$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa File: F065A3D0721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: Gw4lxydXMl6bZVjy/E1+JH/JUuWGvkXALM3MeBDZQs4= Subject key identifier: 67:A8:54:22:89:EA:96:01:F1:CC:11:AE:69:8E:6B:97:9B:6E:0F:71 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B3 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:54 +0000 ROA not before: Sat 21 Dec 2024 05:49:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140075 IP address blocks: 202.29.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:54 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665702-4988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9f:74:88:b9:7c:96:fb:b2:22:90:cf:05:9f: 1d:fb:73:be:a8:5e:00:b6:19:a4:a8:cf:ae:de:5e: 47:ec:86:45:bd:75:d1:6c:7e:52:55:85:b1:84:82: 66:8e:12:51:94:90:0c:e9:b3:3c:4f:33:76:cc:69: e2:ee:a5:9f:3a:b0:35:c7:01:ac:25:79:e3:e2:fa: b3:f3:59:27:71:1e:f8:0f:eb:67:60:44:ef:1d:87: f5:a8:2e:8e:09:bc:a6:95:e9:c8:af:dc:68:6f:7f: e8:34:7b:8e:3c:41:44:3d:67:7d:87:e1:bb:7e:4f: bd:14:a9:d3:16:04:bd:25:18:6c:f3:13:41:09:fe: 01:92:d5:df:c3:28:e6:d0:b8:8b:8f:00:ef:27:79: 3f:79:99:e2:f8:57:f9:a9:dd:ef:2b:26:94:d3:96: 11:9d:3f:26:60:3b:b1:77:e8:23:62:11:2f:b0:da: 75:0c:06:99:da:59:48:1c:31:a9:df:0c:1e:1d:d7: fe:6f:19:b3:60:00:a0:29:59:ac:71:09:73:fe:87: 10:2d:8c:de:ad:f6:bc:22:c8:36:22:62:4d:76:fe: 0c:c6:54:75:94:0f:a4:cd:cf:f0:c5:77:9c:6e:28: 08:0c:8a:29:1d:83:c3:96:6a:af:61:39:3b:7e:d3: 5c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A8:54:22:89:EA:96:01:F1:CC:11:AE:69:8E:6B:97:9B:6E:0F:71 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.53.0/24 Signature Algorithm: sha256WithRSAEncryption 00:74:78:da:93:54:bf:31:7e:63:78:81:a9:51:48:e5:86:b8: 2b:7e:02:93:43:0b:48:c7:f2:95:e6:31:e1:0c:0e:55:2d:af: 25:a6:b4:cc:8c:5f:33:d7:3f:48:a8:5f:7f:b9:a6:6e:62:b4: 01:e2:91:8a:bb:e2:81:35:5d:9c:79:4e:5e:58:3a:e7:d0:7e: 52:dd:9f:a5:55:6e:73:8c:51:5f:17:83:da:2a:c1:8a:b0:8b: 0c:d3:30:72:d6:c0:52:f8:40:46:72:54:2a:16:35:69:96:06: ac:8d:e2:9b:b1:66:61:6c:69:b5:a1:18:07:10:dd:0b:88:80: ac:50:11:68:f8:cb:47:47:5d:61:3b:f0:d7:ff:74:37:64:3e: 94:be:bf:c5:dd:dd:73:db:4d:fe:2a:a1:56:41:f5:52:da:81: 30:1e:de:91:b0:f6:c7:86:67:d0:b7:ea:4b:9b:fc:27:81:65: 45:7b:a1:70:64:ca:ee:e0:80:a6:50:3e:c3:57:7d:da:42:12: 2c:ff:d8:94:ff:4d:e6:b7:a8:07:41:cd:f7:fe:fd:04:b7:7b: 0f:10:a7:5f:f0:da:5a:b7:63:15:a2:9b:62:2d:47:64:4d:16: a7:fe:66:9c:cd:50:b4:0a:2b:94:98:d4:ef:55:bb:3b:9d:73: da:8b:bd:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwMi00OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy590iLl8lvuyIpDPBZ8d+3O+qF4AthmkqM+u3l5H7IZFvXXRbH5SVYWxhIJm jhJRlJAM6bM8TzN2zGni7qWfOrA1xwGsJXnj4vqz81kncR74D+tnYETvHYf1qC6O CbymlenIr9xob3/oNHuOPEFEPWd9h+G7fk+9FKnTFgS9JRhs8xNBCf4BktXfwyjm 0LiLjwDvJ3k/eZni+Ff5qd3vKyaU05YRnT8mYDuxd+gjYhEvsNp1DAaZ2llIHDGp 3wweHdf+bxmzYACgKVmscQlz/ocQLYzerfa8Isg2ImJNdv4MxlR1lA+kzc/wxXec bigIDIopHYPDlmqvYTk7ftNc8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeoVCKJ 6pYB8cwRrmmOa5ebbg9xMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjA2NUEzRDA3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHTUwDQYJKoZIhvcNAQELBQADggEBAAB0eNqTVL8xfmN4 galRSOWGuCt+ApNDC0jH8pXmMeEMDlUtryWmtMyMXzPXP0ioX3+5pm5itAHikYq7 4oE1XZx5Tl5YOufQflLdn6VVbnOMUV8Xg9oqwYqwiwzTMHLWwFL4QEZyVCoWNWmW BqyN4puxZmFsabWhGAcQ3QuIgKxQEWj4y0dHXWE78Nf/dDdkPpS+v8Xd3XPbTf4q oVZB9VLagTAe3pGw9seGZ9C36kub/CeBZUV7oXBkyu7ggKZQPsNXfdpCEiz/2JT/ Tea3qAdBzff+/QS3ew8Qp1/w2lq3YxWim2ItR2RNFqf+ZpzNULQKK5SY1O9Vuzud c9qLvYs= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:02 2025 by rpki-client