$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa File: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (raw, json) Hash identifier: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU= Subject key identifier: 24:FF:4B:02:42:8A:CF:FC:8D:AD:AC:D0:B6:2D:E1:59:F3:4F:66:FE Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0802 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa Signing time: Tue 04 Feb 2025 21:41:27 +0000 ROA not before: Tue 04 Feb 2025 21:41:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7496 IP address blocks: 203.27.226.0/23 maxlen: 24 203.32.8.0/21 maxlen: 24 2405:8800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB Validity Not Before: Feb 4 21:41:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a28986-ae54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:d2:10:82:06:ad:7a:f6:70:0b:6d:19:79: 03:47:ee:b2:4c:a0:46:96:cb:39:8a:5f:62:e6:c9: 71:49:6b:03:8a:a6:96:af:0e:4e:fa:3c:f1:b5:03: ab:75:e0:32:07:82:cc:d9:d3:00:dc:48:5e:bd:e6: b9:06:05:56:59:1f:7c:b8:cb:fa:5e:fe:70:96:eb: b7:cd:d5:6a:ca:ff:11:30:14:e7:02:34:48:c3:1a: d2:4b:e9:d1:da:de:ab:6f:8a:6f:a7:9f:d1:f2:c4: 76:81:ce:4d:2f:9b:4c:d0:7c:a3:98:e3:8c:63:a2: 1e:1b:5a:14:42:b2:9a:72:36:ed:a7:bb:69:6e:86: d1:16:5c:f2:c2:fe:10:19:c9:9b:cc:11:45:d1:5d: f8:1f:06:5f:e4:51:f1:ab:a5:e3:28:02:b8:3e:08: e9:b9:9f:ad:92:f4:77:ea:a5:57:d6:27:b9:be:b9: 61:f5:4f:a7:72:a8:e3:89:a6:75:04:9b:e9:ac:7d: 12:68:a1:e3:b7:c8:79:08:de:ca:d6:2f:5a:4f:6a: 65:24:e5:99:3a:45:4b:19:86:9d:f3:f3:c2:af:a4: a9:97:8d:da:1b:06:92:8c:4f:56:65:b5:92:5a:cc: ed:7e:48:f9:63:0e:97:32:49:a0:4a:aa:09:84:d4: e5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FF:4B:02:42:8A:CF:FC:8D:AD:AC:D0:B6:2D:E1:59:F3:4F:66:FE X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 203.32.8.0/21 IPv6: 2405:8800::/32 Signature Algorithm: sha256WithRSAEncryption 89:89:d8:c3:9b:9a:19:b4:f9:00:48:7d:77:10:1a:8c:57:f5: 04:c4:14:ef:b4:d6:1f:1e:7e:b0:b2:25:4b:49:6a:1e:5c:4f: 9b:26:b3:5f:db:fa:25:2e:e0:18:b0:7a:51:6a:49:16:01:3a: a3:59:5e:45:b8:ea:31:d3:86:eb:b2:9e:0e:f3:d2:d6:c8:46: 21:e5:d1:21:7d:dd:e0:45:5d:d7:9e:c2:b5:da:ee:0e:c7:69: 3a:26:9e:a6:e2:dd:06:a0:ae:77:c7:32:46:2f:8b:a5:a4:2c: be:d1:99:f7:6b:c5:54:38:81:f9:e4:0c:5e:a6:76:44:d3:82: 90:10:de:88:3f:ca:ca:90:9f:19:82:71:7a:31:34:8d:e6:d6: 2d:ec:35:32:de:44:5d:a3:2e:f6:62:1f:58:4a:b7:63:61:75: 2c:62:a0:b8:05:ab:b8:4b:b4:66:e2:e9:7f:3c:a6:41:84:4e: 04:48:f4:5b:cd:d8:d2:1a:ff:67:60:59:0b:d9:7f:7d:64:7e: 7d:be:be:b4:fe:27:aa:88:04:b9:b1:07:0a:aa:7f:bd:62:b9: c5:f1:f8:74:09:b3:0a:61:35:11:ea:88:a6:58:6b:90:64:c1: aa:e8:85:9e:1d:cf:41:29:7c:ae:95:b6:99:e4:63:c3:81:12: d4:e5:33:6d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwMjA0MjE0MTI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODk4Ni1hZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqLSEIIGrXr2cAttGXkDR+6yTKBGlss5il9i5slxSWsDiqaWrw5O+jzxtQOr deAyB4LM2dMA3Ehevea5BgVWWR98uMv6Xv5wluu3zdVqyv8RMBTnAjRIwxrSS+nR 2t6rb4pvp5/R8sR2gc5NL5tM0HyjmOOMY6IeG1oUQrKacjbtp7tpbobRFlzywv4Q GcmbzBFF0V34HwZf5FHxq6XjKAK4PgjpuZ+tkvR36qVX1ie5vrlh9U+ncqjjiaZ1 BJvprH0SaKHjt8h5CN7K1i9aT2plJOWZOkVLGYad8/PCr6Spl43aGwaSjE9WZbWS Wsztfkj5Yw6XMkmgSqoJhNTl2wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCT/SwJC is/8ja2s0LYt4VnzT2b+MB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvRTJGRUE2REEz RTU0MTFFRjlCMzk4RDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAHLG+IDBAPLIAgwDQQCAAIwBwMFACQFiAAwDQYJKoZIhvcN AQELBQADggEBAImJ2MObmhm0+QBIfXcQGoxX9QTEFO+01h8efrCyJUtJah5cT5sm s1/b+iUu4BiwelFqSRYBOqNZXkW46jHThuuyng7z0tbIRiHl0SF93eBFXdeewrXa 7g7HaTomnqbi3QagrnfHMkYvi6WkLL7RmfdrxVQ4gfnkDF6mdkTTgpAQ3og/ysqQ nxmCcXoxNI3m1i3sNTLeRF2jLvZiH1hKt2NhdSxioLgFq7hLtGbi6X88pkGETgRI 9FvN2NIa/2dgWQvZf31kfn2+vrT+J6qIBLmxBwqqf71iucXx+HQJswphNRHqiKZY a5BkwarohZ4dz0EpfK6VtpnkY8OBEtTlM20= -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:27 2025 by rpki-client