c3:5c:e7:1a:88:d0:49:c2:6d:86:40:32: 73:cf:83:a3:3b:80:83:4b:f4:01:bf:58:92:06:d8:35:db:26: 2a:e1:ce:e3:0b:60:cc:66:03:20:21:58:88:0b:8f:f9:62:43: de:e2:c5:d3:58:76:ed:37:17:79:16:2e:75:dc:d2:ff:fa:ec: bc:fb:72:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDI1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcyMS0xNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/SFRgtV3wOeFvt3bY/CtwKGm1XEJtM7FjocFsd2mIrzfW8QZg4thOl5F3OY p7w8MMddN9vbkaR3HrBpxoUFSJXYoeJyrWLdbPx7jZQr9qQp2VDYZK1alrlcPm3R y2la7LnTSMK4juO3CvvBsApzUmE/ebzdWl73j30NPRgAmKKwhFaAAmY+mJrncdcA VARWSfroFx60beBSfMa/QsVrunFUu1w/OvkAPIMZ8QMe56MOLJq74cGKqMUDPIla RSuhwXPKxAqHecglo0xS92R4ylegqb/FALQDO5XACRAMwckRX7bb12zOCOjZYkYJ uajEFbWHDriDDUCIrNflcMvIpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD7p3Lvu hSr5Uo0RcAj7lhSuBO+iMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjg1MTUxMUU3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHBEwDQYJKoZIhvcNAQELBQADggEBAKNmszt6d43n/WYG BzEvZEO1WpjmoDU0SmDwO3d3RWxo0zOG9vWlm7tsT9RlpTMwwBdz4cm1Y19anWt6 pBNHGA80KLkvB5QQad2j2hwV/yyAl4rmMzJ6W/50uWMAIcuq3Xhq6bUWOvTX/csl I9KubbHI5CO33AIqDazdEstO/ZkRTPLuAfGNhlWSnRo0VqIwcbBxD4sBDH2BXrAx WGYW8ZFfBrvSpJQ5boGWPTx0JxGg8vNzEFLNXfzOOcNc5xqI0EnCbYZAMnPPg6M7 gINL9AG/WJIG2DXbJirhzuMLYMxmAyAhWIgLj/liQ97ixdNYdu03F3kWLnXc0v/6 7Lz7cpI= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:24 2025 by rpki-client