$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa File: F60CA67E721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: 34Ec30IeenXPN6mM8ITlgmmvkUFWqD9EhE3t7LVEUuU= Subject key identifier: 36:53:CC:83:33:0E:4A:42:7F:B7:89:B7:DA:5F:50:E8:2C:CC:9E:1E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: C0 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:08 +0000 ROA not before: Sat 21 Dec 2024 05:50:08 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24344 IP address blocks: 202.29.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:08 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665710-9327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:97:1e:ce:ce:06:06:c5:4b:24:a2:ab:b6: c8:d9:8c:cf:64:8c:ce:d5:d3:d5:2b:9e:d6:45:97: f0:f4:c5:1c:d4:4f:cc:31:dd:66:20:1c:66:ad:05: 2c:7f:3f:02:99:b5:19:56:ce:7a:be:37:93:c2:0e: 26:40:1e:76:f8:ba:e7:30:ba:ef:24:cf:a1:c8:c1: e6:00:c6:4e:16:a8:d8:55:ff:c8:9f:19:d4:35:34: 09:58:1c:29:f5:a3:5a:4f:da:a4:72:d9:32:6f:e2: b8:a8:41:99:7a:ac:87:a7:41:c1:ce:0a:0a:dc:5d: 17:79:d9:0c:53:4b:b8:33:8b:bd:e1:38:e0:bb:53: db:11:5b:5e:28:e3:6f:8b:0e:d9:50:0a:f0:28:ff: 5d:f7:58:01:6a:f0:7d:ce:0a:02:ee:dc:fd:a2:8d: c4:50:3c:a4:3b:e3:de:1f:2d:0f:2a:15:9c:e6:2e: 0c:aa:1e:c1:a4:34:aa:27:88:e9:98:84:e9:4a:af: 5f:ae:ce:08:21:9a:f8:a5:1e:ab:f9:cb:f0:b2:ef: 83:f9:df:ba:a1:eb:46:45:dc:55:a3:51:1b:d0:10: 98:48:06:db:cd:ad:bf:7a:58:84:2c:5e:38:0c:f9: e8:9f:7a:54:9b:5a:8e:b3:17:5e:52:b3:00:ec:dc: 59:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:53:CC:83:33:0E:4A:42:7F:B7:89:B7:DA:5F:50:E8:2C:CC:9E:1E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.60.0/24 Signature Algorithm: sha256WithRSAEncryption a3:fa:c3:e5:03:95:c8:3f:84:55:13:fa:a0:0b:cb:b8:28:44: 9c:e8:24:a9:0b:4b:79:e4:aa:1c:6d:51:c1:47:2c:4e:c6:66: de:53:d8:1a:23:57:9d:ec:26:97:98:d9:ec:fd:91:05:1f:40: ba:d6:b3:15:26:53:ab:ec:67:f7:4f:c0:62:13:a6:3f:99:80: 0a:e1:0e:8c:c1:4e:b0:bc:5f:b3:7d:cf:81:5d:f7:71:0a:2b: c3:02:8e:14:86:93:97:59:08:4e:f2:af:e7:32:59:46:79:d0: 5d:aa:3d:13:1a:b5:47:fc:09:60:14:37:79:18:cc:01:b1:ce: bf:5c:24:91:72:aa:70:af:b4:47:cd:5f:f1:4e:d8:bd:8b:11: 08:df:9d:f9:13:7b:51:44:ad:a3:08:cb:44:6c:78:30:73:fc: 6e:cb:35:30:3e:5b:0b:57:6e:8e:e2:fd:b9:c2:92:78:af:7e: f7:b7:9c:fd:2f:a6:43:a0:83:c2:11:7d:28:36:5e:ed:2a:13: 5a:0f:33:9e:5a:59:bf:77:e4:cc:45:29:7d:86:5c:06:18:a9: 96:54:df:1a:9c:9b:7a:79:dc:83:17:56:12:5c:c3:be:e6:fe: 28:74:71:65:dc:59:95:4b:e1:1b:76:82:76:82:b1:49:6b:c8: 27:45:05:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDA4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxMC05MzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3mXHs7OBgbFSySiq7bI2YzPZIzO1dPVK57WRZfw9MUc1E/MMd1mIBxmrQUs fz8CmbUZVs56vjeTwg4mQB52+LrnMLrvJM+hyMHmAMZOFqjYVf/InxnUNTQJWBwp 9aNaT9qkctkyb+K4qEGZeqyHp0HBzgoK3F0XedkMU0u4M4u94Tjgu1PbEVteKONv iw7ZUArwKP9d91gBavB9zgoC7tz9oo3EUDykO+PeHy0PKhWc5i4Mqh7BpDSqJ4jp mITpSq9frs4IIZr4pR6r+cvwsu+D+d+6oetGRdxVo1Eb0BCYSAbbza2/eliELF44 DPnon3pUm1qOsxdeUrMA7NxZ3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDZTzIMz DkpCf7eJt9pfUOgszJ4eMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjYwQ0E2N0U3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHTwwDQYJKoZIhvcNAQELBQADggEBAKP6w+UDlcg/hFUT +qALy7goRJzoJKkLS3nkqhxtUcFHLE7GZt5T2BojV53sJpeY2ez9kQUfQLrWsxUm U6vsZ/dPwGITpj+ZgArhDozBTrC8X7N9z4Fd93EKK8MCjhSGk5dZCE7yr+cyWUZ5 0F2qPRMatUf8CWAUN3kYzAGxzr9cJJFyqnCvtEfNX/FO2L2LEQjfnfkTe1FEraMI y0RseDBz/G7LNTA+WwtXbo7i/bnCknivfve3nP0vpkOgg8IRfSg2Xu0qE1oPM55a Wb935MxFKX2GXAYYqZZU3xqcm3p53IMXVhJcw77m/ih0cWXcWZVL4Rt2gnaCsUlr yCdFBSE= -----END CERTIFICATE-----Generated at Sat Apr 5 02:09:58 2025 by rpki-client