$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa File: F851511E721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: zNO8PBf2WDWZVAxu8RG5PpUOfeJoJuy4TI4Cdjew95g= Subject key identifier: 47:4D:72:7B:57:02:B2:9F:CF:BF:6E:07:D2:A1:4E:23:1A:5B:A4:27 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 3D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:20:16 +0000 ROA not before: Fri 13 Sep 2024 21:20:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9533 IP address blocks: 202.28.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:20:16 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac90-07aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:33:31:8d:5f:da:7a:e0:d0:7c:cd:73:0b:af: c3:4a:92:1f:53:44:b9:e6:51:ae:1e:84:2a:d3:68: 31:63:65:da:aa:a5:bb:ad:07:4d:c6:e6:1d:40:46: cf:62:11:86:ed:fc:90:9e:d0:d2:de:45:03:15:2f: 64:7f:00:36:79:ef:89:f1:03:5f:e4:65:96:1d:05: ec:8a:32:03:c6:23:0c:ba:b2:52:64:49:08:b9:54: 9c:97:29:c0:e9:f4:fc:5e:96:d9:74:11:d9:f0:45: f7:a4:83:36:17:01:22:a1:74:65:75:6a:af:c5:d6: ef:2f:d7:27:fd:61:86:6c:04:85:3f:4c:76:4f:2e: 69:f9:3c:3b:17:85:1e:67:96:cb:e9:fd:2f:d7:3f: e7:c0:77:e9:d8:6d:9a:ce:ee:01:3d:e2:dd:f2:75: e1:89:d9:ee:d7:ba:e8:0b:51:08:ee:91:49:16:13: bc:d9:f2:d4:d6:9c:66:57:8e:92:0a:c1:e2:6b:a1: 98:75:1d:ed:5a:f8:76:83:05:6f:09:6f:af:59:d1: 27:b5:02:cd:81:6b:3b:03:90:f2:3a:c9:f0:7b:af: 89:7e:d0:bb:12:84:27:b9:f0:50:a4:fc:17:99:de: 3d:0c:9d:28:d2:10:6a:d5:f8:5c:11:62:4c:3b:af: 46:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4D:72:7B:57:02:B2:9F:CF:BF:6E:07:D2:A1:4E:23:1A:5B:A4:27 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F851511E721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.17.0/24 Signature Algorithm: sha256WithRSAEncryption 22:77:18:79:da:44:ab:40:d9:67:de:d9:33:16:40:d6:1c:16: ab:62:bc:ed:42:fa:70:41:a6:1b:30:5c:2c:9f:5f:1c:13:75: 0d:12:1e:cd:21:5d:ef:6e:7c:85:ae:57:a7:8b:e1:df:0d:95: 82:ca:e6:e8:53:65:b8:a6:25:86:dc:89:24:13:ea:0c:c3:4c: b1:5c:e0:12:b3:a5:4e:11:2f:74:b4:43:29:0c:71:b0:82:02: 6e:ce:ab:0b:4a:be:17:6c:72:97:fd:69:b2:37:63:7b:be:3f: ae:60:d1:d6:d7:db:16:83:4e:b2:c2:5d:7f:2f:39:30:82:82: 26:83:a2:f8:23:68:7d:4e:5d:38:28:d9:f6:7c:87:a0:cc:4e: db:d9:d8:fb:b1:f9:5d:22:25:4b:89:bc:c5:74:d2:94:0f:00: f7:9c:a8:3e:ae:9a:53:ce:c8:7c:e3:59:92:32:8a:77:43:9e: cb:ff:5c:f6:42:7e:7a:72:4b:6b:c2:f8:88:7a:c3:5f:d2:5b: 89:9a:33:81:23:3e:76:67:1f:8c:3e:ad:a4:a3:d3:49:e3:b3: a6:71:b5:28:2c:28:07:a3:83:1d:4c:06:36:c2:35:16:3b:13: 29:44:32:26:7f:11:8a:4e:6b:3d:58:2b:22:00:8a:26:99:1f: 0d:a7:b5:56 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTIwMTZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzkwLTA3YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiMzGNX9p64NB8zXMLr8NKkh9TRLnmUa4ehCrTaDFjZdqqpbutB03G5h1ARs9i EYbt/JCe0NLeRQMVL2R/ADZ574nxA1/kZZYdBeyKMgPGIwy6slJkSQi5VJyXKcDp 9Pxeltl0EdnwRfekgzYXASKhdGV1aq/F1u8v1yf9YYZsBIU/THZPLmn5PDsXhR5n lsvp/S/XP+fAd+nYbZrO7gE94t3ydeGJ2e7XuugLUQjukUkWE7zZ8tTWnGZXjpIK weJroZh1He1a+HaDBW8Jb69Z0Se1As2BazsDkPI6yfB7r4l+0LsShCe58FCk/BeZ 3j0MnSjSEGrV+FwRYkw7r0ZjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUR01ye1cC sp/Pv24H0qFOIxpbpCcwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GODUxNTExRTcy MTUxMUVGQTdEODJEM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMocETANBgkqhkiG9w0BAQsFAAOCAQEAIncYedpEq0DZZ97Z MxZA1hwWq2K87UL6cEGmGzBcLJ9fHBN1DRIezSFd7258ha5Xp4vh3w2Vgsrm6FNl uKYlhtyJJBPqDMNMsVzgErOlThEvdLRDKQxxsIICbs6rC0q+F2xyl/1psjdje74/ rmDR1tfbFoNOssJdfy85MIKCJoOi+CNofU5dOCjZ9nyHoMxO29nY+7H5XSIlS4m8 xXTSlA8A95yoPq6aU87IfONZkjKKd0Oey/9c9kJ+enJLa8L4iHrDX9JbiZozgSM+ dmcfjD6tpKPTSeOzpnG1KCwoB6ODHUwGNsI1FjsTKUQyJn8Rik5rPVgrIgCKJpkf Dae1Vg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org