$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa File: EC690734721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: 1Z1uI6l+Sl0xOxCIoJwKoJ1BtEOSwrauPv7RVpTnU1I= Subject key identifier: 73:B1:84:25:4F:B1:0F:A9:64:7A:43:A9:FB:87:23:50:71:C1:4A:92 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 9B Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:33 +0000 ROA not before: Sat 21 Dec 2024 05:49:33 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 131246 IP address blocks: 202.29.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:33 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656ed-2b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b3:9e:c5:f5:52:74:71:b0:a0:6b:f3:bc:0a: e5:56:a4:27:7c:2a:5c:ea:e0:12:5c:85:c2:a0:af: d0:83:59:ef:64:57:19:98:c1:e4:9f:ef:a8:c8:9d: 7d:23:83:68:5f:fc:f8:ac:9d:6e:d8:6c:87:43:57: a1:7f:d9:e6:59:d2:40:58:67:42:9c:e2:97:12:b2: 84:b9:ea:c4:cc:6d:9a:31:72:ee:e3:55:4c:63:ad: 33:25:00:c1:db:13:14:70:71:e9:8b:9b:2d:1a:ad: c9:f0:cb:36:1f:01:07:b1:cd:be:64:b2:ea:b9:48: 7d:65:6a:e9:8d:83:ff:8f:11:c8:41:bd:6d:9c:fe: e7:75:2a:f3:82:84:75:18:25:41:78:14:cd:80:5e: be:b3:e6:6e:fe:aa:38:9b:b6:2e:72:f6:f9:12:09: 8e:9a:29:4a:8e:86:45:63:1d:10:75:d9:ce:86:64: 45:e3:07:0d:4f:3b:43:80:f7:47:fc:ff:6f:f7:3e: 1e:33:19:91:78:13:04:a5:06:e8:b8:d2:79:74:09: b1:28:f7:ef:c9:a4:3c:5f:f0:c2:25:58:86:b7:a4: 9b:ae:c8:52:c4:09:7d:93:52:26:ab:a8:1e:2c:e1: d1:80:ed:cc:9b:48:ea:e3:57:4c:47:f8:f6:70:7c: eb:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B1:84:25:4F:B1:0F:A9:64:7A:43:A9:FB:87:23:50:71:C1:4A:92 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.6.0/24 Signature Algorithm: sha256WithRSAEncryption 06:70:ce:df:77:2b:08:3c:1d:95:ad:74:35:1e:66:9a:b6:1b: fa:42:16:53:f3:4b:1d:fb:63:65:99:09:27:73:75:e6:37:76: f4:bc:e6:73:b3:ab:de:2d:5c:4e:39:47:4a:20:4d:96:6a:d3: f2:e8:00:28:27:6e:3b:7e:74:9d:39:aa:ab:56:58:48:9f:b4: e1:72:70:f7:37:85:9b:4c:26:f3:4c:b9:e9:da:24:1f:f0:f5: e9:e3:e3:a7:b0:b3:fa:d1:a6:08:eb:6b:06:6d:ba:71:f2:8f: 44:7a:6e:e2:fd:60:ac:c9:15:d8:5f:81:b7:4c:1b:09:36:7a: 8b:e2:66:73:e5:80:8a:ea:c5:29:ad:4b:e7:1c:a6:cf:00:18: f1:3d:0e:f9:19:d6:7e:14:10:71:ee:00:72:02:37:74:29:9f: 02:b6:64:7d:e5:4f:f5:5b:6a:75:7f:6b:6a:af:d4:01:58:92: 57:d7:6b:24:f3:8e:dd:dc:1f:c5:4d:59:ce:e6:5c:0c:b5:7a: 25:b3:5d:6f:63:c1:ef:fd:9b:16:31:91:8e:87:2f:4a:0d:0f: cf:02:04:90:7f:8d:2b:31:4b:f6:d9:95:95:86:7b:4a:6d:74: f8:94:37:93:09:c1:6d:ae:ab:f6:a8:bb:5d:15:74:fe:36:0c: dc:82:f2:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTMzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZlZC0yYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLOexfVSdHGwoGvzvArlVqQnfCpc6uASXIXCoK/Qg1nvZFcZmMHkn++oyJ19 I4NoX/z4rJ1u2GyHQ1ehf9nmWdJAWGdCnOKXErKEuerEzG2aMXLu41VMY60zJQDB 2xMUcHHpi5stGq3J8Ms2HwEHsc2+ZLLquUh9ZWrpjYP/jxHIQb1tnP7ndSrzgoR1 GCVBeBTNgF6+s+Zu/qo4m7Yucvb5EgmOmilKjoZFYx0QddnOhmRF4wcNTztDgPdH /P9v9z4eMxmReBMEpQbouNJ5dAmxKPfvyaQ8X/DCJViGt6SbrshSxAl9k1Imq6ge LOHRgO3Mm0jq41dMR/j2cHzrpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHOxhCVP sQ+pZHpDqfuHI1BxwUqSMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUM2OTA3MzQ3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHQYwDQYJKoZIhvcNAQELBQADggEBAAZwzt93Kwg8HZWt dDUeZpq2G/pCFlPzSx37Y2WZCSdzdeY3dvS85nOzq94tXE45R0ogTZZq0/LoACgn bjt+dJ05qqtWWEiftOFycPc3hZtMJvNMuenaJB/w9enj46ews/rRpgjrawZtunHy j0R6buL9YKzJFdhfgbdMGwk2eoviZnPlgIrqxSmtS+ccps8AGPE9DvkZ1n4UEHHu AHICN3QpnwK2ZH3lT/VbanV/a2qv1AFYklfXayTzjt3cH8VNWc7mXAy1eiWzXW9j we/9mxYxkY6HL0oND88CBJB/jSsxS/bZlZWGe0ptdPiUN5MJwW2uq/aou10VdP42 DNyC8oY= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:05 2025 by rpki-client