$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa File: BE983208721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: yIaaPPtwZZTXjIcSGptt/fd/59MMpTtT/rJleLotbg8= Subject key identifier: 52:63:35:87:50:BD:58:68:42:97:7D:13:EF:60:BC:04:43:4B:63:4C Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 29 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:39 +0000 ROA not before: Fri 13 Sep 2024 21:18:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132250 IP address blocks: 202.29.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:39 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac2f-9f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:b6:e1:18:7a:7d:e5:bd:dd:d0:f5:2a:5b: 4b:ca:cf:eb:62:01:37:b7:58:4e:84:e4:d3:40:95: 74:79:cb:41:dd:2d:f2:dd:66:af:f2:38:c0:f3:1f: a4:d5:db:aa:e0:63:56:0d:ee:5c:60:35:cc:89:6c: 89:27:1a:33:e9:a7:93:b9:2c:f4:97:ef:1e:fa:07: b2:11:27:b0:1f:bb:77:54:00:bc:69:8c:63:57:59: f1:1b:2e:a6:bc:fd:18:8e:24:d9:87:a7:e2:30:58: d5:39:2c:58:b5:58:ef:6f:37:32:fc:88:4b:49:ab: e4:94:9b:ff:eb:16:4a:7f:14:11:d8:4c:aa:ed:ac: 30:57:34:c5:eb:8b:e4:a0:d4:21:cb:f3:f9:dd:57: 05:d8:ec:d4:b0:11:ed:44:d9:ed:ab:eb:11:77:b1: 59:ec:68:f1:a4:14:08:33:c7:7b:3c:fd:99:e0:70: c2:60:c7:04:1d:e1:96:6d:7a:8b:6c:f8:88:cd:90: bf:2c:52:b6:02:00:2c:d6:c2:33:38:ea:3b:42:6f: 8e:eb:bd:85:a7:39:bf:15:c7:4c:c6:01:49:89:d4: f9:a7:95:12:d2:e0:a1:2c:5a:58:67:c0:89:d9:a9: 37:e1:b4:c2:19:ba:55:b5:19:9e:e3:26:d6:8f:22: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:63:35:87:50:BD:58:68:42:97:7D:13:EF:60:BC:04:43:4B:63:4C X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.70.0/24 Signature Algorithm: sha256WithRSAEncryption 89:19:00:39:12:46:de:04:97:91:d9:f1:f3:dd:ad:f5:1a:72: 8f:ac:c6:08:16:31:87:55:35:1c:9f:8a:00:cf:df:b8:73:9c: 10:b8:73:db:7c:f6:f7:e1:30:cd:37:b3:3d:e8:f9:f5:6e:80: fb:fb:2c:49:24:77:ce:15:0a:e6:04:bc:61:af:36:6f:30:c0: d0:48:ba:f6:11:8d:5a:7a:92:04:e7:10:76:ba:1b:bc:23:2c: 8f:61:61:26:c8:74:ba:c0:ee:b0:19:59:0b:73:d5:7b:c3:bb: 79:d9:38:21:35:0b:4e:de:bc:e4:18:61:7f:be:be:1a:f0:2a: 80:f5:0a:64:9f:50:78:9c:2f:d0:52:e4:42:31:15:3f:8e:6e: a9:7f:b5:7d:0b:3a:ee:d3:a5:0a:f6:66:f3:46:30:87:4f:fd: cf:1d:35:19:33:d8:66:6f:8c:98:38:bd:a7:f9:6f:22:ad:e4: a6:b7:52:28:9e:97:31:6e:88:01:ec:20:cb:32:a2:6e:08:d3: 54:60:99:ab:fe:26:a4:0a:47:a6:79:5b:24:63:a5:c6:0d:b3: c5:31:dc:87:39:f0:17:a5:8e:79:82:12:8b:2f:fb:f8:63:f8: a1:6a:c7:12:94:11:14:76:86:56:f1:fd:56:88:22:ff:8a:5d: 54:16:40:71 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4MzlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzJmLTlmNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1U7bhGHp95b3d0PUqW0vKz+tiATe3WE6E5NNAlXR5y0HdLfLdZq/yOMDzH6TV 26rgY1YN7lxgNcyJbIknGjPpp5O5LPSX7x76B7IRJ7Afu3dUALxpjGNXWfEbLqa8 /RiOJNmHp+IwWNU5LFi1WO9vNzL8iEtJq+SUm//rFkp/FBHYTKrtrDBXNMXri+Sg 1CHL8/ndVwXY7NSwEe1E2e2r6xF3sVnsaPGkFAgzx3s8/ZngcMJgxwQd4ZZteots +IjNkL8sUrYCACzWwjM46jtCb47rvYWnOb8Vx0zGAUmJ1PmnlRLS4KEsWlhnwInZ qTfhtMIZulW1GZ7jJtaPIttrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUmM1h1C9 WGhCl30T72C8BENLY0wwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9CRTk4MzIwODcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModRjANBgkqhkiG9w0BAQsFAAOCAQEAiRkAORJG3gSXkdnx 892t9Rpyj6zGCBYxh1U1HJ+KAM/fuHOcELhz23z29+EwzTezPej59W6A+/ssSSR3 zhUK5gS8Ya82bzDA0Ei69hGNWnqSBOcQdrobvCMsj2FhJsh0usDusBlZC3PVe8O7 edk4ITULTt685Bhhf76+GvAqgPUKZJ9QeJwv0FLkQjEVP45uqX+1fQs67tOlCvZm 80Ywh0/9zx01GTPYZm+MmDi9p/lvIq3kprdSKJ6XMW6IAewgyzKibgjTVGCZq/4m pApHpnlbJGOlxg2zxTHchznwF6WOeYISiy/7+GP4oWrHEpQRFHaGVvH9Vogi/4pd VBZAcQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org