$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa File: F214B8B0721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 5oxxj96TbiTEr7PSVErVCjzuTzJcBB/HpIbfr/bLjyw= Subject key identifier: 5E:66:46:8C:B7:3D:95:EF:8F:52:E7:5A:E2:78:05:48:BB:01:6C:29 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 22 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:47 +0000 ROA not before: Fri 13 Sep 2024 21:05:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149503 IP address blocks: 202.29.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a92a-1108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:60:07:42:d7:15:25:98:f0:c7:a8:fb:b8:23: 16:a5:8c:34:1c:6d:b1:03:13:1c:20:2c:bb:e6:54: 40:b2:49:eb:b7:dd:9b:44:d3:f4:5a:1e:d9:1f:d5: 53:de:08:2b:c2:df:d2:67:2c:68:c7:ea:44:70:2f: 05:c7:45:a6:28:b3:59:f1:2b:33:8c:37:d3:c2:ec: e7:6d:09:7b:bc:d6:4f:56:78:89:17:ad:6a:59:a9: c1:a2:0f:af:f6:96:f8:6c:d4:c0:26:de:5c:46:02: 39:e3:92:cd:dd:ff:81:d7:e1:8e:f6:b2:82:75:f2: fe:7a:b2:ce:ac:ad:98:f3:75:ec:02:a4:ad:46:5b: 32:7f:88:0d:98:f0:11:26:e3:5b:de:e7:7a:1a:14: fe:b9:38:ba:a9:30:48:ce:90:34:57:2e:74:4d:ad: 0f:52:0c:0b:2b:73:ff:35:f2:8a:74:e9:87:2a:e1: bd:5c:69:65:b1:d9:f0:bd:91:73:35:48:2f:96:11: f3:36:d0:df:a7:bb:75:90:f0:f4:12:ae:b1:3b:c2: e2:81:ad:1f:cb:48:b9:b1:45:a8:cb:fa:c2:8d:08: 72:61:e7:54:f3:d0:6b:bb:c0:9a:39:47:9b:04:eb: 17:fa:f0:69:04:ef:b0:0d:4c:c3:32:99:85:ee:8a: 37:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:66:46:8C:B7:3D:95:EF:8F:52:E7:5A:E2:78:05:48:BB:01:6C:29 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F214B8B0721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.86.0/24 Signature Algorithm: sha256WithRSAEncryption 19:0a:f8:8a:91:93:22:71:54:d2:7c:f6:74:95:6d:37:bc:14: 79:0b:e9:33:55:c8:dc:7c:1f:e5:3a:6d:6f:4e:72:21:0c:fc: 46:95:1f:49:c3:5f:b9:d8:e0:3d:4d:c9:85:22:8b:fe:f2:1a: f0:81:1d:35:03:0c:78:e8:02:c1:df:44:ef:6a:ce:a1:a6:49: b3:91:cb:9f:f6:75:d1:ad:e7:ef:b3:52:e0:b9:53:70:ea:65: c7:06:04:e1:98:ba:49:e8:70:0f:fc:38:0d:db:0a:c7:e1:c6: cd:fb:50:1c:ac:82:9a:2f:dc:d2:96:3b:35:78:30:bc:d5:f9: 69:74:42:a7:c4:2a:f8:55:1d:72:fc:cc:89:09:39:71:3b:f4: b2:a0:5b:0f:ee:fc:69:98:20:8f:fe:f6:92:f6:99:54:d0:76: 1f:97:64:ac:62:88:da:3c:f8:19:8a:6b:86:12:c6:1b:d6:f7: 06:fe:97:25:f4:53:8a:ca:6b:11:7a:b6:f4:f6:4c:6c:30:ce: 20:25:50:56:d8:11:36:3c:a5:42:27:6c:0c:b0:4a:d9:53:eb: 3d:cc:5e:95:5e:1f:88:30:37:21:69:d9:f3:cd:fc:c0:70:e9: 77:95:d2:ae:fc:ae:3d:34:06:23:c8:74:a3:63:18:ae:7a:d7: 31:1b:03:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTJhLTExMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4YAdC1xUlmPDHqPu4IxaljDQcbbEDExwgLLvmVECySeu33ZtE0/RaHtkf1VPe CCvC39JnLGjH6kRwLwXHRaYos1nxKzOMN9PC7OdtCXu81k9WeIkXrWpZqcGiD6/2 lvhs1MAm3lxGAjnjks3d/4HX4Y72soJ18v56ss6srZjzdewCpK1GWzJ/iA2Y8BEm 41ve53oaFP65OLqpMEjOkDRXLnRNrQ9SDAsrc/818op06Ycq4b1caWWx2fC9kXM1 SC+WEfM20N+nu3WQ8PQSrrE7wuKBrR/LSLmxRajL+sKNCHJh51Tz0Gu7wJo5R5sE 6xf68GkE77ANTMMymYXuijeFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXmZGjLc9 le+PUuda4ngFSLsBbCkwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GMjE0QjhCMDcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModVjANBgkqhkiG9w0BAQsFAAOCAQEAGQr4ipGTInFU0nz2 dJVtN7wUeQvpM1XI3Hwf5Tptb05yIQz8RpUfScNfudjgPU3JhSKL/vIa8IEdNQMM eOgCwd9E72rOoaZJs5HLn/Z10a3n77NS4LlTcOplxwYE4Zi6SehwD/w4DdsKx+HG zftQHKyCmi/c0pY7NXgwvNX5aXRCp8Qq+FUdcvzMiQk5cTv0sqBbD+78aZggj/72 kvaZVNB2H5dkrGKI2jz4GYprhhLGG9b3Bv6XJfRTisprEXq29PZMbDDOICVQVtgR NjylQidsDLBK2VPrPcxelV4fiDA3IWnZ8838wHDpd5XSrvyuPTQGI8h0o2MYrnrX MRsDVA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org