$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa File: EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: qmjNF+hnDKNZshsmjxrcf93T7IBy3KSg7hcIJvB/W6c= Subject key identifier: 8F:3D:49:5A:5B:C4:A0:81:74:26:DC:47:F4:D1:0E:B6:7F:C0:07:E9 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B0 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:52 +0000 ROA not before: Sat 21 Dec 2024 05:49:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138547 IP address blocks: 202.29.20.0/24 maxlen: 24 2001:3c8:d109::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:52 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665700-d57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4d:4d:02:98:37:bc:a1:1c:f6:a8:3c:5c:ce: f3:39:4d:2c:79:54:2a:12:41:53:6b:66:49:c3:f7: 7a:2d:2f:18:f0:df:d9:ce:d7:d3:57:1d:d4:62:b7: c9:2d:b3:cd:74:26:5a:77:fc:a4:62:56:6a:12:c8: 6d:71:89:a6:4e:13:9b:4d:b8:ce:8d:8d:bf:78:82: e6:0f:23:3c:ff:43:76:1c:6d:f9:39:08:8c:e0:df: 6e:ea:60:23:56:4f:a9:16:27:b6:6a:7d:5b:be:47: 85:29:06:8c:0a:c6:f5:03:06:dd:46:8c:3c:a5:4b: 16:33:11:77:08:fe:02:aa:a0:09:a6:23:69:93:14: 31:16:ad:e1:04:e3:27:09:ad:91:96:97:2b:22:6d: 74:0f:cd:db:f3:07:ac:19:7a:0b:3a:c4:f2:35:39: 28:1c:5d:61:07:4e:14:e8:31:fe:9e:88:11:20:43: 2f:73:26:18:c5:05:54:a5:56:c1:b1:7a:20:58:af: e6:63:5f:17:c3:fb:d1:bc:b2:cf:90:b3:47:93:0a: 5a:71:03:b9:da:2a:9b:f4:3a:df:2e:db:bb:19:6a: 50:94:07:70:cf:3a:4f:c4:26:9e:5a:4f:36:de:c1: f4:19:93:60:bc:b6:09:c0:f9:34:dc:5f:d0:23:73: ab:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3D:49:5A:5B:C4:A0:81:74:26:DC:47:F4:D1:0E:B6:7F:C0:07:E9 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.20.0/24 IPv6: 2001:3c8:d109::/48 Signature Algorithm: sha256WithRSAEncryption ad:12:ba:9a:21:90:a9:f5:f1:92:da:93:7a:eb:3d:c4:b1:86: 36:17:62:74:d0:b8:35:9a:26:b4:6b:2e:56:ce:5a:1a:c3:bc: a3:84:3f:51:67:d4:23:b6:07:35:e6:3c:4f:7c:05:f1:77:fb: bb:60:8d:3d:27:b2:71:b8:db:c7:d6:83:14:1e:32:33:7f:91: 85:c9:dc:95:da:9f:1c:a6:23:a0:87:24:b1:3d:22:94:83:81: 44:9c:b8:42:67:53:fa:12:a5:9e:d3:76:38:d9:57:8d:9b:18: eb:b5:c9:65:d5:cc:a2:7a:f0:bc:2c:0d:62:17:31:b1:74:f3: 87:fd:cd:32:43:b2:20:66:a6:62:c8:90:cf:03:fd:b3:77:f6: 26:9a:5d:b8:e6:01:72:ba:c3:34:8a:09:3d:8f:bc:6c:b4:ec: 77:b8:fb:51:7a:b1:2c:2b:80:8a:9b:03:ef:4f:45:d9:94:13: de:b7:ed:6c:ab:92:9c:84:03:12:40:59:9d:4b:32:b0:d9:8e: c4:6a:58:2b:a4:17:9a:11:4f:a2:e9:b6:a1:e5:28:c9:3c:b1: d6:c3:25:6a:2f:01:c5:b2:e4:0a:aa:11:39:65:c9:23:1e:66: 82:ff:71:2b:64:1a:f6:9f:b2:53:c8:0e:33:d5:36:e5:81:27: 5b:35:40:d5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTUyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwMC1kNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU1NApg3vKEc9qg8XM7zOU0seVQqEkFTa2ZJw/d6LS8Y8N/ZztfTVx3UYrfJ LbPNdCZad/ykYlZqEshtcYmmThObTbjOjY2/eILmDyM8/0N2HG35OQiM4N9u6mAj Vk+pFie2an1bvkeFKQaMCsb1AwbdRow8pUsWMxF3CP4CqqAJpiNpkxQxFq3hBOMn Ca2RlpcrIm10D83b8wesGXoLOsTyNTkoHF1hB04U6DH+nogRIEMvcyYYxQVUpVbB sXogWK/mY18Xw/vRvLLPkLNHkwpacQO52iqb9DrfLtu7GWpQlAdwzzpPxCaeWk82 3sH0GZNgvLYJwPk03F/QI3OrowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI89SVpb xKCBdCbcR/TRDrZ/wAfpMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUY5RkYyQUM3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKHRQwDwQCAAIwCQMHACABA8jRCTANBgkqhkiG9w0BAQsF AAOCAQEArRK6miGQqfXxktqTeus9xLGGNhdidNC4NZomtGsuVs5aGsO8o4Q/UWfU I7YHNeY8T3wF8Xf7u2CNPSeycbjbx9aDFB4yM3+RhcncldqfHKYjoIcksT0ilIOB RJy4QmdT+hKlntN2ONlXjZsY67XJZdXMonrwvCwNYhcxsXTzh/3NMkOyIGamYsiQ zwP9s3f2JppduOYBcrrDNIoJPY+8bLTsd7j7UXqxLCuAipsD709F2ZQT3rftbKuS nIQDEkBZnUsysNmOxGpYK6QXmhFPoum2oeUoyTyx1sMlai8BxbLkCqoROWXJIx5m gv9xK2Qa9p+yU8gOM9U25YEnWzVA1Q== -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:46 2025 by rpki-client