$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa File: F065A3D0721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: Wyod+HoHqZw39db7zZfRk4i3eTGaPqLO3LzTVjyBUk8= Subject key identifier: 2D:B5:AF:2D:F0:EE:A7:17:21:8C:E5:3C:9F:83:9D:23:1B:5D:3B:53 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 1F Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:44 +0000 ROA not before: Fri 13 Sep 2024 21:05:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140075 IP address blocks: 202.29.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a927-b134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3d:1c:b9:a8:3c:be:77:00:e8:34:82:63:ca: 82:85:ea:b2:54:ca:2d:33:ff:04:fb:48:01:fa:da: 05:95:8a:8f:fa:36:60:2b:c0:90:a7:90:94:c2:02: 42:3b:48:46:21:3e:12:bb:9b:e1:4a:82:cc:2b:94: 69:8b:54:ac:cf:ec:20:d9:42:6b:2a:60:ee:32:c1: 4a:8d:46:6e:6a:d0:6d:06:63:29:07:fc:c2:77:1b: b3:c3:dd:09:c5:dd:a2:13:c3:5c:7f:d1:68:d1:5c: 49:0d:0c:44:ff:0b:51:67:56:ed:e9:80:6e:4c:f7: 5f:36:c1:70:6e:d4:0a:67:7d:98:5c:05:e4:19:9d: 1f:b1:06:61:5e:18:97:f2:42:46:ae:69:9d:60:34: 41:c5:7a:8a:89:ad:4f:90:dd:74:65:5d:83:78:84: eb:b0:a0:0d:06:8f:67:62:21:32:b5:81:61:0e:a9: dc:e1:62:f4:16:f3:04:02:f5:4e:d5:8e:ab:e4:78: 63:ee:5f:c6:f1:fa:d4:12:ce:01:aa:ea:12:b6:51: 6a:b1:ed:94:90:de:16:fb:4d:30:43:13:0c:86:6a: 25:7d:5b:b8:42:7a:8f:db:ad:e4:d0:e7:af:2e:41: 15:1d:f3:0b:ae:b0:ea:45:f5:e5:9d:6b:81:79:8a: a1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B5:AF:2D:F0:EE:A7:17:21:8C:E5:3C:9F:83:9D:23:1B:5D:3B:53 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.53.0/24 Signature Algorithm: sha256WithRSAEncryption 35:a8:a9:cf:0a:be:c7:ac:94:d8:27:b0:a8:50:0b:9d:cd:69: ce:97:fe:af:df:b8:fd:d7:a2:c4:d8:84:64:ca:70:2d:38:b3: 3e:73:82:b7:78:43:67:c9:e6:b0:6b:95:50:09:7d:cc:2b:03: 11:67:5a:8b:20:51:6b:95:41:36:7a:73:48:56:a8:03:ec:d1: 5c:e7:22:ad:04:c8:79:33:07:9c:e3:1b:55:6a:9d:09:a8:c8: 74:33:2c:ac:41:c5:fe:3a:0f:b7:33:50:d1:ae:95:50:12:e9: f2:30:64:ec:24:59:09:02:94:b0:43:ed:db:6e:2d:3d:18:4f: 75:60:14:31:1c:35:b3:a2:6e:8d:b5:22:1c:d4:12:0b:91:a0: 84:02:c7:07:31:78:73:6e:e0:de:18:43:7f:fe:be:14:5e:27: 60:2b:68:a2:6d:c5:45:57:9a:a3:67:e5:01:ad:14:86:fe:21: 7c:2f:3d:fe:59:c1:8b:fc:fd:ac:85:55:cc:a7:c4:48:39:95: da:a8:66:45:5a:bb:b2:91:fe:f6:85:da:c5:e1:6a:c4:39:77: 58:20:bf:34:42:3a:be:66:ba:ce:05:8a:ba:c9:5e:ed:02:72: d4:51:3b:d1:6d:f8:d7:13:8d:51:e5:81:37:56:1c:dd:82:cd: 27:d4:8b:65 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTI3LWIxMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7PRy5qDy+dwDoNIJjyoKF6rJUyi0z/wT7SAH62gWVio/6NmArwJCnkJTCAkI7 SEYhPhK7m+FKgswrlGmLVKzP7CDZQmsqYO4ywUqNRm5q0G0GYykH/MJ3G7PD3QnF 3aITw1x/0WjRXEkNDET/C1FnVu3pgG5M9182wXBu1ApnfZhcBeQZnR+xBmFeGJfy QkauaZ1gNEHFeoqJrU+Q3XRlXYN4hOuwoA0Gj2diITK1gWEOqdzhYvQW8wQC9U7V jqvkeGPuX8bx+tQSzgGq6hK2UWqx7ZSQ3hb7TTBDEwyGaiV9W7hCeo/breTQ568u QRUd8wuusOpF9eWda4F5iqH9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULbWvLfDu pxchjOU8n4OdIxtdO1MwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GMDY1QTNEMDcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModNTANBgkqhkiG9w0BAQsFAAOCAQEANaipzwq+x6yU2Cew qFALnc1pzpf+r9+4/deixNiEZMpwLTizPnOCt3hDZ8nmsGuVUAl9zCsDEWdaiyBR a5VBNnpzSFaoA+zRXOcirQTIeTMHnOMbVWqdCajIdDMsrEHF/joPtzNQ0a6VUBLp 8jBk7CRZCQKUsEPt224tPRhPdWAUMRw1s6JujbUiHNQSC5GghALHBzF4c27g3hhD f/6+FF4nYCtoom3FRVeao2flAa0Uhv4hfC89/lnBi/z9rIVVzKfESDmV2qhmRVq7 spH+9oXaxeFqxDl3WCC/NEI6vma6zgWKusle7QJy1FE70W341xONUeWBN1Yc3YLN J9SLZQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org