$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa File: ED90A2B8721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 0Awxl6UWh9ZKCAmIe76b4gSVGYsauW4yM4pbXymmJsM= Subject key identifier: 34:98:ED:DC:A2:56:94:AD:DF:08:D4:EB:D8:D9:F4:BF:AE:F9:15:C4 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: A9 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:46 +0000 ROA not before: Sat 21 Dec 2024 05:49:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136624 IP address blocks: 202.29.24.0/24 maxlen: 24 2001:3c8:cb01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:46 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656f9-82fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:78:a7:33:41:c6:1a:88:fb:99:fa:a4:1d: 5d:88:23:7c:f6:b8:f0:74:99:03:80:5e:b8:0b:b0: 11:04:73:37:75:85:c7:f8:f7:00:fd:bd:c9:b5:88: ad:a9:3f:3a:37:70:66:81:4a:7e:9b:58:d4:ec:75: f1:87:55:07:cb:8b:a9:1a:ce:cf:dd:9b:91:5c:8b: 69:bb:51:72:e1:20:2c:55:db:2c:e6:59:e9:95:94: eb:86:34:18:84:bc:a9:98:3d:a6:45:f7:e0:95:d1: 8a:c7:68:32:c5:98:0f:c7:0f:7d:6c:58:93:0b:df: a3:5b:e5:c7:b4:58:3e:4e:e6:e2:47:7f:6e:34:46: 4b:96:19:e2:e0:3a:85:8e:23:50:9a:f4:32:cb:5c: 7c:54:7a:fe:8f:61:3f:78:c4:73:ed:e7:27:36:5d: 77:1f:c5:ad:17:c9:39:65:84:c7:45:11:08:15:08: 5f:ca:05:52:0f:92:11:dd:d9:23:50:ad:32:79:e2: 2c:85:17:d9:54:90:bf:52:8a:b6:69:9b:95:bf:b6: 98:a5:a8:85:a7:09:4f:ca:a8:dc:fe:29:4d:5a:f0: df:bc:ae:d0:19:6e:86:4f:9e:44:71:98:16:66:0a: b0:bf:6b:0f:26:9c:91:19:f4:5d:05:3d:8b:54:2d: 70:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:98:ED:DC:A2:56:94:AD:DF:08:D4:EB:D8:D9:F4:BF:AE:F9:15:C4 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.24.0/24 IPv6: 2001:3c8:cb01::/48 Signature Algorithm: sha256WithRSAEncryption 50:5e:db:45:7e:26:dc:4c:b6:54:f9:02:1d:ff:68:44:c4:36: c2:53:47:14:56:72:ab:7d:c7:f7:39:48:07:85:2a:dc:10:a2: 00:f2:fe:5d:fc:d9:0e:75:cf:4d:d5:8c:91:7f:76:17:1e:d5: 56:da:1a:7c:1a:6f:f4:fc:2d:9b:51:12:cc:61:c1:16:67:2d: 90:f1:d7:66:57:75:5f:a3:f4:31:ad:69:23:73:e4:26:8f:92: 96:d4:4c:15:eb:8c:39:e8:1f:3e:c5:48:72:1b:8f:93:d8:1b: 2c:37:52:9c:b1:4a:70:dd:1f:71:fe:22:cd:60:e5:5d:0e:8d: 60:bf:da:b4:22:27:4c:66:90:fe:5e:99:6a:0c:62:9c:d8:19: 50:a9:f6:48:08:7f:a9:94:0f:d6:42:08:c7:4d:50:c0:f4:d4: dc:f9:03:5c:9a:49:08:57:f4:20:7c:ea:51:1e:6e:87:79:d9: 7c:ef:34:c6:42:fe:75:82:42:3c:37:57:9e:27:bb:43:88:2f: fd:fb:b7:55:3d:fc:01:f8:b5:06:00:b9:c6:23:d5:e9:b3:ac: e9:bb:b0:a9:06:9e:4c:6c:b2:d3:ab:0e:3d:b1:55:64:b9:ba: 78:3d:d5:3b:5e:17:4e:27:7e:6f:a1:82:76:0e:ae:b3:ea:68: f9:0b:86:60 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmOS04MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRx4pzNBxhqI+5n6pB1diCN89rjwdJkDgF64C7ARBHM3dYXH+PcA/b3JtYit qT86N3BmgUp+m1jU7HXxh1UHy4upGs7P3ZuRXItpu1Fy4SAsVdss5lnplZTrhjQY hLypmD2mRffgldGKx2gyxZgPxw99bFiTC9+jW+XHtFg+TubiR39uNEZLlhni4DqF jiNQmvQyy1x8VHr+j2E/eMRz7ecnNl13H8WtF8k5ZYTHRREIFQhfygVSD5IR3dkj UK0yeeIshRfZVJC/Uoq2aZuVv7aYpaiFpwlPyqjc/ilNWvDfvK7QGW6GT55EcZgW Zgqwv2sPJpyRGfRdBT2LVC1wOQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDSY7dyi VpSt3wjU69jZ9L+u+RXEMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUQ5MEEyQjg3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKHRgwDwQCAAIwCQMHACABA8jLATANBgkqhkiG9w0BAQsF AAOCAQEAUF7bRX4m3Ey2VPkCHf9oRMQ2wlNHFFZyq33H9zlIB4Uq3BCiAPL+XfzZ DnXPTdWMkX92Fx7VVtoafBpv9Pwtm1ESzGHBFmctkPHXZld1X6P0Ma1pI3PkJo+S ltRMFeuMOegfPsVIchuPk9gbLDdSnLFKcN0fcf4izWDlXQ6NYL/atCInTGaQ/l6Z agxinNgZUKn2SAh/qZQP1kIIx01QwPTU3PkDXJpJCFf0IHzqUR5uh3nZfO80xkL+ dYJCPDdXnie7Q4gv/fu3VT38Afi1BgC5xiPV6bOs6buwqQaeTGyy06sOPbFVZLm6 eD3VO14XTid+b6GCdg6us+po+QuGYA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:45:03 2025 by rpki-client