$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa File: 626CA672591911EFAF1F1D23C4F9AE02.roa (raw, json) Hash identifier: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I= Subject key identifier: EF:A1:DE:9D:4A:1C:40:66:C6:A2:5C:80:07:9E:97:26:B2:A5:A5:02 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: 46 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa Signing time: Wed 04 Dec 2024 16:24:06 +0000 ROA not before: Wed 04 Dec 2024 16:24:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 1299 IP address blocks: 192.82.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A Validity Not Before: Dec 4 16:24:06 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67508226-035c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:4d:75:12:a8:36:a7:97:1b:c4:db:6c:80: 81:ac:07:d2:9b:cc:ca:f1:c1:c9:f9:a7:02:0d:3c: 98:af:af:31:f9:cf:7e:1a:d8:cb:cf:7a:18:57:57: 35:39:c2:b3:b4:48:f6:d3:0c:d9:cc:00:a2:73:45: 82:b4:d6:1e:bb:78:42:1a:64:ea:f5:52:e8:8f:cc: 64:b1:d9:36:a6:a5:a4:25:dc:3f:76:9b:a5:06:08: 53:f8:cb:45:a7:6c:f6:06:ce:81:4a:1d:4c:74:bb: a9:83:af:5c:4a:5b:b8:47:3a:03:c4:53:59:d5:c0: ff:c2:77:9e:24:31:8d:37:22:f0:78:f1:e0:74:d6: 6a:e1:aa:20:ae:08:40:55:0d:c7:de:1d:88:78:4f: a2:6a:df:dc:07:d8:a7:3f:66:25:9b:7e:dd:7f:2a: 8d:7b:57:12:66:b1:c2:4c:76:97:e4:1b:31:73:f1: d3:cb:74:7f:00:04:d2:57:e5:b4:9e:b9:5e:1a:52: 65:39:d2:14:ac:5c:39:ab:78:ce:9f:f9:29:29:f5: 3f:31:5a:81:4c:3d:a9:b9:34:d4:f9:74:f4:17:f6: e1:07:da:3f:96:b4:7b:f8:97:6f:cc:89:d5:f6:ac: dd:5c:c4:01:30:ce:65:7e:12:95:92:94:dd:7e:6a: 4c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A1:DE:9D:4A:1C:40:66:C6:A2:5C:80:07:9E:97:26:B2:A5:A5:02 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.88.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:98:fd:60:f2:f3:53:e2:99:c5:fc:dc:40:90:6c:2a:3a:ba: b0:cf:fa:30:f4:db:43:e1:bb:0b:b8:67:f4:23:1c:7b:44:9c: a2:1f:37:e7:81:09:50:3d:ea:4f:6d:11:c9:e0:71:a9:42:e5: 62:b3:8a:63:f2:d1:d8:30:ae:df:17:76:6e:02:8a:a7:50:48: 3e:70:4b:0e:c3:ab:41:80:0f:3e:ab:0b:c4:81:5a:50:fa:da: 99:0f:ee:8b:08:23:dd:6f:84:9b:65:d9:63:41:b1:d3:d9:f8: da:e2:a5:d9:35:0d:e2:15:93:26:23:bf:fe:87:8f:0f:3b:90: 77:cb:05:74:32:fd:75:26:4a:30:3a:4a:1b:f1:46:56:27:54: ca:20:28:13:38:69:d2:f4:b0:0b:c7:59:0b:93:b6:80:84:37: 58:18:02:1a:ea:83:55:53:24:6c:40:17:8a:e2:c1:b3:73:08: 96:ff:4a:14:54:da:91:0e:8d:ac:f8:2d:3d:30:6f:21:c4:96: 05:8d:1c:92:3f:c7:fd:ca:0a:6a:7c:78:1b:6d:7b:ac:3e:bd: 3b:f6:43:a9:c3:04:e0:54:ae:c3:a0:0a:67:68:19:ec:87:33: 19:df:85:d3:85:d8:32:6e:95:0e:af:67:a9:d5:a6:e0:b8:be: 9d:8e:16:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDYyQTExMC8GA1UEBRMoMERBRjRGMUFDNTgxOTg5MzFBRDVDMDAwN0Y1MjU1QTc5 REQwRTRDNzAeFw0yNDEyMDQxNjI0MDZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTA4MjI2LTAzNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs3011Eqg2p5cbxNtsgIGsB9KbzMrxwcn5pwINPJivrzH5z34a2MvPehhXVzU5 wrO0SPbTDNnMAKJzRYK01h67eEIaZOr1UuiPzGSx2TampaQl3D92m6UGCFP4y0Wn bPYGzoFKHUx0u6mDr1xKW7hHOgPEU1nVwP/Cd54kMY03IvB48eB01mrhqiCuCEBV DcfeHYh4T6Jq39wH2Kc/ZiWbft1/Ko17VxJmscJMdpfkGzFz8dPLdH8ABNJX5bSe uV4aUmU50hSsXDmreM6f+Skp9T8xWoFMPam5NNT5dPQX9uEH2j+WtHv4l2/MidX2 rN1cxAEwzmV+EpWSlN1+akypAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU76HenUoc QGbGolyAB56XJrKlpQIwHwYDVR0jBBgwFoAUDa9PGsWBmJMa1cAAf1JVp53Q5Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NjJBLzRFQkE4NDZFNTg1 NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRGE5UEdzV0JtSk1hMWNBQWYxSlZwNTNRNU1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80RUJBODQ2RTU4NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi82MjZDQTY3MjU5 MTkxMUVGQUYxRjFEMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsBSWDANBgkqhkiG9w0BAQsFAAOCAQEADJj9YPLzU+KZxfzc QJBsKjq6sM/6MPTbQ+G7C7hn9CMce0Scoh8354EJUD3qT20RyeBxqULlYrOKY/LR 2DCu3xd2bgKKp1BIPnBLDsOrQYAPPqsLxIFaUPramQ/uiwgj3W+Em2XZY0Gx09n4 2uKl2TUN4hWTJiO//oePDzuQd8sFdDL9dSZKMDpKG/FGVidUyiAoEzhp0vSwC8dZ C5O2gIQ3WBgCGuqDVVMkbEAXiuLBs3MIlv9KFFTakQ6NrPgtPTBvIcSWBY0ckj/H /coKanx4G217rD69O/ZDqcME4FSuw6AKZ2gZ7IczGd+F04XYMm6VDq9nqdWm4Li+ nY4Wdg== -----END CERTIFICATE-----Generated at Sun Apr 6 10:19:53 2025 by rpki-client