$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa File: F35347DC721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: U2aqbsnYgx3v33spZ7WluEXAzPxot1hAi/yz73VRB1E= Subject key identifier: A9:F7:52:DB:5D:B7:D6:0E:DA:C5:33:59:A5:A5:C2:8F:49:F4:99:4E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: B9 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:00 +0000 ROA not before: Sat 21 Dec 2024 05:50:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150107 IP address blocks: 202.29.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:00 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665708-eabb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dc:55:87:8c:13:a4:06:9a:9a:da:f8:cc:8a: 92:57:ab:c1:99:61:54:0c:56:76:db:91:29:9e:b2: c0:0c:7c:47:d1:b7:2f:04:f6:37:7c:d0:e5:30:b1: 42:38:6a:8f:85:f0:b6:15:86:c1:21:28:e4:c7:44: 4b:57:8a:8d:cc:8e:8e:35:d3:94:53:7b:7a:76:6a: e5:f2:95:dc:ca:e9:25:4d:e4:42:6c:4a:a4:2c:bb: 41:ee:0d:a8:cc:b5:5d:cf:33:42:9c:f2:8f:23:31: bf:1b:6f:14:18:7b:00:bc:5b:e5:4a:eb:fc:01:bd: 6e:8b:62:86:f1:29:74:70:37:2a:aa:22:cf:8c:b0: c3:9f:b5:4b:a0:7c:aa:64:1b:ac:e7:33:b9:2c:df: 88:26:4d:a9:99:54:ba:d8:3e:bf:46:9f:3c:7b:f8: 59:df:82:2e:1d:da:20:a7:fe:59:a0:ab:a3:9d:6c: 2b:9f:1b:b3:6f:20:8c:1f:e1:45:6a:b0:9d:50:4b: 88:ea:40:d3:ff:93:13:49:e6:d4:97:b6:37:b7:2c: 9e:ca:0e:9a:df:b4:18:45:37:6f:a7:36:61:4a:3b: 75:6b:b7:b2:47:6f:fa:46:cd:ef:d8:54:ea:00:76: 41:37:58:95:10:5c:20:9c:6e:0a:19:8f:0a:9c:c0: 79:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F7:52:DB:5D:B7:D6:0E:DA:C5:33:59:A5:A5:C2:8F:49:F4:99:4E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F35347DC721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.30.0/24 Signature Algorithm: sha256WithRSAEncryption 57:47:d9:13:cd:0e:ac:d0:b8:64:58:71:3a:1d:8d:09:2b:2d: 86:bc:73:0e:06:76:36:d0:2e:c4:8b:d1:18:1a:cb:2b:f9:e2: 51:38:9b:a9:c3:a1:4f:85:d5:24:f7:4f:f9:01:e2:61:0f:cb: 20:87:91:24:83:63:71:d0:e2:ac:92:99:3d:f3:a4:fc:40:c4: d6:86:4c:6f:e2:83:9e:e1:21:c8:ed:6d:d3:27:4b:5c:01:c0: bc:a4:8c:11:37:87:c3:04:43:ed:31:83:19:a9:d8:38:b8:d1: 27:ea:3e:cc:12:4c:28:d1:18:f4:9c:69:0b:e7:d2:bb:79:25: 7b:d5:86:1d:d3:69:d3:8a:f4:ac:ff:35:e7:36:70:57:ac:19: 1d:01:74:2f:69:cb:ad:d8:47:10:db:c6:07:e7:dc:0d:f3:00: 8b:f8:3f:2c:6f:f0:4a:76:75:1c:44:12:a7:db:3b:e9:08:80: 14:01:16:e9:7e:ab:e8:01:5d:01:22:75:fa:7b:b6:bb:0e:8c: 14:db:d2:9c:1d:b1:f4:94:38:ee:dc:37:34:55:3f:f7:d5:cb: 9b:28:70:53:c5:f7:df:91:7a:0d:a2:73:97:01:46:67:b1:0d: 7a:c2:3a:94:73:ed:d8:fe:8e:f7:4f:d4:38:07:9a:bd:95:47: e7:7e:f8:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwOC1lYWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39xVh4wTpAaamtr4zIqSV6vBmWFUDFZ225EpnrLADHxH0bcvBPY3fNDlMLFC OGqPhfC2FYbBISjkx0RLV4qNzI6ONdOUU3t6dmrl8pXcyuklTeRCbEqkLLtB7g2o zLVdzzNCnPKPIzG/G28UGHsAvFvlSuv8Ab1ui2KG8Sl0cDcqqiLPjLDDn7VLoHyq ZBus5zO5LN+IJk2pmVS62D6/Rp88e/hZ34IuHdogp/5ZoKujnWwrnxuzbyCMH+FF arCdUEuI6kDT/5MTSebUl7Y3tyyeyg6a37QYRTdvpzZhSjt1a7eyR2/6Rs3v2FTq AHZBN1iVEFwgnG4KGY8KnMB5AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKn3Uttd t9YO2sUzWaWlwo9J9JlOMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjM1MzQ3REM3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHR4wDQYJKoZIhvcNAQELBQADggEBAFdH2RPNDqzQuGRY cTodjQkrLYa8cw4GdjbQLsSL0Rgayyv54lE4m6nDoU+F1ST3T/kB4mEPyyCHkSSD Y3HQ4qySmT3zpPxAxNaGTG/ig57hIcjtbdMnS1wBwLykjBE3h8MEQ+0xgxmp2Di4 0SfqPswSTCjRGPScaQvn0rt5JXvVhh3TadOK9Kz/Nec2cFesGR0BdC9py63YRxDb xgfn3A3zAIv4Pyxv8Ep2dRxEEqfbO+kIgBQBFul+q+gBXQEidfp7trsOjBTb0pwd sfSUOO7cNzRVP/fVy5socFPF99+Reg2ic5cBRmexDXrCOpRz7dj+jvdP1DgHmr2V R+d++G4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:48 2025 by rpki-client