$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa File: F214B8B0721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 5ANsf1T3LDWHg7c7ZGIRCOIjzeCtBDfjSR7jElE+NgY= Subject key identifier: 35:27:9D:2C:EA:7F:22:4C:FF:7A:34:9C:C8:57:DA:78:EE:E8:1B:94 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B7 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:58 +0000 ROA not before: Sat 21 Dec 2024 05:49:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149503 IP address blocks: 202.29.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665706-535c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:47:39:74:9c:d0:6d:81:2a:9b:b9:99:8b:01: 85:bd:b3:b2:aa:8b:44:ff:53:d2:03:5f:f1:79:fe: 4e:52:b0:89:47:ed:65:59:ad:75:ce:93:6a:65:ab: 59:7e:34:bc:9d:9f:52:6b:8d:40:8f:87:a8:cd:5f: 8c:97:e3:d8:11:72:f8:1e:dc:11:11:e3:91:d5:6b: e2:2a:e7:90:63:96:e7:64:ed:19:ee:e1:72:e4:eb: fd:e7:d2:cd:e0:72:9a:13:29:5d:e3:f0:63:3f:4c: e7:fa:77:51:7e:d0:8b:c5:95:c8:55:78:f2:5f:ad: 44:0a:64:b7:70:f9:63:c1:76:1e:25:ea:12:d4:45: 80:ea:a1:72:43:93:c2:39:bd:12:67:4c:46:72:27: 91:06:9e:63:90:a8:51:5e:40:63:c8:1e:19:cc:01: f8:e6:9c:f4:09:fe:0e:02:02:d0:f3:22:eb:93:26: 34:dc:98:08:46:57:28:e8:4e:11:f7:b9:03:27:dd: 5c:03:34:a3:00:54:eb:9f:75:4d:b0:23:47:e2:92: 92:3c:eb:63:7f:7d:02:42:a7:7e:d3:90:7e:82:bf: e7:73:fd:1e:4a:49:f1:71:55:65:30:14:01:81:a9: 02:37:c3:14:da:c9:f8:ed:92:7c:8c:68:75:aa:74: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:27:9D:2C:EA:7F:22:4C:FF:7A:34:9C:C8:57:DA:78:EE:E8:1B:94 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.86.0/24 Signature Algorithm: sha256WithRSAEncryption 63:4e:95:cd:ba:57:c4:b1:ce:81:80:9a:e6:72:fb:76:b3:4f: 65:bd:8c:6a:ac:0e:8e:9f:70:03:13:92:d8:1e:d0:87:63:29: b9:73:9b:75:52:67:16:6c:58:53:67:67:cc:a3:c4:e5:fd:07: 98:7c:eb:b2:2a:01:21:b8:ee:0f:26:26:11:0f:09:2a:ba:9e: df:69:de:8a:c2:fa:e3:91:a0:f4:79:51:13:6f:8c:98:52:c7: bf:e5:df:d6:02:78:8c:d2:60:56:ef:97:8b:d7:28:8d:d3:0b: a4:22:a0:74:1f:1d:17:dc:74:2c:8e:23:ce:ac:f2:5e:1d:bc: 95:0b:90:bb:f0:a7:ed:08:3e:37:9c:61:c2:e1:d5:38:4e:09: f7:61:b3:9e:92:ab:15:9f:9c:a5:44:f0:79:75:17:06:4c:89: 7b:8a:b8:7e:6b:46:df:4e:79:d5:92:d1:eb:ac:13:5e:06:ae: 58:35:30:7c:39:29:03:69:a7:b1:80:84:a0:51:3a:18:a1:9f: 13:e4:37:70:be:ca:f9:76:91:2b:de:47:81:20:af:12:51:26: 16:13:ea:04:59:b9:86:27:b4:e0:eb:a2:6d:31:dc:b4:53:cb: 1a:3e:14:b3:69:de:a8:58:8d:d8:dc:25:c0:fd:07:61:23:46: b0:7d:8e:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwNi01MzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ec5dJzQbYEqm7mZiwGFvbOyqotE/1PSA1/xef5OUrCJR+1lWa11zpNqZatZ fjS8nZ9Sa41Aj4eozV+Ml+PYEXL4HtwREeOR1WviKueQY5bnZO0Z7uFy5Ov959LN 4HKaEyld4/BjP0zn+ndRftCLxZXIVXjyX61ECmS3cPljwXYeJeoS1EWA6qFyQ5PC Ob0SZ0xGcieRBp5jkKhRXkBjyB4ZzAH45pz0Cf4OAgLQ8yLrkyY03JgIRlco6E4R 97kDJ91cAzSjAFTrn3VNsCNH4pKSPOtjf30CQqd+05B+gr/nc/0eSknxcVVlMBQB gakCN8MU2sn47ZJ8jGh1qnT8fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDUnnSzq fyJM/3o0nMhX2nju6BuUMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjIxNEI4QjA3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHVYwDQYJKoZIhvcNAQELBQADggEBAGNOlc26V8SxzoGA muZy+3azT2W9jGqsDo6fcAMTktge0IdjKblzm3VSZxZsWFNnZ8yjxOX9B5h867Iq ASG47g8mJhEPCSq6nt9p3orC+uORoPR5URNvjJhSx7/l39YCeIzSYFbvl4vXKI3T C6QioHQfHRfcdCyOI86s8l4dvJULkLvwp+0IPjecYcLh1ThOCfdhs56SqxWfnKVE 8Hl1FwZMiXuKuH5rRt9OedWS0eusE14Grlg1MHw5KQNpp7GAhKBROhihnxPkN3C+ yvl2kSveR4EgrxJRJhYT6gRZuYYntODrom0x3LRTyxo+FLNp3qhYjdjcJcD9B2Ej RrB9jkc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:50 2025 by rpki-client