$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa File: BE983208721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: a1s6JyFbMob4dR7ceUr46dAXsMq2Yzc5JhP2yu3dsF4= Subject key identifier: BA:24:78:FC:B0:A1:A1:FD:10:AA:38:44:F3:6F:7B:22:CB:37:10:3A Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 9D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:35 +0000 ROA not before: Sat 21 Dec 2024 05:49:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132250 IP address blocks: 202.29.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656ef-0323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:99:da:6f:21:17:f7:42:c5:39:9a:b1:e3:a0: ff:ac:39:88:6e:b5:38:34:00:00:b5:06:9f:ae:01: 3f:b1:78:ab:23:81:b6:a6:ad:96:ad:c4:7a:41:46: b3:eb:4b:2f:bd:42:a8:44:0a:42:c2:c3:ac:6d:a5: b6:1b:b4:2b:30:60:ba:e7:80:24:56:dd:4d:ff:a6: 71:d7:b7:08:e3:59:b7:3a:7c:91:f4:62:ee:04:51: 77:ca:55:96:1f:65:42:91:66:56:0a:8a:d6:44:6b: 2f:01:46:02:41:8d:08:e5:ea:71:d2:a7:4b:f0:3f: 17:94:76:c5:9a:69:83:22:6d:e3:4c:2f:e1:98:7f: 31:e4:e6:ab:72:d4:2c:8f:91:5e:ab:71:b0:27:a5: 03:fb:a0:19:a4:d0:d1:95:d5:f1:6b:b6:4b:fe:70: f5:30:25:0b:f3:d5:25:ff:6b:5a:f1:8c:1e:aa:79: 4e:cb:14:9e:32:d6:16:41:f0:23:ce:3c:5d:a1:60: 0d:e4:ed:50:f7:74:6f:98:97:f6:5c:fb:0a:d9:50: da:a3:5c:a9:da:3a:d7:c3:6c:a4:bc:88:57:e2:cb: 2e:04:c5:47:84:2f:15:31:1a:ce:82:98:71:ad:2b: 9f:f5:a9:71:96:e6:46:f8:b7:4f:78:b6:14:49:c0: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:78:FC:B0:A1:A1:FD:10:AA:38:44:F3:6F:7B:22:CB:37:10:3A X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/BE983208721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.70.0/24 Signature Algorithm: sha256WithRSAEncryption 36:48:a0:57:99:10:f0:3a:d0:ed:c9:57:91:d5:05:7f:02:5c: 5d:ca:3e:65:8c:a6:56:0a:e3:82:94:01:5c:15:87:48:0c:f3: b2:77:ed:6d:59:1b:96:cf:3c:4f:24:52:b5:bb:d4:44:29:eb: 10:9f:50:9d:0a:a2:f9:55:6a:8d:c3:0e:6b:e4:b4:cd:c8:67: b3:5b:5e:f0:06:b5:12:41:2a:fc:d0:2b:4b:1e:8b:37:a9:51: 32:d6:ee:bb:23:f4:9f:5e:eb:d9:4c:f8:28:02:7e:ef:9b:4e: 5c:22:1e:c2:fb:b2:92:fa:4d:fe:69:ab:38:d1:fb:e2:2c:dc: be:48:9d:d0:46:b4:cb:b8:6c:64:c0:76:1f:06:e8:32:57:8d: 47:c7:2b:35:89:44:03:9e:20:3f:03:85:18:fd:d4:4c:c7:93: c8:10:c3:4e:ce:f0:39:74:7e:7a:1e:0a:bf:7f:6c:a3:42:3f: ae:0c:9c:00:23:15:b7:de:44:dd:d3:58:40:ad:e3:f6:f3:c1: d7:99:61:2b:26:a1:7a:9a:3c:79:b6:7f:a5:af:80:e7:38:cb: cd:9e:d4:da:cc:6e:15:18:87:de:92:71:23:d2:bf:38:74:7b: 63:aa:1c:c0:42:ea:f9:80:ae:60:dc:60:25:f5:16:a7:2b:33: 26:82:9e:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZlZi0wMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJnabyEX90LFOZqx46D/rDmIbrU4NAAAtQafrgE/sXirI4G2pq2WrcR6QUaz 60svvUKoRApCwsOsbaW2G7QrMGC654AkVt1N/6Zx17cI41m3OnyR9GLuBFF3ylWW H2VCkWZWCorWRGsvAUYCQY0I5epx0qdL8D8XlHbFmmmDIm3jTC/hmH8x5OarctQs j5Feq3GwJ6UD+6AZpNDRldXxa7ZL/nD1MCUL89Ul/2ta8YweqnlOyxSeMtYWQfAj zjxdoWAN5O1Q93RvmJf2XPsK2VDao1yp2jrXw2ykvIhX4ssuBMVHhC8VMRrOgphx rSuf9alxluZG+LdPeLYUScDrHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLokePyw oaH9EKo4RPNveyLLNxA6MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQkU5ODMyMDg3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHUYwDQYJKoZIhvcNAQELBQADggEBADZIoFeZEPA60O3J V5HVBX8CXF3KPmWMplYK44KUAVwVh0gM87J37W1ZG5bPPE8kUrW71EQp6xCfUJ0K ovlVao3DDmvktM3IZ7NbXvAGtRJBKvzQK0seizepUTLW7rsj9J9e69lM+CgCfu+b TlwiHsL7spL6Tf5pqzjR++Is3L5IndBGtMu4bGTAdh8G6DJXjUfHKzWJRAOeID8D hRj91EzHk8gQw07O8Dl0fnoeCr9/bKNCP64MnAAjFbfeRN3TWECt4/bzwdeZYSsm oXqaPHm2f6WvgOc4y82e1NrMbhUYh96ScSPSvzh0e2OqHMBC6vmArmDcYCX1Fqcr MyaCnps= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:50 2025 by rpki-client