$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa File: EC690734721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: dnEKgxXbb6+HL3Y94mpJnIlcInhn3FVSRQPza35mv9Q= Subject key identifier: F0:D0:56:F4:C5:85:BB:78:EC:97:D6:1B:18:C9:48:BB:5F:D4:72:C1 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 43 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa Signing time: Fri 13 Sep 2024 21:55:44 +0000 ROA not before: Fri 13 Sep 2024 21:55:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 131246 IP address blocks: 202.29.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:55:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4b4df-e444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ad:be:46:bc:35:7e:c7:6f:a5:49:0b:32:72: d1:54:e8:23:31:f9:62:84:0f:2f:ca:d8:95:95:ca: dc:a2:a1:00:58:4a:0a:ba:fa:47:e3:71:dd:ee:b6: 17:14:b4:ee:4f:73:45:60:9a:fe:e2:27:8d:11:96: 58:48:f5:7a:89:89:f2:5b:b7:a1:5f:92:2e:51:8e: ca:a2:46:83:fa:b3:cf:d0:28:27:52:f8:da:76:15: 58:c2:4c:27:86:03:72:30:ef:9e:45:11:93:24:d4: 23:30:11:1e:48:5d:1e:14:59:91:12:a3:17:dc:7a: df:b2:59:51:9e:8d:e0:6f:8c:62:b2:21:cb:6b:f6: 56:a0:91:26:96:d5:11:05:a0:2b:4f:38:1e:60:b4: e2:0b:ba:b4:90:9e:65:39:1a:cb:fd:5f:fd:1b:8a: 17:f9:37:5c:bb:b8:48:28:6e:79:8d:61:6f:cf:bf: cc:d9:36:70:49:3a:1a:34:53:80:52:10:18:41:38: 6b:0b:da:43:65:4b:7d:49:af:e8:b4:4a:c0:45:02: d4:d7:71:32:56:0d:d1:2b:9c:c3:e8:a6:82:72:2d: 46:9f:0b:7e:e6:82:4d:58:21:f3:df:fe:9b:06:89: 2e:d1:8d:74:23:aa:0f:d8:37:35:e0:69:3e:e6:87: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D0:56:F4:C5:85:BB:78:EC:97:D6:1B:18:C9:48:BB:5F:D4:72:C1 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EC690734721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.6.0/24 Signature Algorithm: sha256WithRSAEncryption 72:d6:62:a1:02:af:61:79:f9:61:5d:7c:02:17:24:79:88:10: f9:a7:f2:47:dc:b5:5e:19:93:1e:99:52:15:fc:85:f8:ea:de: 95:ef:6d:10:b2:c3:99:ab:7e:95:a0:e9:82:80:12:72:7c:44: da:4d:76:ed:7f:28:79:cb:b7:b2:7b:04:1d:44:29:4f:06:62: c5:df:02:f8:9f:02:87:0b:17:50:f8:0f:f4:fd:d4:37:f1:34: fa:ca:d0:08:c9:98:44:ed:09:33:5a:4d:ea:93:b0:f3:bc:bb: b7:a0:b8:6f:8f:6d:e9:7e:3a:13:46:bc:ef:8e:ef:99:42:98: 7f:bb:73:1f:a5:a7:07:76:3a:e1:3a:3d:82:44:4a:d2:ca:d1: c0:00:c3:17:77:43:b5:52:32:6c:3b:7c:d9:c1:1f:60:e5:fd: 7d:f9:dd:07:47:3a:0b:49:5c:7b:58:c3:11:cb:ce:40:a7:3c: 4e:a4:1f:83:57:13:e5:94:5f:4c:65:be:6e:0a:be:2b:37:b8: 1d:02:a6:10:5a:e2:80:32:c6:38:b5:d6:81:bb:eb:e5:a1:5a: 19:67:56:f0:08:1d:90:8a:21:68:b0:93:20:dc:18:cc:50:c5: ac:94:f0:c0:a8:bd:96:35:a4:65:03:bc:8f:a1:da:ab:ea:8a: ec:db:f3:31 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTU1NDRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRiNGRmLWU0NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCorb5GvDV+x2+lSQsyctFU6CMx+WKEDy/K2JWVytyioQBYSgq6+kfjcd3uthcU tO5Pc0Vgmv7iJ40RllhI9XqJifJbt6Ffki5RjsqiRoP6s8/QKCdS+Np2FVjCTCeG A3Iw755FEZMk1CMwER5IXR4UWZESoxfcet+yWVGejeBvjGKyIctr9lagkSaW1REF oCtPOB5gtOILurSQnmU5Gsv9X/0bihf5N1y7uEgobnmNYW/Pv8zZNnBJOho0U4BS EBhBOGsL2kNlS31Jr+i0SsBFAtTXcTJWDdErnMPopoJyLUafC37mgk1YIfPf/psG iS7RjXQjqg/YNzXgaT7mh/2ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8NBW9MWF u3jsl9YbGMlIu1/UcsEwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FQzY5MDczNDcy MUExMUVGQkRFODc1NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModBjANBgkqhkiG9w0BAQsFAAOCAQEActZioQKvYXn5YV18 AhckeYgQ+afyR9y1XhmTHplSFfyF+Orele9tELLDmat+laDpgoAScnxE2k127X8o ecu3snsEHUQpTwZixd8C+J8ChwsXUPgP9P3UN/E0+srQCMmYRO0JM1pN6pOw87y7 t6C4b49t6X46E0a8747vmUKYf7tzH6WnB3Y64To9gkRK0srRwADDF3dDtVIybDt8 2cEfYOX9ffndB0c6C0lce1jDEcvOQKc8TqQfg1cT5ZRfTGW+bgq+Kze4HQKmEFri gDLGOLXWgbvr5aFaGWdW8AgdkIohaLCTINwYzFDFrJTwwKi9ljWkZQO8j6Haq+qK 7NvzMQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org