$ rpki-client -vvf rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C28E34620A2011EC8B517885C4F9AE02.roa File: C28E34620A2011EC8B517885C4F9AE02.roa (raw, json) Hash identifier: WML6bSJiK9+KF/pEPMbVuQofZWsQq5X8goxfmm+ACQg= Subject key identifier: D6:C1:ED:33:7B:A0:52:E2:E3:2F:C5:4A:75:F5:DA:78:EB:4E:86:94 Certificate issuer: /CN=A91A60A9/serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Certificate serial: 3450 Authority key identifier: 77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C28E34620A2011EC8B517885C4F9AE02.roa Signing time: Thu 28 Nov 2024 14:30:23 +0000 ROA not before: Thu 28 Nov 2024 14:30:23 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7656 IP address blocks: 210.208.0.0/18 maxlen: 24 210.208.64.0/20 maxlen: 24 210.208.64.0/21 maxlen: 24 210.208.128.0/18 maxlen: 24 210.209.0.0/18 maxlen: 24 2407:680:8000::/33 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13392 (0x3450) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A60A9, serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Validity Not Before: Nov 28 14:30:23 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67487e7e-d5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:71:38:ce:87:86:a1:be:5c:77:df:de:8a: 23:25:12:7f:54:3f:8d:06:db:4e:a6:5b:62:8f:d8: 39:3b:f7:0a:53:5e:88:65:7a:aa:4c:92:f7:0c:70: 5e:74:94:46:ca:e6:e4:78:9c:2d:33:f8:30:33:6c: 13:89:0a:ca:a7:02:6a:b9:f4:3e:18:0d:35:e1:45: 4f:3f:87:b7:a2:59:df:fe:41:33:ff:49:64:7d:7d: b0:c4:18:56:79:c9:63:69:aa:24:92:26:13:c7:20: 58:dd:16:3b:b0:33:7e:46:fa:26:ab:65:96:1b:4a: 1c:c2:52:00:94:27:4a:f9:66:0f:80:b9:2c:e8:e4: 39:59:f1:57:d7:c8:97:6d:60:7f:82:65:cc:ee:4d: f0:ef:b6:b5:dc:52:23:9b:74:f8:be:d7:a7:f9:1a: 79:ea:96:a5:be:3b:9d:3c:6b:e3:83:f2:64:87:73: e2:8d:62:70:ad:01:20:45:75:af:9a:64:a3:57:75: 19:26:db:f4:db:6b:ee:fd:09:74:6d:52:9e:3b:66: 3e:11:73:9c:bb:65:de:44:a6:59:e9:56:f0:63:8c: 78:d3:b4:3f:b4:e1:5b:24:90:85:01:bb:ef:74:1e: 9e:8b:fb:d6:5f:de:50:aa:2f:ef:6f:52:b3:14:b9: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C1:ED:33:7B:A0:52:E2:E3:2F:C5:4A:75:F5:DA:78:EB:4E:86:94 X509v3 Authority Key Identifier: keyid:77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C28E34620A2011EC8B517885C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.208.0.0-210.208.79.255 210.208.128.0/18 210.209.0.0/18 IPv6: 2407:680:8000::/33 Signature Algorithm: sha256WithRSAEncryption 25:25:f1:ea:92:96:cc:05:29:b3:70:4a:5c:6b:16:82:c5:d5: f2:72:1b:fb:69:55:34:fe:ee:70:cd:36:fd:f1:c8:81:72:c2: 87:f3:8a:18:f9:5e:38:13:78:3e:a2:d7:2e:93:72:d3:80:3b: 2b:30:2a:32:55:59:e1:6d:75:ef:25:02:18:71:72:26:d3:57: 89:aa:a2:f0:00:0e:37:33:4f:f4:ab:17:36:e7:65:6e:a6:c0: 0d:53:07:55:ec:24:98:b6:ff:ca:88:71:b1:50:14:88:b4:ae: 34:03:8e:3f:4a:19:e6:d8:a4:41:0d:73:b0:73:96:bb:49:91: 34:ac:15:d9:57:03:0a:31:e6:db:b6:70:33:1b:f1:88:68:2b: 8f:7a:3d:85:c7:e7:c0:0c:76:ab:d8:df:5a:44:e7:46:48:5d: ae:d2:07:ba:79:01:d3:c1:7b:8d:f1:88:67:ad:4c:7e:1a:6f: c3:40:89:0b:bb:c4:a6:29:af:e5:29:f3:1b:dc:55:fa:e3:9e: a7:44:9a:76:8e:dc:54:61:22:11:5e:09:0f:be:a5:a0:1d:87: c1:67:d2:22:0c:5d:b1:a4:ed:38:7b:5e:5e:8f:1b:53:53:96: 33:25:ee:95:29:31:75:dd:30:6f:00:2d:82:8b:46:07:fc:f7: ae:76:4d:46 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICNFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYwQTkxMTAvBgNVBAUTKDc3ODdGMUU1M0U5Qjc4MTMyREU5QTc4NzExMDg4MzE2 REQ2MDU1QjMwHhcNMjQxMTI4MTQzMDIzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4N2U3ZS1kNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofRxOM6HhqG+XHff3oojJRJ/VD+NBttOpltij9g5O/cKU16IZXqqTJL3DHBe dJRGyubkeJwtM/gwM2wTiQrKpwJqufQ+GA014UVPP4e3olnf/kEz/0lkfX2wxBhW ecljaaokkiYTxyBY3RY7sDN+Rvomq2WWG0ocwlIAlCdK+WYPgLks6OQ5WfFX18iX bWB/gmXM7k3w77a13FIjm3T4vten+Rp56palvjudPGvjg/Jkh3PijWJwrQEgRXWv mmSjV3UZJtv022vu/Ql0bVKeO2Y+EXOcu2XeRKZZ6VbwY4x407Q/tOFbJJCFAbvv dB6ei/vWX95Qqi/vb1KzFLl2xwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFNbB7TN7 oFLi4y/FSnX12njrToaUMB8GA1UdIwQYMBaAFHeH8eU+m3gTLemnhxEIgxbdYFWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjBBOS82QkE4MDYxQTFE ODQxMUUyQjNBNTRGREEwOEIwMkNEMi9kNGZ4NVQ2YmVCTXQ2YWVIRVFpREZ0MWdW Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q0Zng1VDZiZUJNdDZhZUhFUWlERnQxZ1ZiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYwQTkvNkJBODA2MUExRDg0MTFFMkIzQTU0RkRBMDhCMDJDRDIvQzI4RTM0NjIw QTIwMTFFQzhCNTE3ODg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB8EAgABMBkwCwMDBNLQAwQE0tBAAwQG0tCAAwQG0tEAMA4EAgACMAgDBgck BwaAgDANBgkqhkiG9w0BAQsFAAOCAQEAJSXx6pKWzAUps3BKXGsWgsXV8nIb+2lV NP7ucM02/fHIgXLCh/OKGPleOBN4PqLXLpNy04A7KzAqMlVZ4W117yUCGHFyJtNX iaqi8AAONzNP9KsXNudlbqbADVMHVewkmLb/yohxsVAUiLSuNAOOP0oZ5tikQQ1z sHOWu0mRNKwV2VcDCjHm27ZwMxvxiGgrj3o9hcfnwAx2q9jfWkTnRkhdrtIHunkB 08F7jfGIZ61Mfhpvw0CJC7vEpimv5SnzG9xV+uOep0Sado7cVGEiEV4JD76loB2H wWfSIgxdsaTtOHteXo8bU1OWMyXulSkxdd0wbwAtgotGB/z3rnZNRg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:16 2025 by rpki-client