$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/13CC60A0722011EF981BE15DC4F9AE02.roa File: 13CC60A0722011EF981BE15DC4F9AE02.roa (raw, json) Hash identifier: xCRvJ3aeCxN5H3qQe4Gmjw5+JV+umFA1e9Rme/mENfQ= Subject key identifier: 65:66:B8:50:8D:E9:76:2B:05:A7:56:B0:51:C1:85:5E:5B:81:21:3D Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: C1 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/13CC60A0722011EF981BE15DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:10 +0000 ROA not before: Sat 21 Dec 2024 05:50:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24475 IP address blocks: 202.29.12.0/24 maxlen: 24 2001:3c8:1012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:10 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665712-4bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:12:31:60:c9:45:8b:e8:69:d6:96:d9:a0:ad: fc:77:7c:ad:44:30:c9:a1:e4:89:64:71:f6:15:17: e0:e4:07:f8:a5:b2:1d:b0:53:78:db:ac:28:ac:a5: 3e:f7:a3:fe:d3:ef:83:3c:18:41:79:c4:2d:a7:d1: 14:85:61:42:63:fc:a5:aa:e2:d5:08:cf:fc:b6:14: 19:30:a1:fc:72:f2:16:0f:f7:49:59:41:8c:3e:1a: 2c:95:e0:6d:04:53:17:c4:ab:81:d5:6e:33:bb:f2: 16:a6:b0:c8:6c:25:e1:0d:28:5d:8a:df:9d:ed:10: 67:5a:42:dd:1b:d7:b4:46:73:f5:52:ea:78:13:45: 00:9a:45:68:0b:3f:93:12:7a:0d:e8:a4:2f:1c:20: 7b:3f:e5:45:49:0a:22:9e:d7:2d:68:0e:20:2c:46: b5:f7:5a:0d:7e:f8:5b:4f:bf:e6:19:eb:ee:c5:25: 15:8e:76:b3:8b:f8:66:8a:3f:b2:a7:71:6c:26:b4: 76:fc:a4:34:f0:0e:98:04:76:ec:65:3e:50:95:00: 1c:1a:81:36:ec:f9:72:80:7a:6b:66:f0:80:09:b1: a7:03:1e:75:c1:02:28:df:df:6d:79:e3:b2:2e:0f: 8b:1e:af:30:89:7b:c5:a8:dc:00:c7:d4:15:ab:37: ee:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:66:B8:50:8D:E9:76:2B:05:A7:56:B0:51:C1:85:5E:5B:81:21:3D X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/13CC60A0722011EF981BE15DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.12.0/24 IPv6: 2001:3c8:1012::/48 Signature Algorithm: sha256WithRSAEncryption 90:55:58:77:35:53:86:33:f1:b3:a9:c0:b3:0e:e3:b8:f7:c2: 51:84:4f:79:0d:1a:c2:2e:75:7f:9d:67:7b:28:2d:5b:f4:87: 0d:17:0d:fc:63:9b:32:cf:2b:91:90:a6:6c:8f:d4:af:31:7c: c6:fa:4d:09:e1:d3:f0:88:15:b6:55:05:9b:a8:72:3a:82:b2: 5a:bb:fb:f7:8f:4b:07:9f:c1:51:ed:e7:b9:39:f3:11:06:ad: 4a:f4:24:f5:c7:1a:10:ce:a0:41:6d:7b:bf:fe:e3:ab:13:9c: f7:fe:14:65:dd:1d:5f:df:1b:2c:46:15:27:1f:fa:e0:e3:7a: c5:56:d7:c2:d4:92:30:bc:61:0b:13:50:3b:63:7b:3b:35:36: ce:21:1e:88:45:e5:a9:94:2f:11:d8:e8:67:2d:b2:2d:b3:c4: 94:c2:73:56:7c:9d:19:d3:bf:ba:c4:08:e3:7f:b9:70:66:71: b1:98:fb:fc:c8:83:f9:14:78:34:b2:55:95:d0:8b:aa:a4:19: 31:0c:40:8e:30:ad:dc:5c:5a:62:65:ed:90:ab:fd:07:ce:91: 41:0d:6c:08:82:23:35:38:84:51:f9:2a:33:7c:bd:9c:45:c5: 68:f4:ee:c9:3c:53:34:d4:04:6f:e4:f0:7e:11:fb:f3:bf:d4: 6b:9d:de:8b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDEwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxMi00YmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BIxYMlFi+hp1pbZoK38d3ytRDDJoeSJZHH2FRfg5Af4pbIdsFN426worKU+ 96P+0++DPBhBecQtp9EUhWFCY/ylquLVCM/8thQZMKH8cvIWD/dJWUGMPhosleBt BFMXxKuB1W4zu/IWprDIbCXhDShdit+d7RBnWkLdG9e0RnP1Uup4E0UAmkVoCz+T EnoN6KQvHCB7P+VFSQointctaA4gLEa191oNfvhbT7/mGevuxSUVjnazi/hmij+y p3FsJrR2/KQ08A6YBHbsZT5QlQAcGoE27PlygHprZvCACbGnAx51wQIo399teeOy Lg+LHq8wiXvFqNwAx9QVqzfu2wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGVmuFCN 6XYrBadWsFHBhV5bgSE9MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMTNDQzYwQTA3 MjIwMTFFRjk4MUJFMTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKHQwwDwQCAAIwCQMHACABA8gQEjANBgkqhkiG9w0BAQsF AAOCAQEAkFVYdzVThjPxs6nAsw7juPfCUYRPeQ0awi51f51neygtW/SHDRcN/GOb Ms8rkZCmbI/UrzF8xvpNCeHT8IgVtlUFm6hyOoKyWrv7949LB5/BUe3nuTnzEQat SvQk9ccaEM6gQW17v/7jqxOc9/4UZd0dX98bLEYVJx/64ON6xVbXwtSSMLxhCxNQ O2N7OzU2ziEeiEXlqZQvEdjoZy2yLbPElMJzVnydGdO/usQI43+5cGZxsZj7/MiD +RR4NLJVldCLqqQZMQxAjjCt3FxaYmXtkKv9B86RQQ1sCIIjNTiEUfkqM3y9nEXF aPTuyTxTNNQEb+TwfhH787/Ua53eiw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:28 2025 by rpki-client