$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa File: EF3F8690721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: O4VX+CacCfaVY69Tnny3Zqhia7X1WY/FVxznOfghHQQ= Subject key identifier: 84:C7:93:72:40:A2:EE:15:C8:CF:07:A9:50:14:E9:EE:20:4C:F5:DA Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: CB Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:21 +0000 ROA not before: Sat 21 Dec 2024 05:50:21 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55488 IP address blocks: 202.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:21 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766571d-3ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:97:4c:8f:ad:0f:8b:75:13:db:d9:70:4c:2b: 45:0f:cc:1c:e3:a9:73:43:a6:9a:f7:57:6f:ff:d9: bd:ba:e3:c8:58:11:8b:58:57:0e:31:5a:aa:ce:b3: f2:57:ea:5f:6a:9d:6d:e1:5c:c6:f3:09:59:a4:a3: 53:94:a9:ee:1b:29:35:01:07:53:bd:3a:42:3f:0d: b3:00:08:50:8d:1e:17:43:f2:32:41:8e:d8:d3:4d: 17:3c:6b:51:37:56:80:70:7a:ec:c4:9f:99:29:b9: 64:24:f1:af:de:b8:54:6c:a8:20:82:67:08:60:b3: cc:5e:8e:48:4e:a0:4c:3e:fe:6c:85:98:63:05:96: 19:fd:92:78:99:8d:a3:35:b6:8d:f1:eb:a2:79:1e: b3:b6:b7:ba:a6:7d:82:2a:84:a7:3b:e1:15:80:37: 27:19:9c:eb:76:4a:1c:16:bd:c8:63:bb:4b:20:97: 4a:91:3e:6c:d8:de:01:c1:3f:ff:d5:f2:f2:92:80: 0e:87:5b:b7:cd:b9:b9:9c:9c:6e:dd:f2:1d:a9:b4: c4:a2:a8:bc:36:a8:77:8e:c6:d7:89:98:31:d2:c2: 52:19:28:c5:34:9b:1a:6f:97:26:9b:4e:c6:7a:6a: f5:11:da:7f:70:b1:21:ce:9e:22:fc:3d:80:6b:5b: 8b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C7:93:72:40:A2:EE:15:C8:CF:07:A9:50:14:E9:EE:20:4C:F5:DA X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b5:05:4a:2f:63:22:8c:93:68:c6:f0:79:8e:a8:77:12:17: 5c:4c:b0:9b:a8:0a:5d:bb:4c:71:13:cc:a1:ce:d6:33:6a:a6: 9d:76:8d:4f:3b:1d:ad:75:b6:b0:d7:07:1a:f9:4c:b6:68:8b: d9:2d:db:74:ef:18:36:49:db:77:bf:d3:37:f9:b8:26:7c:26: 32:4c:42:66:9b:72:f5:66:65:ca:3d:ec:c6:e1:55:b3:a4:27: e8:49:8b:f8:b9:75:ab:8c:96:12:e0:d7:91:fd:83:b8:aa:67: 47:5b:6f:3c:de:8c:91:01:b2:19:fc:32:ea:12:21:56:6e:17: b1:f3:d4:56:02:28:3b:d7:df:27:e2:57:22:f6:41:55:fa:39: 0c:b2:ff:84:b2:2e:b7:b7:49:a8:30:50:cc:8b:60:6f:92:bd: f9:0a:00:96:6c:78:a2:8f:c7:e5:52:1f:11:02:66:68:18:ef: 06:42:ed:db:86:7a:23:74:1c:67:2a:53:e0:48:57:13:4b:19: d8:d8:77:9e:9c:f6:dc:af:be:77:f2:ee:d8:43:d2:6c:43:03: 8f:11:38:37:21:cf:e2:fe:35:e7:56:16:6f:37:70:92:b3:c7: c7:b3:f6:66:4c:79:40:08:f9:36:0e:e7:57:37:6b:65:ac:56: 26:96:96:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDIxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxZC0zYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5dMj60Pi3UT29lwTCtFD8wc46lzQ6aa91dv/9m9uuPIWBGLWFcOMVqqzrPy V+pfap1t4VzG8wlZpKNTlKnuGyk1AQdTvTpCPw2zAAhQjR4XQ/IyQY7Y000XPGtR N1aAcHrsxJ+ZKblkJPGv3rhUbKgggmcIYLPMXo5ITqBMPv5shZhjBZYZ/ZJ4mY2j NbaN8euieR6ztre6pn2CKoSnO+EVgDcnGZzrdkocFr3IY7tLIJdKkT5s2N4BwT// 1fLykoAOh1u3zbm5nJxu3fIdqbTEoqi8Nqh3jsbXiZgx0sJSGSjFNJsab5cmm07G emr1Edp/cLEhzp4i/D2Aa1uL1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFITHk3JA ou4VyM8HqVAU6e4gTPXaMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUYzRjg2OTA3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHQQwDQYJKoZIhvcNAQELBQADggEBAEu1BUovYyKMk2jG 8HmOqHcSF1xMsJuoCl27THETzKHO1jNqpp12jU87Ha11trDXBxr5TLZoi9kt23Tv GDZJ23e/0zf5uCZ8JjJMQmabcvVmZco97MbhVbOkJ+hJi/i5dauMlhLg15H9g7iq Z0dbbzzejJEBshn8MuoSIVZuF7Hz1FYCKDvX3yfiVyL2QVX6OQyy/4SyLre3Sagw UMyLYG+SvfkKAJZseKKPx+VSHxECZmgY7wZC7duGeiN0HGcqU+BIVxNLGdjYd56c 9tyvvnfy7thD0mxDA48RODchz+L+NedWFm83cJKzx8ez9mZMeUAI+TYO51c3a2Ws ViaWlvI= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:25 2025 by rpki-client