$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F8C77948721511EFA7D82D3EC4F9AE02.roa File: F8C77948721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: 63Jdyc1ytDrkJYFpfImZ0JX5mHN1sFm9VM+0u5aiFo0= Subject key identifier: D3:A8:98:2A:07:E9:72:1B:A7:5A:DA:9F:7A:CD:8C:2C:BD:07:19:85 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 3E Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F8C77948721511EFA7D82D3EC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:20:17 +0000 ROA not before: Fri 13 Sep 2024 21:20:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9551 IP address blocks: 202.28.4.0/24 maxlen: 24 202.28.5.0/24 maxlen: 24 202.28.6.0/24 maxlen: 24 202.28.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:20:17 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac90-fb86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4b:52:09:72:4a:2e:7b:3f:31:5b:c6:01:05: 0b:96:4d:8e:f7:f3:57:20:d6:da:8c:ea:0b:c3:9d: 34:57:57:28:b2:45:27:ba:44:ee:ed:f1:f0:ef:ea: d8:fa:e0:6d:cb:53:ea:75:f0:e5:cb:86:48:02:e6: 29:77:01:2e:bf:43:0e:2a:c6:11:e8:0a:67:03:ef: 35:4d:5f:db:b7:41:6b:50:7e:4e:4a:0f:30:15:7a: 4b:f9:58:33:da:ed:87:de:31:0f:15:26:b3:2f:40: 15:ef:ae:b3:88:61:8b:0c:04:2d:98:41:3a:33:de: 5c:2a:88:cc:e2:84:30:8a:e4:80:cf:0f:01:48:79: e2:28:cc:cf:39:2b:56:72:3f:a9:59:40:76:30:da: f4:fe:6c:ba:64:1f:f9:76:f6:58:68:e5:a8:01:71: 8c:3e:c5:44:99:80:38:4f:ae:61:72:65:7c:ee:02: 60:c6:0b:6a:42:b7:fe:58:cd:5b:33:cc:4d:04:43: 51:14:b8:ce:c5:b4:6c:58:c0:bc:00:a2:39:7e:38: bb:12:df:ed:51:05:83:72:f9:a6:6f:35:4f:61:e0: a1:ac:61:ac:0d:51:72:bb:b6:2c:82:fe:07:bd:85: 60:15:70:98:0c:b1:39:70:7e:36:bd:30:fd:a9:8f: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A8:98:2A:07:E9:72:1B:A7:5A:DA:9F:7A:CD:8C:2C:BD:07:19:85 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F8C77948721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.4.0/22 Signature Algorithm: sha256WithRSAEncryption 16:2f:88:94:ea:9d:57:2b:c7:0a:16:de:b8:b0:98:70:8f:4d: 7d:ac:f1:4c:e0:64:b9:98:37:88:09:3f:a5:b4:d9:22:e0:39: 5b:6a:bb:52:25:70:d7:31:ca:2c:80:07:6e:c4:73:8c:5d:7b: 9d:8e:fb:a2:44:16:e2:09:0a:14:16:89:66:3b:1a:34:88:5c: 64:18:c6:f0:c5:1d:40:9c:72:21:ba:33:c8:2e:65:03:50:ed: a8:ba:c8:63:ce:0f:58:67:6d:87:43:0c:de:67:13:f1:9c:05: c1:7d:b0:e2:64:55:9d:66:5e:f1:3b:7b:a2:22:ab:ea:13:f3: 0c:d5:d9:4b:8a:29:b7:16:7a:e2:b0:f5:07:01:cd:3c:e6:44: e7:65:a6:e9:33:d8:85:71:e4:df:f6:9c:49:8e:2f:52:cc:43: cb:39:8b:87:c3:16:df:bb:b0:00:13:dd:46:42:49:1c:ea:78: 0a:74:1e:2a:c8:7c:9a:c7:42:f2:60:5b:6a:6c:13:75:f0:9e: f4:12:13:2f:d1:91:55:b6:72:d9:ac:98:51:5e:14:2d:52:a5: 97:eb:7f:0f:36:27:d5:50:af:2d:eb:7a:41:eb:d5:da:4e:dd: 24:0c:db:ce:c6:53:59:a0:84:ef:5c:8e:0a:91:4f:a1:74:1b: f9:28:66:59 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTIwMTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzkwLWZiODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYS1IJckouez8xW8YBBQuWTY7381cg1tqM6gvDnTRXVyiyRSe6RO7t8fDv6tj6 4G3LU+p18OXLhkgC5il3AS6/Qw4qxhHoCmcD7zVNX9u3QWtQfk5KDzAVekv5WDPa 7YfeMQ8VJrMvQBXvrrOIYYsMBC2YQToz3lwqiMzihDCK5IDPDwFIeeIozM85K1Zy P6lZQHYw2vT+bLpkH/l29lho5agBcYw+xUSZgDhPrmFyZXzuAmDGC2pCt/5YzVsz zE0EQ1EUuM7FtGxYwLwAojl+OLsS3+1RBYNy+aZvNU9h4KGsYawNUXK7tiyC/ge9 hWAVcJgMsTlwfja9MP2pj5adAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU06iYKgfp chunWtqfes2MLL0HGYUwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GOEM3Nzk0ODcy MTUxMUVGQTdEODJEM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsocBDANBgkqhkiG9w0BAQsFAAOCAQEAFi+IlOqdVyvHChbe uLCYcI9NfazxTOBkuZg3iAk/pbTZIuA5W2q7UiVw1zHKLIAHbsRzjF17nY77okQW 4gkKFBaJZjsaNIhcZBjG8MUdQJxyIbozyC5lA1DtqLrIY84PWGdth0MM3mcT8ZwF wX2w4mRVnWZe8Tt7oiKr6hPzDNXZS4optxZ64rD1BwHNPOZE52Wm6TPYhXHk3/ac SY4vUsxDyzmLh8MW37uwABPdRkJJHOp4CnQeKsh8msdC8mBbamwTdfCe9BITL9GR VbZy2ayYUV4ULVKll+t/DzYn1VCvLet6QevV2k7dJAzbzsZTWaCE71yOCpFPoXQb +ShmWQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org