$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F3AA4E86721511EFA7D82D3EC4F9AE02.roa File: F3AA4E86721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: EMuuizrfPzdYRPOtEMZEm2O56l9tLVvi8Ta8ZMxDSac= Subject key identifier: F3:D6:65:CD:B6:38:8A:30:90:1C:AA:C4:82:2F:1C:2B:B6:30:AF:AA Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 99 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F3AA4E86721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:32 +0000 ROA not before: Sat 21 Dec 2024 05:49:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 10227 IP address blocks: 202.29.82.0/23 maxlen: 23 202.29.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:32 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656eb-296c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:e3:d0:9c:c7:fc:ce:08:10:a1:ff:d4:9a: 41:32:74:9f:71:cb:2b:21:98:c3:4b:64:78:65:6e: 65:29:e0:00:c8:3a:42:b9:4a:c0:63:42:37:5a:5f: f3:e1:63:84:1e:83:71:c2:73:02:2e:f1:55:65:c9: 97:5f:28:12:d1:1f:9b:b5:9f:67:d8:20:c4:30:eb: c8:9b:85:6c:15:e8:4f:ac:b2:8c:d0:86:9e:7f:3e: cd:68:0a:71:6b:09:20:4d:7d:ce:c2:31:16:30:3d: 19:06:f2:af:a5:05:df:d6:81:48:6e:1e:68:95:9c: f6:16:e3:b1:9a:0f:ad:c0:b3:4d:d0:45:f9:00:df: 4c:16:4b:94:65:a4:14:f7:60:ba:38:03:1c:7f:ef: c3:87:af:ee:84:38:c2:c5:71:60:51:87:d7:c2:75: 60:1d:96:51:49:9f:50:e0:35:34:d2:85:7a:a3:ec: 21:01:ae:78:37:44:f5:2d:55:78:fc:32:d5:3f:6e: de:e3:4d:53:d3:39:c3:34:f1:a7:d1:b3:4b:ed:16: 4e:8e:5d:44:f0:71:88:64:cf:44:4d:83:e2:6a:22: 5c:86:9b:f7:a5:40:2a:e3:d5:45:c6:62:a8:a7:a3: 97:ae:ce:76:9a:78:09:cc:15:16:8b:fe:79:9c:19: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D6:65:CD:B6:38:8A:30:90:1C:AA:C4:82:2F:1C:2B:B6:30:AF:AA X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F3AA4E86721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.82.0/23 Signature Algorithm: sha256WithRSAEncryption 38:4b:2d:03:7e:5e:80:84:6f:e5:1b:e9:ee:00:d2:9f:2e:e1: f1:d9:d6:cc:f5:d8:b5:65:5f:51:f2:9d:57:03:8a:25:0f:bd: 84:50:e0:9b:be:a3:28:7f:35:14:9c:b3:a0:75:49:9a:66:e9: 40:dc:77:1f:07:bf:be:db:07:19:75:e2:1a:8f:e0:12:30:6b: 10:43:87:61:b3:53:33:d2:6e:cb:06:4c:92:2e:5c:3b:c3:7d: 78:5a:c8:86:fa:cd:48:97:c7:02:99:63:39:62:86:07:17:91: cd:8b:11:d9:46:8a:f7:12:b1:2d:e9:78:b5:74:51:7e:eb:e2: 4b:50:d0:b4:eb:45:78:a3:aa:d7:27:e4:56:50:2d:9f:c8:7b: f6:93:db:76:9f:82:e4:5a:b5:a8:a2:8f:ce:3a:66:f5:ac:64: 76:04:0c:51:9a:9e:30:22:32:58:60:b8:77:7a:af:fe:91:b8: 76:07:1f:c2:30:d6:00:c6:31:1f:46:7e:82:4f:33:fc:7a:62: 9d:ee:cb:7f:a0:bb:2f:59:fa:42:95:44:70:60:5b:bc:56:71: 81:d9:1b:90:09:9a:ac:f9:ac:dd:7a:69:ce:72:6d:cf:4e:2e: 62:66:5d:a6:f7:41:36:de:8d:fc:19:6b:c2:37:d3:e5:7f:27: d9:e0:7c:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZlYi0yOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnPj0JzH/M4IEKH/1JpBMnSfccsrIZjDS2R4ZW5lKeAAyDpCuUrAY0I3Wl/z 4WOEHoNxwnMCLvFVZcmXXygS0R+btZ9n2CDEMOvIm4VsFehPrLKM0Iaefz7NaApx awkgTX3OwjEWMD0ZBvKvpQXf1oFIbh5olZz2FuOxmg+twLNN0EX5AN9MFkuUZaQU 92C6OAMcf+/Dh6/uhDjCxXFgUYfXwnVgHZZRSZ9Q4DU00oV6o+whAa54N0T1LVV4 /DLVP27e401T0znDNPGn0bNL7RZOjl1E8HGIZM9ETYPiaiJchpv3pUAq49VFxmKo p6OXrs52mngJzBUWi/55nBnddQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPPWZc22 OIowkByqxIIvHCu2MK+qMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjNBQTRFODY3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKHVIwDQYJKoZIhvcNAQELBQADggEBADhLLQN+XoCEb+Ub 6e4A0p8u4fHZ1sz12LVlX1HynVcDiiUPvYRQ4Ju+oyh/NRScs6B1SZpm6UDcdx8H v77bBxl14hqP4BIwaxBDh2GzUzPSbssGTJIuXDvDfXhayIb6zUiXxwKZYzlihgcX kc2LEdlGivcSsS3peLV0UX7r4ktQ0LTrRXijqtcn5FZQLZ/Ie/aT23afguRataii j846ZvWsZHYEDFGanjAiMlhguHd6r/6RuHYHH8Iw1gDGMR9GfoJPM/x6Yp3uy3+g uy9Z+kKVRHBgW7xWcYHZG5AJmqz5rN16ac5ybc9OLmJmXab3QTbejfwZa8I30+V/ J9ngfDY= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:11 2025 by rpki-client