$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F169A402721311EFA9D7CA3AC4F9AE02.roa File: F169A402721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: TGtNm8k1vV0iokP5iBSmwBOsdljmIjTV4+3XcIVqwBQ= Subject key identifier: 85:CB:11:40:79:77:72:1D:3B:E0:F4:22:E6:1C:55:43:17:94:44:F4 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 21 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F169A402721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:45 +0000 ROA not before: Fri 13 Sep 2024 21:05:45 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 147312 IP address blocks: 202.29.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:45 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a929-a631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:15:e0:eb:67:c9:25:bf:cf:c5:cb:89:61: c1:a9:40:e5:a6:7a:da:47:32:e7:f1:99:f0:00:7a: 0c:df:0f:6c:c3:64:89:4c:78:e8:dd:73:d3:85:7a: 44:28:cb:66:b4:67:4a:03:64:0c:4a:42:d9:be:5d: 51:de:70:54:13:10:b0:7d:89:e9:74:cb:9f:66:64: 9e:3c:81:4f:a8:57:89:7b:77:75:25:f5:87:5f:be: 8d:ae:93:3a:86:95:d7:7d:6a:f4:91:63:61:7d:0b: 64:4e:60:c4:0c:35:95:11:c3:17:5f:fd:18:5a:29: 69:8f:43:89:3b:ad:79:a4:2d:fd:22:f0:7b:1a:0c: 3e:b8:bd:c4:8b:92:d6:63:cf:0c:e2:f3:a2:68:11: cb:84:7f:c3:87:42:75:c7:7c:c6:30:6c:3c:72:d2: 42:07:05:c3:e3:6b:02:3b:e1:60:3a:26:cb:0c:de: 2a:04:f8:a2:aa:35:44:07:9f:2b:59:13:45:aa:82: f1:ef:45:74:50:68:d4:b4:ec:19:99:45:c0:f0:65: b2:01:2e:fc:bc:1d:bc:f9:fb:44:3a:45:a4:f2:25: 96:56:6a:98:88:ae:0f:78:3e:d0:50:9a:31:5c:bd: ea:cd:80:89:d1:d0:ab:0f:5a:6c:44:9a:47:eb:d9: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CB:11:40:79:77:72:1D:3B:E0:F4:22:E6:1C:55:43:17:94:44:F4 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F169A402721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.16.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:26:5f:f9:89:fb:9d:ef:66:d5:c8:f7:d9:43:8e:cb:01:6d: 11:a3:8c:9a:56:15:ef:eb:1e:00:09:88:61:ee:24:de:09:9e: da:a7:5a:ad:60:ad:52:27:6d:fc:ce:4a:ef:09:48:47:14:0f: 8d:bc:9d:55:2c:4e:88:d5:7d:a1:de:c2:ce:28:8a:74:67:7e: 9c:ad:ee:9a:9c:0d:ea:7b:31:e2:00:19:13:8f:d3:c3:85:63: 0e:9f:22:7b:28:db:e0:d8:9f:4e:41:ba:b1:7d:99:3d:57:03: 80:58:41:e9:3b:e2:b9:a5:e8:a3:d0:e0:29:89:a7:03:46:59: 49:c2:2d:99:bf:b9:5e:08:a8:c6:a1:89:7e:af:d0:72:7d:a1: fa:9f:a1:16:cb:aa:88:b4:2f:d7:41:d3:20:76:18:b1:bb:0c: 9e:e7:ef:65:f3:d1:8f:0c:9f:80:93:fe:c2:15:ba:15:70:39: 9e:96:70:1a:18:bd:2d:3a:ef:30:08:bd:79:26:c0:92:4f:93: d4:b8:0d:92:60:fe:28:92:ff:44:7c:25:ca:e9:53:19:1f:4f: ba:a7:fa:31:40:18:c7:67:7d:02:77:08:40:af:60:fb:58:a7: 49:23:5d:48:56:05:fa:18:d1:ab:46:e9:cf:76:a1:44:bb:98: e6:80:da:6f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTI5LWE2MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0ZhXg62fJJb/PxcuJYcGpQOWmetpHMufxmfAAegzfD2zDZIlMeOjdc9OFekQo y2a0Z0oDZAxKQtm+XVHecFQTELB9iel0y59mZJ48gU+oV4l7d3Ul9Ydfvo2ukzqG ldd9avSRY2F9C2ROYMQMNZURwxdf/RhaKWmPQ4k7rXmkLf0i8HsaDD64vcSLktZj zwzi86JoEcuEf8OHQnXHfMYwbDxy0kIHBcPjawI74WA6JssM3ioE+KKqNUQHnytZ E0WqgvHvRXRQaNS07BmZRcDwZbIBLvy8Hbz5+0Q6RaTyJZZWapiIrg94PtBQmjFc verNgInR0KsPWmxEmkfr2VshAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhcsRQHl3 ch074PQi5hxVQxeURPQwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GMTY5QTQwMjcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModEDANBgkqhkiG9w0BAQsFAAOCAQEAPSZf+Yn7ne9m1cj3 2UOOywFtEaOMmlYV7+seAAmIYe4k3gme2qdarWCtUidt/M5K7wlIRxQPjbydVSxO iNV9od7CziiKdGd+nK3umpwN6nsx4gAZE4/Tw4VjDp8ieyjb4NifTkG6sX2ZPVcD gFhB6TviuaXoo9DgKYmnA0ZZScItmb+5XgioxqGJfq/Qcn2h+p+hFsuqiLQv10HT IHYYsbsMnufvZfPRjwyfgJP+whW6FXA5npZwGhi9LTrvMAi9eSbAkk+T1LgNkmD+ KJL/RHwlyulTGR9Puqf6MUAYx2d9AncIQK9g+1inSSNdSFYF+hjRq0bpz3ahRLuY 5oDabw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org