$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F47CC898721511EFA7D82D3EC4F9AE02.roa File: F47CC898721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: PG8XTP+YM1JXttB9lbPdljTMoyXF04Bxg6vuzgFOhQ8= Subject key identifier: D9:AD:06:88:11:57:77:81:02:DD:08:7C:89:EA:F1:3A:AA:EE:A5:D8 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: BE Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F47CC898721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:06 +0000 ROA not before: Sat 21 Dec 2024 05:50:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23687 IP address blocks: 202.29.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:06 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766570e-71f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:40:53:12:bf:26:69:f6:f6:e0:a5:e1:58:cc: d6:cc:f8:5f:ac:97:82:86:d6:34:4f:52:31:e0:f6: 51:9f:f5:74:f2:09:73:6a:67:23:9e:54:08:b6:2c: 60:81:c8:1b:0d:e8:9e:d2:32:85:d4:6d:ad:e3:96: 2c:20:df:4f:07:ad:8e:21:28:48:57:d9:d0:2f:56: 78:33:d7:53:b2:50:0f:69:3e:74:25:4f:0b:86:06: e3:3c:83:f6:ff:fd:06:07:7a:ce:4f:59:d2:88:18: 4b:9b:6b:5b:4b:be:5e:34:92:aa:9d:43:f3:3c:80: 0f:d4:cc:9d:8f:a3:76:2b:7d:9b:d9:14:24:31:ce: 94:44:68:f5:3a:36:88:88:9a:7f:14:ef:19:ce:9c: c2:10:e1:f2:68:fb:86:30:ae:bb:b9:3b:15:5b:32: 96:cf:94:cf:0f:0f:f4:4f:e8:1e:67:cb:99:3a:27: 22:e9:5c:8c:33:43:1d:d8:24:13:c7:47:aa:aa:ba: 28:42:c6:d6:b6:77:9f:9a:6e:ed:aa:e4:f6:2b:4b: 70:b0:6e:95:17:f2:77:9c:99:4a:f9:a7:10:a3:63: 51:a1:21:7c:31:a6:8a:b5:82:47:bd:49:be:1b:e0: 00:4c:59:af:e7:96:54:3f:03:bb:61:8f:37:94:6f: d9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AD:06:88:11:57:77:81:02:DD:08:7C:89:EA:F1:3A:AA:EE:A5:D8 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F47CC898721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.77.0/24 Signature Algorithm: sha256WithRSAEncryption a6:31:03:f7:26:51:21:a8:38:af:6f:fb:b5:1d:87:13:47:f3: a3:03:fa:ac:e3:3b:3c:2e:0b:a1:ab:0f:69:aa:f8:6a:0a:74: cd:13:8a:ac:8f:c7:7a:2e:86:66:b8:fd:67:e9:d5:4a:3c:56: 82:e8:c0:7c:97:5d:35:3d:41:15:5c:26:d9:68:e6:60:b7:70: 98:21:3d:30:01:06:68:7e:15:6d:06:39:af:64:9c:8e:f1:2e: fe:a3:05:4d:03:7a:a8:61:9d:e3:f4:b1:5a:62:9c:e3:00:e6: c6:a9:f6:f9:8b:db:d3:0e:e0:b7:73:d1:a5:9e:ab:8a:15:2b: b9:a6:fd:50:fc:74:0f:a5:78:67:66:45:82:be:10:8b:2e:25: e6:d1:fb:48:09:88:fa:0a:c0:0b:22:b2:02:7f:e3:e3:b9:e7: 7f:81:e4:c9:ed:d2:e2:46:e2:da:38:71:48:2d:2b:46:3c:4f: 76:d3:08:7e:a3:b6:b0:ef:fe:a3:5a:22:c9:9e:45:2d:31:b8: 5e:98:58:72:eb:aa:a2:84:fd:b3:82:8a:45:aa:b9:9a:c1:b5: 65:e4:3d:8a:89:cc:76:21:58:d3:9c:1b:0f:b0:88:bc:16:f4: a2:dc:a6:81:5f:e2:00:c0:66:2d:24:b5:96:b9:e3:29:10:4a: 79:0d:d8:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcwZS03MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEBTEr8mafb24KXhWMzWzPhfrJeChtY0T1Ix4PZRn/V08glzamcjnlQItixg gcgbDeie0jKF1G2t45YsIN9PB62OIShIV9nQL1Z4M9dTslAPaT50JU8LhgbjPIP2 //0GB3rOT1nSiBhLm2tbS75eNJKqnUPzPIAP1Mydj6N2K32b2RQkMc6URGj1OjaI iJp/FO8ZzpzCEOHyaPuGMK67uTsVWzKWz5TPDw/0T+geZ8uZOici6VyMM0Md2CQT x0eqqrooQsbWtnefmm7tquT2K0twsG6VF/J3nJlK+acQo2NRoSF8MaaKtYJHvUm+ G+AATFmv55ZUPwO7YY83lG/ZWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmtBogR V3eBAt0IfInq8Tqq7qXYMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjQ3Q0M4OTg3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHU0wDQYJKoZIhvcNAQELBQADggEBAKYxA/cmUSGoOK9v +7UdhxNH86MD+qzjOzwuC6GrD2mq+GoKdM0TiqyPx3ouhma4/Wfp1Uo8VoLowHyX XTU9QRVcJtlo5mC3cJghPTABBmh+FW0GOa9knI7xLv6jBU0DeqhhneP0sVpinOMA 5sap9vmL29MO4Ldz0aWeq4oVK7mm/VD8dA+leGdmRYK+EIsuJebR+0gJiPoKwAsi sgJ/4+O553+B5Mnt0uJG4to4cUgtK0Y8T3bTCH6jtrDv/qNaIsmeRS0xuF6YWHLr qqKE/bOCikWquZrBtWXkPYqJzHYhWNOcGw+wiLwW9KLcpoFf4gDAZi0ktZa54ykQ SnkN2Bs= -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:43 2025 by rpki-client