$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa File: F35347DC721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: jTVngJnAemstovyfP22UEo24DW7s8PP+QLoVIV4sTpA= Subject key identifier: E5:59:AE:2C:1D:A5:70:3A:3E:BD:3F:23:3A:E3:40:B4:24:E2:1C:4B Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 24 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:49 +0000 ROA not before: Fri 13 Sep 2024 21:05:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150107 IP address blocks: 202.29.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a92c-7454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cd:c8:b4:3d:f0:49:e2:fc:bc:7a:e4:de:75: b7:9d:6b:86:fc:8c:a1:52:78:90:ae:a9:ef:4d:9f: 50:98:88:71:71:ab:d4:74:a7:c0:5e:14:87:e3:94: ef:d6:f0:43:2b:7a:20:3d:46:af:3c:c2:1f:98:6e: d7:44:51:f1:46:2e:62:1f:ab:eb:5f:d2:cd:a6:b0: 22:4f:a8:85:8c:ce:da:a9:48:e8:e5:ff:e3:d3:51: 08:a5:0b:f2:7c:66:6b:96:ec:61:a6:85:96:9f:c0: ca:18:6e:aa:22:ff:e7:85:75:61:06:6a:48:37:e3: 60:e0:46:f4:fb:e0:ec:57:fa:ec:95:b4:50:48:9d: 22:a4:90:33:66:eb:cf:ef:55:17:0c:7f:32:b0:ea: a5:b2:83:50:6b:c4:69:e1:04:0e:03:7b:96:44:d0: 3e:bc:b6:75:86:ad:84:92:e3:a8:23:5d:f4:e1:eb: 0c:4a:6e:64:ae:b6:dd:1a:98:60:88:8d:79:22:92: 62:45:b2:e8:dd:2b:c3:6b:dd:40:16:0e:cb:d7:30: d0:63:36:9f:83:b1:27:fe:a2:62:60:f2:5a:5c:f0: 98:42:ad:1d:1d:ea:77:b3:a0:1c:03:fd:31:21:2a: c9:17:01:1c:68:7e:e2:b2:0f:e4:85:eb:f7:7b:21: a1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:59:AE:2C:1D:A5:70:3A:3E:BD:3F:23:3A:E3:40:B4:24:E2:1C:4B X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.30.0/24 Signature Algorithm: sha256WithRSAEncryption 56:c8:1e:01:ae:19:1a:f7:fc:a2:6c:5c:81:cf:ae:46:1d:84: 61:1b:4f:64:07:00:56:05:28:40:48:ed:b1:4c:94:d3:83:6a: a7:4c:ce:74:f9:aa:1b:45:54:ea:40:cc:02:53:7a:19:40:9d: 12:6b:2d:1e:e2:d5:f4:0b:59:97:5a:59:4f:d3:c1:73:b9:5e: 3f:d2:1c:2d:ee:a7:b6:9a:92:11:0a:b5:3e:14:92:b6:67:82: 91:c3:80:46:0e:95:c9:81:88:0d:b7:a7:b2:4d:20:0d:ad:0e: 0a:bc:00:43:39:ae:55:9b:7f:ec:1c:ae:e7:12:d5:32:1c:91: 23:81:a1:bf:95:49:0c:dc:6b:38:93:71:ad:31:f8:8e:47:14: 9d:c9:b4:b1:b8:11:7f:de:ca:38:3b:2e:5f:c6:65:10:e3:17: 95:b2:32:c2:c4:8e:28:e5:6c:43:89:d2:fa:02:40:6b:a6:fc: b9:21:99:e3:0f:f1:c9:4f:0a:20:6a:d2:6f:b2:05:6c:af:e5: c6:de:b3:9d:1b:c3:c1:8e:e3:86:3c:17:d9:96:c0:f4:cb:d5: 9d:06:cf:ae:4b:14:72:9f:35:6d:7c:c9:1f:77:0d:c6:25:fb: 59:11:50:39:30:a5:32:c2:4a:51:d0:c1:d5:ae:1d:c6:3a:75: 63:0e:ed:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTJjLTc0NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdzci0PfBJ4vy8euTedbeda4b8jKFSeJCuqe9Nn1CYiHFxq9R0p8BeFIfjlO/W 8EMreiA9Rq88wh+YbtdEUfFGLmIfq+tf0s2msCJPqIWMztqpSOjl/+PTUQilC/J8 ZmuW7GGmhZafwMoYbqoi/+eFdWEGakg342DgRvT74OxX+uyVtFBInSKkkDNm68/v VRcMfzKw6qWyg1BrxGnhBA4De5ZE0D68tnWGrYSS46gjXfTh6wxKbmSutt0amGCI jXkikmJFsujdK8Nr3UAWDsvXMNBjNp+DsSf+omJg8lpc8JhCrR0d6nezoBwD/TEh KskXARxofuKyD+SF6/d7IaH5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5VmuLB2l cDo+vT8jOuNAtCTiHEswHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GMzUzNDdEQzcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModHjANBgkqhkiG9w0BAQsFAAOCAQEAVsgeAa4ZGvf8omxc gc+uRh2EYRtPZAcAVgUoQEjtsUyU04Nqp0zOdPmqG0VU6kDMAlN6GUCdEmstHuLV 9AtZl1pZT9PBc7leP9IcLe6ntpqSEQq1PhSStmeCkcOARg6VyYGIDbensk0gDa0O CrwAQzmuVZt/7Byu5xLVMhyRI4Ghv5VJDNxrOJNxrTH4jkcUncm0sbgRf97KODsu X8ZlEOMXlbIywsSOKOVsQ4nS+gJAa6b8uSGZ4w/xyU8KIGrSb7IFbK/lxt6znRvD wY7jhjwX2ZbA9MvVnQbPrksUcp81bXzJH3cNxiX7WRFQOTClMsJKUdDB1a4dxjp1 Yw7tnw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org