$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C179FC90721511EF9D7B9F3DC4F9AE02.roa File: C179FC90721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: NYseEyAtPg1I7mBSA/C4ygGfGjGJzgTAZ0JYBg+xkdw= Subject key identifier: 14:4C:CA:A9:BA:74:65:38:01:0A:8B:40:A8:03:29:EA:28:C1:7A:72 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 2E Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C179FC90721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:44 +0000 ROA not before: Fri 13 Sep 2024 21:18:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135528 IP address blocks: 202.29.37.0/24 maxlen: 24 2001:3c8:2a07::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac34-1610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:85:c1:fe:a4:84:0a:56:5b:e6:ba:fc:dd: 70:ad:c8:1d:55:b8:78:23:6a:c5:6c:69:0d:b6:60: 75:ec:d2:48:29:6a:68:d8:7f:2a:8c:8b:33:03:b2: 3a:e8:26:dd:2c:56:08:8c:8b:8e:55:85:33:47:10: 1b:f1:c8:3b:8b:8b:5d:d5:f8:d8:90:2a:d1:80:1d: 60:7d:fd:0e:b2:fc:1b:2d:be:26:6a:4b:da:78:f1: 87:58:f4:87:c0:fa:6c:6d:0f:55:77:af:d7:d5:e5: ee:9d:52:1e:91:28:8d:dc:0f:38:5f:e0:e7:11:6c: 18:65:ab:ff:3e:ec:78:05:16:fc:3c:90:b5:46:b5: ae:92:a3:07:99:5e:65:ca:5c:51:ab:6f:5c:22:32: 76:08:fc:66:26:8b:51:36:12:38:58:57:cd:cf:e2: f0:ff:0f:75:69:54:5e:30:42:d9:68:01:24:96:00: 55:88:1d:18:b0:d7:43:23:d2:31:56:05:78:d0:83: 7a:46:ae:49:dd:29:90:1b:a9:f6:62:d7:55:4a:50: 26:90:c7:84:fb:db:28:1a:3f:ae:bc:89:0c:1a:3e: 99:7b:90:05:c2:cc:e4:68:68:5e:d3:3c:eb:10:ca: 53:8a:4f:52:3f:4e:fc:57:18:8f:b4:13:9d:c2:43: 0e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4C:CA:A9:BA:74:65:38:01:0A:8B:40:A8:03:29:EA:28:C1:7A:72 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C179FC90721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.37.0/24 IPv6: 2001:3c8:2a07::/48 Signature Algorithm: sha256WithRSAEncryption 38:21:d2:2e:82:18:6d:41:09:ac:b1:0d:d5:4b:c3:c5:d9:e3: 52:a3:c4:fc:e4:e0:89:9b:b5:49:a4:f0:c0:56:f5:38:30:3b: de:08:09:4a:a2:22:e0:23:9e:f2:05:51:fd:41:42:83:80:cf: 7b:b2:dd:53:a4:2d:37:d1:7f:ab:c4:b9:73:40:5b:27:74:1a: f1:2a:81:b6:f3:6c:74:b4:e9:51:54:d6:fa:7f:d0:cc:5d:6e: b6:61:db:4c:1c:17:fa:95:de:11:1a:24:2c:37:16:fd:eb:03: f4:96:39:0e:0b:00:1b:f5:19:78:06:48:4d:d6:5d:0e:4b:ac: e9:c8:88:6a:a3:1b:da:cc:6c:9c:b6:0b:b4:65:ca:52:f8:8c: b4:21:3b:3e:26:ab:b0:2f:5c:1c:58:74:62:36:a6:29:91:8c: 01:cd:35:c0:15:1c:0b:01:ca:c8:8c:45:d5:05:77:4c:b4:0f: 72:89:65:63:a6:53:c0:b7:0c:af:12:1b:81:2f:f5:f2:c7:91: 98:03:ed:0d:42:f0:b6:9b:c5:b2:b6:4f:d6:91:2e:79:51:44: a7:44:d5:7c:45:9f:c5:43:a5:06:50:ae:f6:99:19:82:d3:5a: 3d:58:18:b2:c7:6e:cc:6b:81:d3:79:21:79:17:c3:f3:a8:2b: b7:a6:ed:92 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4NDRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzM0LTE2MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbDoXB/qSEClZb5rr83XCtyB1VuHgjasVsaQ22YHXs0kgpamjYfyqMizMDsjro Jt0sVgiMi45VhTNHEBvxyDuLi13V+NiQKtGAHWB9/Q6y/BstviZqS9p48YdY9IfA +mxtD1V3r9fV5e6dUh6RKI3cDzhf4OcRbBhlq/8+7HgFFvw8kLVGta6SoweZXmXK XFGrb1wiMnYI/GYmi1E2EjhYV83P4vD/D3VpVF4wQtloASSWAFWIHRiw10Mj0jFW BXjQg3pGrkndKZAbqfZi11VKUCaQx4T72ygaP668iQwaPpl7kAXCzORoaF7TPOsQ ylOKT1I/TvxXGI+0E53CQw6xAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUFEzKqbp0 ZTgBCotAqAMp6ijBenIwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9DMTc5RkM5MDcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAModJTAPBAIAAjAJAwcAIAEDyCoHMA0GCSqGSIb3DQEBCwUA A4IBAQA4IdIughhtQQmssQ3VS8PF2eNSo8T85OCJm7VJpPDAVvU4MDveCAlKoiLg I57yBVH9QUKDgM97st1TpC030X+rxLlzQFsndBrxKoG282x0tOlRVNb6f9DMXW62 YdtMHBf6ld4RGiQsNxb96wP0ljkOCwAb9Rl4BkhN1l0OS6zpyIhqoxvazGyctgu0 ZcpS+Iy0ITs+JquwL1wcWHRiNqYpkYwBzTXAFRwLAcrIjEXVBXdMtA9yiWVjplPA twyvEhuBL/Xyx5GYA+0NQvC2m8Wytk/WkS55UUSnRNV8RZ/FQ6UGUK72mRmC01o9 WBiyx27Ma4HTeSF5F8PzqCu3pu2S -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org