$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa File: EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: DypqLbqFbJtlwpeN0lj6u0fxlFg1qA9u7TmLvKWXsGI= Subject key identifier: 63:45:3D:CC:30:31:06:7B:38:CC:89:6D:20:B2:68:D6:A8:09:AE:FC Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 1E Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:43 +0000 ROA not before: Fri 13 Sep 2024 21:05:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138547 IP address blocks: 202.29.20.0/24 maxlen: 24 2001:3c8:d109::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a926-9f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9e:e0:fe:ce:c1:5f:af:10:a5:9a:ae:ab:94: 7d:68:fa:6f:f4:f3:3b:56:9d:eb:50:f1:4d:53:cf: 18:ad:30:38:16:7c:87:cd:8d:25:8a:d6:07:a7:f2: 73:2b:9c:a1:1d:f9:59:7e:79:15:41:81:26:c1:3d: a3:f4:29:d9:95:db:00:5f:1d:ae:08:2d:65:6a:94: 46:8c:c3:0f:ea:13:1e:85:56:31:c8:5b:88:ae:43: f9:97:cd:84:e6:23:23:b4:64:fb:26:54:66:3d:cc: 62:d8:f6:bf:a7:2d:43:ed:03:22:cd:64:81:cb:83: ca:69:36:f4:9b:8b:b6:65:63:2c:69:02:04:9a:25: a7:af:69:e0:40:50:c4:6b:2c:24:ae:7b:82:cd:e4: 04:87:5c:ef:a1:65:de:c8:36:26:f7:b5:73:05:62: 6c:c6:11:dd:94:18:81:a2:ae:04:e6:10:23:b0:71: db:06:03:1e:2c:7a:ec:fd:4c:dd:a9:87:37:da:fb: 06:ea:eb:df:da:57:29:9a:c8:e6:ab:82:35:14:fe: c8:64:20:21:d7:06:c3:74:f2:81:10:81:ae:36:f8: b7:74:27:1f:28:f0:5b:a4:a1:0d:65:ab:d4:55:c6: 60:c4:7e:46:5d:50:de:9e:68:fd:e0:09:7e:96:1f: e8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:45:3D:CC:30:31:06:7B:38:CC:89:6D:20:B2:68:D6:A8:09:AE:FC X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF9FF2AC721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.20.0/24 IPv6: 2001:3c8:d109::/48 Signature Algorithm: sha256WithRSAEncryption 87:4a:84:86:6f:37:c9:c6:f7:8f:8a:1b:64:1a:78:4a:b8:5d: 4a:b3:44:4d:91:6f:ac:dd:77:62:b8:d5:6f:98:f4:46:63:c2: 8a:38:67:ae:93:2f:98:54:b4:01:1e:05:12:96:b3:d6:4b:0d: b4:a5:3b:e9:ec:c3:0a:42:76:47:e9:98:b0:9b:87:98:f9:14: 52:cf:93:c4:fc:93:b0:8b:f9:dd:9d:7c:49:77:5a:56:e2:1c: 94:a5:d4:11:4f:69:3f:47:2b:52:5b:af:26:df:f7:61:a0:77: ab:20:27:d7:e2:36:82:01:7e:34:74:cc:48:f8:99:4e:c8:a5: 07:34:46:18:3e:b3:63:39:4d:59:20:3e:ee:f4:88:20:f2:69: a8:c9:96:72:87:34:75:13:b7:fb:ec:04:01:12:70:46:4d:65: f8:4f:a2:ab:8c:73:15:4a:1a:86:25:2c:99:4b:41:93:01:54: e6:b9:ec:2e:d2:be:01:55:ff:24:ef:cd:32:70:d3:95:38:7c: 4d:2a:fb:2a:5f:c8:cd:05:d6:a2:4a:22:ca:be:ff:f6:cf:f6: f3:57:2d:2f:5c:a1:01:5b:8f:55:e2:1b:fa:df:07:4f:43:1e: 5b:15:0d:a6:c5:67:9a:9a:57:ba:b0:ef:94:0e:11:41:71:56: 68:2b:83:a8 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTI2LTlmNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDInuD+zsFfrxClmq6rlH1o+m/08ztWnetQ8U1TzxitMDgWfIfNjSWK1gen8nMr nKEd+Vl+eRVBgSbBPaP0KdmV2wBfHa4ILWVqlEaMww/qEx6FVjHIW4iuQ/mXzYTm IyO0ZPsmVGY9zGLY9r+nLUPtAyLNZIHLg8ppNvSbi7ZlYyxpAgSaJaevaeBAUMRr LCSue4LN5ASHXO+hZd7INib3tXMFYmzGEd2UGIGirgTmECOwcdsGAx4seuz9TN2p hzfa+wbq69/aVymayOargjUU/shkICHXBsN08oEQga42+Ld0Jx8o8FukoQ1lq9RV xmDEfkZdUN6eaP3gCX6WH+ilAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUY0U9zDAx Bns4zIltILJo1qgJrvwwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FRjlGRjJBQzcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAModFDAPBAIAAjAJAwcAIAEDyNEJMA0GCSqGSIb3DQEBCwUA A4IBAQCHSoSGbzfJxvePihtkGnhKuF1Ks0RNkW+s3XdiuNVvmPRGY8KKOGeuky+Y VLQBHgUSlrPWSw20pTvp7MMKQnZH6Ziwm4eY+RRSz5PE/JOwi/ndnXxJd1pW4hyU pdQRT2k/RytSW68m3/dhoHerICfX4jaCAX40dMxI+JlOyKUHNEYYPrNjOU1ZID7u 9Igg8mmoyZZyhzR1E7f77AQBEnBGTWX4T6KrjHMVShqGJSyZS0GTAVTmuewu0r4B Vf8k780ycNOVOHxNKvsqX8jNBdaiSiLKvv/2z/bzVy0vXKEBW49V4hv63wdPQx5b FQ2mxWeamle6sO+UDhFBcVZoK4Oo -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org