$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa File: EEF98246721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 4AoU2DaUW5KMxcz/lDFPzl6W7FTM5SvWQ/Bi4P/1jlQ= Subject key identifier: 49:0F:55:53:96:0D:FF:58:7E:3B:37:DE:59:CB:D1:6C:33:A4:6D:09 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: AF Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:51 +0000 ROA not before: Sat 21 Dec 2024 05:49:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138003 IP address blocks: 202.29.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:51 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656ff-64fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:0d:d9:fe:36:c3:c6:23:1b:d0:ca:34:c8: 74:d8:60:49:1a:cb:9e:78:76:d9:4b:59:bf:a3:b9: 45:d3:ad:0d:97:b5:14:a6:00:0b:5b:e9:16:e5:ec: 53:a0:a0:a9:44:9d:2f:d9:10:66:54:9b:4a:6b:4c: 48:a4:07:67:05:bc:8c:0f:bd:ad:64:f0:43:db:50: 48:44:fc:1c:37:e1:7d:d0:16:8e:f4:62:7e:ab:c2: 3f:c8:f1:34:e2:a4:0e:f4:17:30:b3:02:5b:3f:d8: 54:fd:ad:9a:cc:c7:b7:d2:c2:00:f2:4e:64:b5:6c: a0:2f:8d:33:b5:15:02:1d:71:e7:ff:24:04:31:d8: dd:61:21:a6:dc:fe:18:f0:cd:68:e6:35:1e:cb:6b: d9:fc:32:64:dd:68:c3:1c:30:09:46:6d:64:49:9f: 14:c4:5c:9c:95:82:d4:11:a9:86:f5:90:b1:aa:cc: 5e:5e:f6:c0:d8:d7:87:f7:75:98:a8:ed:e2:0d:67: 32:37:f9:f0:38:92:d7:4d:a9:b2:ae:80:13:8f:39: 60:1d:85:ff:46:64:3d:62:22:a5:9d:11:43:81:3c: 07:62:3b:3f:f2:57:00:39:0d:ee:03:7b:1d:c8:1e: 84:69:8a:80:51:69:f3:3e:9c:4c:e2:0e:27:a1:6e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0F:55:53:96:0D:FF:58:7E:3B:37:DE:59:CB:D1:6C:33:A4:6D:09 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.103.0/24 Signature Algorithm: sha256WithRSAEncryption 45:dc:77:c7:cd:6f:87:87:84:a5:f6:22:b7:b1:7e:b4:96:94: 3d:df:28:cd:f8:6b:7f:34:f0:ed:66:ec:07:5a:b7:a3:4c:79: f3:10:41:c1:fc:bb:92:b2:15:51:23:fa:4a:3f:ea:30:12:bf: 1c:5a:54:f3:79:92:e7:40:fc:2e:f0:88:53:f5:62:e2:a3:07: 14:fd:14:1b:ba:fa:03:d2:28:1f:3f:33:ed:17:b7:7d:91:aa: 20:72:28:70:5c:79:c8:66:63:c3:0b:e7:ad:c2:d7:60:8d:8f: 65:32:9e:70:d5:3d:8b:e5:e6:18:a6:58:aa:d7:a6:2e:7d:66: e4:65:af:b7:9e:db:26:e3:d5:3e:39:cb:1a:e6:27:a4:f0:81: 8f:2d:06:81:ed:3e:65:cc:9b:18:64:2d:09:b2:7b:4a:ae:cf: 84:fa:0e:24:14:71:d6:d4:3c:fc:42:e5:1a:56:0d:ae:5c:88: a2:fa:c7:9f:ef:17:8a:3d:a8:4e:7e:62:2d:d3:5b:9e:83:16: f6:3f:72:16:9d:c7:8b:06:83:a8:a4:9d:cd:84:c5:a7:3c:3f: e7:80:6f:e6:62:82:8e:73:9b:c5:58:c3:ca:e0:ce:1c:75:7d: e6:cd:f3:f4:7e:39:a3:f9:b3:30:92:d6:b1:c5:48:c0:21:52: 1a:91:af:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmZi02NGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAwN2f42w8YjG9DKNMh02GBJGsueeHbZS1m/o7lF060Nl7UUpgALW+kW5exT oKCpRJ0v2RBmVJtKa0xIpAdnBbyMD72tZPBD21BIRPwcN+F90BaO9GJ+q8I/yPE0 4qQO9BcwswJbP9hU/a2azMe30sIA8k5ktWygL40ztRUCHXHn/yQEMdjdYSGm3P4Y 8M1o5jUey2vZ/DJk3WjDHDAJRm1kSZ8UxFyclYLUEamG9ZCxqsxeXvbA2NeH93WY qO3iDWcyN/nwOJLXTamyroATjzlgHYX/RmQ9YiKlnRFDgTwHYjs/8lcAOQ3uA3sd yB6EaYqAUWnzPpxM4g4noW4iuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEkPVVOW Df9Yfjs33lnL0WwzpG0JMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUVGOTgyNDY3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHWcwDQYJKoZIhvcNAQELBQADggEBAEXcd8fNb4eHhKX2 IrexfrSWlD3fKM34a3808O1m7Adat6NMefMQQcH8u5KyFVEj+ko/6jASvxxaVPN5 kudA/C7wiFP1YuKjBxT9FBu6+gPSKB8/M+0Xt32RqiByKHBcechmY8ML563C12CN j2UynnDVPYvl5himWKrXpi59ZuRlr7ee2ybj1T45yxrmJ6TwgY8tBoHtPmXMmxhk LQmye0quz4T6DiQUcdbUPPxC5RpWDa5ciKL6x5/vF4o9qE5+Yi3TW56DFvY/chad x4sGg6iknc2Exac8P+eAb+Zigo5zm8VYw8rgzhx1febN8/R+OaP5szCS1rHFSMAh UhqRrwA= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:47 2025 by rpki-client