$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa File: C0F1CF78721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: 98lL6gH5Qqcfi5iU5V77/dDGvizYxgp6zesD8aqX51A= Subject key identifier: 19:05:89:1D:92:34:B3:12:A4:4E:C5:AA:2A:0F:AA:DA:4B:A6:13:09 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 2D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:43 +0000 ROA not before: Fri 13 Sep 2024 21:18:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134690 IP address blocks: 202.29.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac33-e8ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:28:c8:01:63:1e:75:cd:43:00:6a:eb:89: cc:9a:ac:0c:c6:d5:42:48:e0:bc:18:ef:6b:88:59: f3:6d:0d:f0:39:70:1f:33:97:3e:43:38:3f:41:e4: 11:7c:bd:e3:88:06:81:03:55:48:8f:82:00:bf:83: 08:ec:6f:f8:27:62:68:ef:0f:1a:a4:0b:21:c7:95: f0:49:3c:5e:69:52:ae:13:3e:cd:fa:d8:56:ee:a3: 7e:4a:82:dd:89:d3:60:53:42:41:73:01:9f:f7:f9: 3a:89:b1:e0:8e:64:4f:89:69:43:a9:27:97:18:0e: 10:18:91:48:e7:9f:2c:10:c8:fa:5d:ca:0d:6d:dc: 4e:ee:73:4f:90:59:c4:f7:cd:d8:27:93:50:26:4e: 43:77:b2:2d:fe:e7:53:e7:18:db:e6:ee:e7:59:57: cd:85:eb:0f:c8:71:e8:2e:65:7f:8c:33:10:89:bf: 40:ef:7b:a9:84:ef:28:87:52:7c:19:69:cf:49:e4: 97:21:77:0a:73:cf:70:91:49:b6:60:0d:29:da:8f: d3:1c:fc:0f:7e:54:e2:44:49:fa:b2:c6:b1:44:c6: 29:96:df:c8:d3:17:1b:b3:fc:01:d3:02:36:76:d5: b0:65:b9:8e:f7:38:ab:5c:5f:27:78:0f:71:bb:ef: c3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:05:89:1D:92:34:B3:12:A4:4E:C5:AA:2A:0F:AA:DA:4B:A6:13:09 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0F1CF78721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.98.0/24 Signature Algorithm: sha256WithRSAEncryption 69:ff:f0:2c:da:e0:cd:4b:4a:c6:52:e1:e8:8a:1f:80:78:a0: 96:a6:69:b8:43:04:4c:92:fa:b8:a8:30:83:90:fc:94:d5:96: fc:9c:93:42:3c:33:84:0d:a5:b5:c6:5b:32:c1:46:89:b6:6c: 07:66:4e:5b:b1:9e:67:71:b7:b6:f9:2a:dc:62:d3:ea:79:7f: df:09:34:cb:1a:0d:74:62:cc:65:19:00:90:16:18:1c:df:5a: fd:97:ae:3b:92:54:97:da:72:8d:6a:3a:3c:5c:7a:ff:69:78: 73:8a:94:48:ff:16:5d:e2:10:81:7d:42:ca:c9:25:60:c4:7b: 94:2d:15:48:5e:82:8b:e1:d5:4b:bf:b4:33:cd:2f:20:f8:3a: e3:14:97:38:28:c8:8a:e4:c0:aa:b2:6b:0d:97:f7:4e:89:c1: 7f:cc:a6:84:48:00:41:80:4d:60:69:51:98:45:c7:33:2a:28: 74:2e:a2:68:77:22:8c:be:2e:06:aa:cc:43:ed:24:04:e5:fc: 6d:05:b6:d4:6d:9a:1f:6b:05:bb:07:0a:7f:ed:50:8f:de:4e: 9e:32:2a:a8:fc:93:0d:4c:40:16:f2:4a:98:1d:72:8a:11:d9: 33:6d:48:b3:da:bb:7d:f1:cf:d9:de:58:2a:d2:4b:fd:4a:91: 54:42:f3:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4NDNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzMzLWU4Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC35yjIAWMedc1DAGrricyarAzG1UJI4LwY72uIWfNtDfA5cB8zlz5DOD9B5BF8 veOIBoEDVUiPggC/gwjsb/gnYmjvDxqkCyHHlfBJPF5pUq4TPs362Fbuo35Kgt2J 02BTQkFzAZ/3+TqJseCOZE+JaUOpJ5cYDhAYkUjnnywQyPpdyg1t3E7uc0+QWcT3 zdgnk1AmTkN3si3+51PnGNvm7udZV82F6w/IceguZX+MMxCJv0Dve6mE7yiHUnwZ ac9J5Jchdwpzz3CRSbZgDSnaj9Mc/A9+VOJESfqyxrFEximW38jTFxuz/AHTAjZ2 1bBluY73OKtcXyd4D3G778NJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGQWJHZI0 sxKkTsWqKg+q2kumEwkwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9DMEYxQ0Y3ODcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModYjANBgkqhkiG9w0BAQsFAAOCAQEAaf/wLNrgzUtKxlLh 6IofgHiglqZpuEMETJL6uKgwg5D8lNWW/JyTQjwzhA2ltcZbMsFGibZsB2ZOW7Ge Z3G3tvkq3GLT6nl/3wk0yxoNdGLMZRkAkBYYHN9a/ZeuO5JUl9pyjWo6PFx6/2l4 c4qUSP8WXeIQgX1CysklYMR7lC0VSF6Ci+HVS7+0M80vIPg64xSXOCjIiuTAqrJr DZf3TonBf8ymhEgAQYBNYGlRmEXHMyoodC6iaHcijL4uBqrMQ+0kBOX8bQW21G2a H2sFuwcKf+1Qj95OnjIqqPyTDUxAFvJKmB1yihHZM21Is9q7ffHP2d5YKtJL/UqR VELzIw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org