$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa File: EF3F8690721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: d3NJ/RnvACx1jthw7P1sLXLL+gNGtYlD2rKIAKu/qgM= Subject key identifier: 1D:F7:01:DF:71:C9:7A:18:F3:0A:89:E7:FC:9D:AC:5B:FD:BC:C6:6E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 47 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa Signing time: Fri 13 Sep 2024 21:55:48 +0000 ROA not before: Fri 13 Sep 2024 21:55:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55488 IP address blocks: 202.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:55:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4b4e4-5b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:3d:cd:03:82:f0:eb:ab:42:1a:70:66:93: f1:92:54:da:3f:23:ec:81:1b:27:36:d1:61:6f:b8: 74:90:db:ce:53:18:5a:d6:32:39:d8:eb:48:e2:36: f0:f0:52:9b:82:e8:64:4a:b2:94:14:66:21:5e:a0: f0:15:c0:37:f9:ae:86:86:e7:cd:a3:4f:64:c9:e0: 49:26:56:45:68:f6:f4:28:a2:5f:5c:81:ed:df:84: 7b:33:5b:14:dc:d6:b0:95:95:fa:fd:86:fd:e9:bf: db:f4:a3:2f:04:e5:bd:f0:4f:40:7c:8d:b9:87:cb: 6c:31:ed:fb:d7:b1:3e:fc:a8:2c:b7:af:cb:a1:6e: ab:47:0f:97:ae:0f:51:6b:62:55:c4:ed:07:e8:fb: 2f:3f:20:0f:12:ad:62:8e:16:01:69:14:b8:e3:0b: f0:59:94:db:d7:f4:ca:30:13:49:0d:ed:2d:c8:41: 1e:29:69:9b:fd:4e:43:1f:a0:91:8f:5f:23:ca:18: a8:62:25:c5:ac:f2:4a:f2:49:b1:cc:40:a1:f3:d5: fb:32:51:55:d4:b2:d4:e8:9e:d8:c8:f9:47:09:ca: ba:0e:d1:6f:2d:dc:3b:4c:8c:75:49:f3:6b:6b:47: 61:a0:7d:9e:fd:e8:bc:9b:e1:24:a9:11:05:59:a8: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F7:01:DF:71:C9:7A:18:F3:0A:89:E7:FC:9D:AC:5B:FD:BC:C6:6E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:be:d5:49:56:57:37:db:0a:85:06:da:1a:03:0d:88:61:be: 02:07:42:7d:a7:4e:e2:52:32:61:1b:6b:b8:3c:b5:d3:22:d3: 6a:bb:98:7f:d7:ae:a2:00:87:26:3c:b1:bd:5e:ef:91:eb:9d: 08:3a:2c:41:18:37:4f:25:c5:b0:1c:ee:d8:e0:b1:96:c7:04: ec:03:d4:2a:a8:26:f6:27:7b:c1:e7:15:e5:13:4f:f6:16:b5: 37:7d:8d:79:2e:fc:47:34:ba:53:3b:76:0d:19:97:b9:16:0c: 64:01:2f:8b:52:1f:55:c6:d7:18:90:0c:74:d1:62:a0:da:7a: 74:a0:83:29:23:93:ee:d0:fd:c6:68:98:d0:4d:05:a9:6e:23: ab:66:b3:4b:76:d5:b6:77:96:6e:c1:14:cd:98:e7:09:45:77: 1e:af:d4:47:88:40:44:b5:f3:a5:6a:9f:66:d4:9f:e3:49:0f: 9c:f8:cf:79:70:bd:64:a0:0c:aa:6a:55:47:bb:80:07:1d:26: 65:92:b8:bb:06:10:4b:58:3a:88:81:1b:96:63:97:36:77:4a: ab:37:0b:cf:fa:01:8f:36:5d:40:05:13:ef:85:30:62:09:62: 91:a6:4e:a3:fb:62:40:fa:1c:c8:65:ac:22:75:5c:4d:a1:ab: 8a:6a:09:e1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTU1NDhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRiNGU0LTViODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC70D3NA4Lw66tCGnBmk/GSVNo/I+yBGyc20WFvuHSQ285TGFrWMjnY60jiNvDw UpuC6GRKspQUZiFeoPAVwDf5roaG582jT2TJ4EkmVkVo9vQool9cge3fhHszWxTc 1rCVlfr9hv3pv9v0oy8E5b3wT0B8jbmHy2wx7fvXsT78qCy3r8uhbqtHD5euD1Fr YlXE7Qfo+y8/IA8SrWKOFgFpFLjjC/BZlNvX9MowE0kN7S3IQR4paZv9TkMfoJGP XyPKGKhiJcWs8krySbHMQKHz1fsyUVXUstTontjI+UcJyroO0W8t3DtMjHVJ82tr R2GgfZ796Lyb4SSpEQVZqGvRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHfcB33HJ ehjzConn/J2sW/28xm4wHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FRjNGODY5MDcy MUExMUVGQkRFODc1NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModBDANBgkqhkiG9w0BAQsFAAOCAQEAnL7VSVZXN9sKhQba GgMNiGG+AgdCfadO4lIyYRtruDy10yLTaruYf9euogCHJjyxvV7vkeudCDosQRg3 TyXFsBzu2OCxlscE7APUKqgm9id7wecV5RNP9ha1N32NeS78RzS6Uzt2DRmXuRYM ZAEvi1IfVcbXGJAMdNFioNp6dKCDKSOT7tD9xmiY0E0FqW4jq2azS3bVtneWbsEU zZjnCUV3Hq/UR4hARLXzpWqfZtSf40kPnPjPeXC9ZKAMqmpVR7uABx0mZZK4uwYQ S1g6iIEblmOXNndKqzcLz/oBjzZdQAUT74UwYglikaZOo/tiQPocyGWsInVcTaGr imoJ4Q== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org