$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/1C6F90BC721E11EF944A643CC4F9AE02.roa File: 1C6F90BC721E11EF944A643CC4F9AE02.roa (raw, json) Hash identifier: LzLr6V6YDKgBWzOgIdKfAy2aFuBAWYUdG00ZNgKIC9U= Subject key identifier: 23:19:22:8F:41:3F:79:07:AD:B2:BE:C9:6A:62:AC:EC:71:F5:39:D0 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: BC Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/1C6F90BC721E11EF944A643CC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:05 +0000 ROA not before: Sat 21 Dec 2024 05:50:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17823 IP address blocks: 202.28.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:05 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766570c-4cba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:82:cd:6e:cc:4e:7f:c9:2d:ac:c0:f8:21: 5c:71:ba:02:db:5a:18:ea:0c:0e:18:cb:b7:09:8f: b1:aa:ed:f8:21:0c:9a:f8:ca:e1:87:b3:22:f9:72: 3e:41:53:c6:19:56:41:fd:de:63:24:c8:33:c7:f9: 9a:1a:67:35:95:db:e8:8d:c8:55:fe:6d:0c:1b:51: 03:79:bd:90:59:c4:7a:b3:f9:cc:c1:35:72:6c:51: 8b:fa:6c:bb:17:91:5b:63:8d:37:5c:54:a9:92:10: f7:1c:f6:df:2e:d1:84:26:34:0c:cd:a0:49:91:0f: 68:65:96:03:aa:da:ea:c2:03:cd:1f:5e:6e:22:5a: 37:5c:15:1a:38:27:16:5a:77:06:df:e5:c1:8e:ec: bf:7f:3c:15:47:c9:f1:f6:8a:3a:8f:7d:3b:79:a4: b7:25:43:4f:68:13:08:35:bc:94:13:e0:4f:22:28: d7:e4:95:ab:bc:e1:41:80:a7:55:6f:af:6b:84:c4: 1e:0e:19:0f:2e:5f:c1:b5:d8:ef:ee:4f:49:26:70: 64:76:6f:07:c2:71:5e:ae:40:2c:cd:87:b3:b5:67: 0c:84:92:46:97:83:46:0e:43:bf:7b:bb:7a:e4:92: a6:cd:cd:09:01:88:84:8c:d4:b3:4d:af:0b:e8:35: d4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:19:22:8F:41:3F:79:07:AD:B2:BE:C9:6A:62:AC:EC:71:F5:39:D0 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/1C6F90BC721E11EF944A643CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.1.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:74:f7:27:1d:4d:67:79:01:b5:3e:81:fa:80:e7:43:4a:a7: f5:61:9d:d7:5c:89:f5:7f:60:7e:69:0d:f8:19:ba:57:40:c6: 0d:b4:d4:e8:e5:b0:83:08:fa:c2:e3:5d:54:a9:84:02:c7:25: 44:3f:40:95:2a:27:da:b0:35:15:30:a3:fe:cd:23:57:bc:db: 6f:41:68:4b:db:37:17:36:6f:ee:a5:2f:72:f5:48:8b:82:b4: 2b:37:57:54:7f:f3:db:1e:81:5d:1b:04:41:ac:67:31:ed:b7: 86:7b:03:dd:2b:66:9e:ae:67:a9:8f:70:7e:49:d5:78:66:24: 93:61:73:86:9c:eb:9b:f6:63:6d:36:5a:f8:1d:c5:fb:3f:6c: 96:b4:1b:f0:89:10:7a:f3:e0:db:a0:fd:95:2a:7c:3b:c4:32: ed:3a:1b:bb:cc:3d:ba:cb:39:10:14:fb:e4:6f:3c:52:f0:b1: 7e:7c:1d:9d:9b:61:80:fe:16:f3:72:ac:c5:4b:85:07:88:f3: 4e:8e:10:84:e7:d6:fb:75:04:32:c6:6d:d7:5a:e5:19:5f:85: 8d:ca:8f:57:58:6b:17:18:f3:83:42:00:d9:8b:08:30:af:1f: 79:a8:4f:1a:7e:9a:23:c8:6e:7c:fe:df:9b:67:6c:98:11:f0: 78:e8:ac:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDA1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwYy00Y2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sqCzW7MTn/JLazA+CFccboC21oY6gwOGMu3CY+xqu34IQya+Mrhh7Mi+XI+ QVPGGVZB/d5jJMgzx/maGmc1ldvojchV/m0MG1EDeb2QWcR6s/nMwTVybFGL+my7 F5FbY403XFSpkhD3HPbfLtGEJjQMzaBJkQ9oZZYDqtrqwgPNH15uIlo3XBUaOCcW WncG3+XBjuy/fzwVR8nx9oo6j307eaS3JUNPaBMINbyUE+BPIijX5JWrvOFBgKdV b69rhMQeDhkPLl/Btdjv7k9JJnBkdm8HwnFerkAszYeztWcMhJJGl4NGDkO/e7t6 5JKmzc0JAYiEjNSzTa8L6DXUUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCMZIo9B P3kHrbK+yWpirOxx9TnQMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMUM2RjkwQkM3 MjFFMTFFRjk0NEE2NDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHAEwDQYJKoZIhvcNAQELBQADggEBAG509ycdTWd5AbU+ gfqA50NKp/VhnddcifV/YH5pDfgZuldAxg201OjlsIMI+sLjXVSphALHJUQ/QJUq J9qwNRUwo/7NI1e8229BaEvbNxc2b+6lL3L1SIuCtCs3V1R/89segV0bBEGsZzHt t4Z7A90rZp6uZ6mPcH5J1XhmJJNhc4ac65v2Y202Wvgdxfs/bJa0G/CJEHrz4Nug /ZUqfDvEMu06G7vMPbrLORAU++RvPFLwsX58HZ2bYYD+FvNyrMVLhQeI806OEITn 1vt1BDLGbdda5RlfhY3Kj1dYaxcY84NCANmLCDCvH3moTxp+miPIbnz+35tnbJgR 8HjorBg= -----END CERTIFICATE-----Generated at Mon Feb 17 08:19:33 2025 by rpki-client