$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa File: C0F1CF78721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: tYdyOlV3C2YdplhJJrkr71owb1mwMoYyv5uE6PWymoc= Subject key identifier: 1E:28:FB:D5:BC:E3:A7:E2:70:76:17:3E:4C:E4:B2:7A:D9:53:A5:BA Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: A6 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:43 +0000 ROA not before: Sat 21 Dec 2024 05:49:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134690 IP address blocks: 202.29.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656f7-df28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e1:9a:00:f3:ce:65:1f:11:e2:d1:dc:bc:bb: 0b:4d:2c:d5:10:ea:7e:bb:ca:71:ff:31:da:0c:5d: f8:77:ad:04:c8:93:40:1d:72:e1:bf:9a:c3:f7:39: f2:40:b3:0a:01:4b:2f:b2:3e:d5:1c:38:13:a6:bc: 3d:04:39:59:e7:26:ca:2b:35:4c:17:fe:d3:cf:c8: 7f:ab:0d:5a:c4:4f:3e:57:87:66:8a:53:fc:40:a3: ea:f1:f2:85:e4:02:e7:80:34:08:1d:6c:0b:3b:4b: 20:77:f8:4a:bb:b6:3c:78:48:d3:11:53:09:9d:38: 05:c7:7b:a7:d2:de:14:64:49:c1:65:10:d3:0a:5e: b2:cd:05:3a:88:c7:ac:a3:d0:21:3a:b5:58:e7:60: b4:db:3c:c2:9d:3b:a1:a1:4f:43:c0:8b:fd:63:04: 98:d6:79:4f:d5:de:72:d0:b8:51:e6:de:f0:39:8c: 74:c4:e2:62:4a:4e:5a:82:d7:6f:8c:2d:a6:c4:8b: e0:e2:5f:fc:b5:a5:d8:07:83:8c:d7:00:63:ba:90: 0f:ec:c4:d3:a0:f4:a7:1a:cf:b0:17:6e:11:c6:0f: b2:67:4e:66:2a:57:13:ef:d3:58:64:3c:19:f2:38: 05:f7:03:b8:74:40:91:ba:a2:2c:81:5d:89:80:5a: fc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:28:FB:D5:BC:E3:A7:E2:70:76:17:3E:4C:E4:B2:7A:D9:53:A5:BA X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.98.0/24 Signature Algorithm: sha256WithRSAEncryption 57:6e:87:d0:4c:6e:5f:18:aa:2b:65:7d:b2:c7:54:6e:f8:e5: 51:7e:54:b8:4c:e6:ad:c3:f6:6a:cd:18:12:0b:cf:e7:da:60: d0:cf:cd:38:48:ab:28:7e:24:6e:ae:68:58:89:88:8d:20:cf: 50:40:5b:89:05:3e:d9:c6:a5:5d:3a:da:c7:20:d4:74:b5:51: ee:30:a9:30:d6:c4:4a:c6:c9:c5:8b:16:8e:4f:a0:6b:97:a3: 3b:c3:c8:f6:b8:31:51:65:0c:a2:f5:d6:73:58:bc:85:c3:e2: 70:e2:29:bd:e0:f3:27:d4:9a:4a:fa:47:f0:fc:ee:45:2f:85: 86:1d:7a:12:12:43:d9:55:e9:52:8c:22:91:02:d4:3e:02:4d: 4a:22:1b:2c:e8:5e:64:c8:01:9e:58:54:6e:e8:6b:03:a7:3e: f7:17:a8:47:09:df:b1:71:5d:91:f8:a5:ab:c6:80:08:e8:34: 7e:64:a9:c2:c2:29:8b:0b:39:89:df:e7:12:93:a2:d0:20:29: dd:22:ad:6d:b0:7d:14:66:c8:5e:a7:7e:a0:4a:7f:e8:6a:a5: 6a:a5:9e:3a:0c:92:66:b5:ce:68:e1:63:8f:cf:86:2d:c0:23: 5b:4c:c0:f2:9d:f7:41:a7:7e:40:36:f8:94:0f:c5:ed:e0:70: 0e:8e:a2:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmNy1kZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveGaAPPOZR8R4tHcvLsLTSzVEOp+u8px/zHaDF34d60EyJNAHXLhv5rD9zny QLMKAUsvsj7VHDgTprw9BDlZ5ybKKzVMF/7Tz8h/qw1axE8+V4dmilP8QKPq8fKF 5ALngDQIHWwLO0sgd/hKu7Y8eEjTEVMJnTgFx3un0t4UZEnBZRDTCl6yzQU6iMes o9AhOrVY52C02zzCnTuhoU9DwIv9YwSY1nlP1d5y0LhR5t7wOYx0xOJiSk5agtdv jC2mxIvg4l/8taXYB4OM1wBjupAP7MTToPSnGs+wF24Rxg+yZ05mKlcT79NYZDwZ 8jgF9wO4dECRuqIsgV2JgFr8pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4o+9W8 46ficHYXPkzksnrZU6W6MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzBGMUNGNzg3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHWIwDQYJKoZIhvcNAQELBQADggEBAFduh9BMbl8Yqitl fbLHVG745VF+VLhM5q3D9mrNGBILz+faYNDPzThIqyh+JG6uaFiJiI0gz1BAW4kF PtnGpV062scg1HS1Ue4wqTDWxErGycWLFo5PoGuXozvDyPa4MVFlDKL11nNYvIXD 4nDiKb3g8yfUmkr6R/D87kUvhYYdehISQ9lV6VKMIpEC1D4CTUoiGyzoXmTIAZ5Y VG7oawOnPvcXqEcJ37FxXZH4pavGgAjoNH5kqcLCKYsLOYnf5xKTotAgKd0irW2w fRRmyF6nfqBKf+hqpWqlnjoMkma1zmjhY4/Phi3AI1tMwPKd90GnfkA2+JQPxe3g cA6Oot4= -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:01 2025 by rpki-client