$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7DCC2C42721B11EF81654E68C4F9AE02.roa File: 7DCC2C42721B11EF81654E68C4F9AE02.roa (raw, json) Hash identifier: 2d9SfSbfWwcwwAAisxCfvNt7cyFCvEzlz7XkO3U6J6Q= Subject key identifier: A6:66:39:4E:32:B7:09:5E:E2:C0:E5:7A:B7:15:3C:17:BA:BD:22:69 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B2 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7DCC2C42721B11EF81654E68C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:53 +0000 ROA not before: Sat 21 Dec 2024 05:49:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139753 IP address blocks: 202.29.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665701-3c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:96:b4:e9:85:9c:e5:21:3d:e5:12:1d:52:e4: d4:4c:49:ae:bb:66:6d:fd:3b:11:1a:c6:94:cc:2a: 27:f9:42:6b:e0:a4:cc:27:f9:fd:b8:11:b0:9c:aa: 6b:aa:ee:a0:7f:43:7b:fa:fe:93:38:20:0a:8c:86: ac:03:69:39:fe:75:43:c6:c1:8d:20:e5:f6:e8:e0: 7f:63:1c:ae:b7:04:06:cd:66:f2:4a:6e:d3:70:e0: 7a:92:0a:d3:3d:c0:9f:74:08:7e:b2:f8:a7:33:d5: d2:bc:fc:54:6d:b7:d1:31:91:28:ad:8d:88:cf:e4: 87:bc:98:95:52:16:bd:98:17:08:6b:70:dd:23:87: 7f:ee:93:fc:41:01:b9:9a:19:2b:ee:52:54:54:24: 27:f1:25:89:21:36:9c:4f:70:13:9b:27:21:a4:75: ec:20:66:f1:08:07:8b:33:f3:24:49:45:2f:eb:9a: e1:86:0d:6b:4c:22:7c:db:28:bd:16:a3:4d:0a:f0: b9:c1:ef:09:6e:e9:2f:d1:75:32:08:2e:68:8c:df: 16:c7:ae:27:b9:42:ce:ce:14:11:17:99:e6:2d:ea: d5:d4:eb:82:0c:a3:13:2c:dd:f0:6c:05:b8:a4:d6: 54:02:00:ac:e1:92:13:b4:83:a6:14:0e:98:2f:18: 33:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:66:39:4E:32:B7:09:5E:E2:C0:E5:7A:B7:15:3C:17:BA:BD:22:69 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7DCC2C42721B11EF81654E68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.39.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:0c:ff:2f:8e:24:f0:fd:5c:f0:46:23:b0:e8:b0:44:f7:3d: ca:18:fc:a4:9b:67:47:30:b9:04:01:64:ac:be:47:a6:97:57: f9:c8:fb:41:d9:8d:c2:a5:b5:31:9d:75:f2:ca:c5:e7:fe:c1: 30:d9:b9:d7:df:51:8e:43:69:86:fe:0b:ae:d8:b7:f7:08:b7: 53:1d:09:e8:dc:0f:c3:72:f9:ea:65:f4:63:12:3d:95:ac:7e: ba:e8:94:d7:e6:f1:e1:96:4b:3c:35:39:46:15:4c:90:78:e3: 8d:e8:e1:ff:63:e4:8a:cb:a8:ff:bf:f6:6c:66:7a:20:f3:61: b3:ea:a0:71:4e:e3:e7:0d:f6:0e:ee:aa:3b:f4:99:f5:3f:59: 43:43:4b:f2:f6:54:d7:90:87:61:cd:8b:44:90:62:6c:46:e9: 08:9a:c2:7d:89:c7:b4:a4:50:10:a2:23:ca:ec:09:b5:e7:3a: da:28:57:95:d9:d9:42:12:c3:66:71:d3:5c:92:3a:de:b9:41: 52:b2:71:01:e3:01:b0:7e:e2:59:5a:19:d5:e8:e3:5e:2b:31: af:4b:7e:0e:aa:c8:c3:f0:a2:1d:f7:83:c8:fe:4b:07:94:63: 16:9d:12:32:6f:4a:c6:f2:f9:2a:2a:8e:69:09:45:fc:fe:74: 57:d9:34:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwMS0zYzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpa06YWc5SE95RIdUuTUTEmuu2Zt/TsRGsaUzCon+UJr4KTMJ/n9uBGwnKpr qu6gf0N7+v6TOCAKjIasA2k5/nVDxsGNIOX26OB/YxyutwQGzWbySm7TcOB6kgrT PcCfdAh+svinM9XSvPxUbbfRMZEorY2Iz+SHvJiVUha9mBcIa3DdI4d/7pP8QQG5 mhkr7lJUVCQn8SWJITacT3ATmychpHXsIGbxCAeLM/MkSUUv65rhhg1rTCJ82yi9 FqNNCvC5we8Jbukv0XUyCC5ojN8Wx64nuULOzhQRF5nmLerV1OuCDKMTLN3wbAW4 pNZUAgCs4ZITtIOmFA6YLxgz0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZmOU4y twle4sDlercVPBe6vSJpMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvN0RDQzJDNDI3 MjFCMTFFRjgxNjU0RTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHScwDQYJKoZIhvcNAQELBQADggEBAAoM/y+OJPD9XPBG I7DosET3PcoY/KSbZ0cwuQQBZKy+R6aXV/nI+0HZjcKltTGddfLKxef+wTDZudff UY5DaYb+C67Yt/cIt1MdCejcD8Ny+epl9GMSPZWsfrrolNfm8eGWSzw1OUYVTJB4 443o4f9j5IrLqP+/9mxmeiDzYbPqoHFO4+cN9g7uqjv0mfU/WUNDS/L2VNeQh2HN i0SQYmxG6Qiawn2Jx7SkUBCiI8rsCbXnOtooV5XZ2UISw2Zx01ySOt65QVKycQHj AbB+4llaGdXo414rMa9Lfg6qyMPwoh33g8j+SweUYxadEjJvSsby+SoqjmkJRfz+ dFfZNAo= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:35 2025 by rpki-client