$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa File: ED90A2B8721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: A0JnQw7XUdh7jGP7VzQYL8aagOUlQ7FSLY3AnaGH8TI= Subject key identifier: B8:ED:24:38:A0:B6:07:FB:52:51:CA:10:5F:CC:C9:3D:B1:37:12:6F Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 1B Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:39 +0000 ROA not before: Fri 13 Sep 2024 21:05:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136624 IP address blocks: 202.29.24.0/24 maxlen: 24 2001:3c8:cb01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:39 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a923-d333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6d:24:29:a9:70:4d:22:44:0a:c8:12:91:7c: 3e:36:ab:8c:32:45:39:83:73:87:3d:e4:26:63:97: a3:5d:74:bf:e3:21:51:29:1b:e6:e3:82:bf:29:dc: e0:c9:c7:81:97:c4:95:0d:b8:05:a1:d0:86:19:21: c8:d0:fd:3c:f1:63:ec:d7:c9:9d:50:fd:17:0e:90: 0e:cf:53:ea:ea:9a:cf:d1:90:cd:02:4b:10:59:56: 18:49:51:3a:cc:b3:26:0a:05:4d:6c:46:82:76:e5: 3c:3c:70:18:50:e2:f9:50:51:80:d3:31:79:93:73: 90:7d:66:97:d9:fa:ed:c4:75:2d:ba:e1:bb:d9:60: 1a:80:9f:34:d1:8f:32:f9:ef:cb:db:84:2b:0e:94: 75:30:26:7c:39:4c:90:29:81:e8:55:92:a6:66:c3: c2:13:14:ac:67:71:48:20:f9:01:5e:91:e2:3b:64: 66:a4:88:52:bd:1a:11:bd:90:01:34:0a:a8:1c:c8: 34:41:82:08:c5:1b:99:a3:e5:8e:4d:70:fa:67:cc: 34:8d:92:4d:43:cc:99:d5:a4:a7:df:2b:fa:8e:d9: 11:3d:9d:c9:1b:74:9e:f9:ba:2c:d0:bc:c9:bc:e0: ca:fc:45:c8:2a:a3:00:64:2f:f3:1b:e9:85:01:de: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:ED:24:38:A0:B6:07:FB:52:51:CA:10:5F:CC:C9:3D:B1:37:12:6F X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.24.0/24 IPv6: 2001:3c8:cb01::/48 Signature Algorithm: sha256WithRSAEncryption 3f:38:56:ef:cc:1f:74:c7:ef:64:c2:a8:17:b2:1e:7b:75:0e: b3:1c:56:9e:dd:c9:cc:bb:09:a2:bd:cd:cf:bf:4c:0a:68:31: 0d:ec:2b:6c:bc:74:0f:6c:88:27:90:13:54:c8:e5:a6:de:bf: 22:50:4f:78:79:3d:50:d6:16:a9:ac:b9:a4:21:2c:dd:4b:42: 2c:a4:07:7c:cf:51:18:e8:de:88:91:98:bd:42:ad:c0:6b:5a: 3a:5d:6e:77:19:31:42:07:2b:5d:2d:fd:8a:09:2f:82:94:02: e0:f3:71:68:2f:b5:a3:34:24:3d:d7:11:84:5f:1c:ee:ef:94: 8f:e4:4b:6d:65:04:7d:02:7c:83:73:22:cd:a6:56:8a:a1:ce: 20:d8:fc:4e:00:d7:f8:af:93:27:4f:3d:20:0b:3e:6e:06:f5: e3:ca:47:f6:25:fd:ec:43:e9:1b:6e:c7:6f:ad:c6:39:1c:68: 67:01:1d:83:ce:a5:67:ee:77:26:2d:7c:ce:6a:21:ed:a5:db: 9a:4c:07:21:48:d8:53:07:43:2e:51:fc:8e:7d:75:a5:d9:7a: 2a:d3:b7:7c:d4:0a:c0:0c:0e:98:a7:a6:5a:cf:65:94:d5:22: 8c:c1:ee:aa:ad:51:9b:61:44:64:31:4a:33:4a:31:67:f2:09: bb:9e:5d:0d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1MzlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTIzLWQzMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvbSQpqXBNIkQKyBKRfD42q4wyRTmDc4c95CZjl6NddL/jIVEpG+bjgr8p3ODJ x4GXxJUNuAWh0IYZIcjQ/TzxY+zXyZ1Q/RcOkA7PU+rqms/RkM0CSxBZVhhJUTrM syYKBU1sRoJ25Tw8cBhQ4vlQUYDTMXmTc5B9ZpfZ+u3EdS264bvZYBqAnzTRjzL5 78vbhCsOlHUwJnw5TJApgehVkqZmw8ITFKxncUgg+QFekeI7ZGakiFK9GhG9kAE0 CqgcyDRBggjFG5mj5Y5NcPpnzDSNkk1DzJnVpKffK/qO2RE9nckbdJ75uizQvMm8 4Mr8RcgqowBkL/Mb6YUB3kKxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUuO0kOKC2 B/tSUcoQX8zJPbE3Em8wHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FRDkwQTJCODcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAModGDAPBAIAAjAJAwcAIAEDyMsBMA0GCSqGSIb3DQEBCwUA A4IBAQA/OFbvzB90x+9kwqgXsh57dQ6zHFae3cnMuwmivc3Pv0wKaDEN7CtsvHQP bIgnkBNUyOWm3r8iUE94eT1Q1haprLmkISzdS0IspAd8z1EY6N6IkZi9Qq3Aa1o6 XW53GTFCBytdLf2KCS+ClALg83FoL7WjNCQ91xGEXxzu75SP5EttZQR9AnyDcyLN plaKoc4g2PxOANf4r5MnTz0gCz5uBvXjykf2Jf3sQ+kbbsdvrcY5HGhnAR2DzqVn 7ncmLXzOaiHtpduaTAchSNhTB0MuUfyOfXWl2Xoq07d81ArADA6Yp6Zaz2WU1SKM we6qrVGbYURkMUozSjFn8gm7nl0N -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org