$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F73A83F4721511EFA7D82D3EC4F9AE02.roa File: F73A83F4721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: oVYy3xMfXXHXC1g4/kV+3sSVUE924+ktw+UOX0VeuhM= Subject key identifier: 9E:A9:E1:5D:DC:D8:C0:B4:E8:98:98:00:A9:2E:36:2E:D5:65:7F:5F Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: CE Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F73A83F4721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:23 +0000 ROA not before: Sat 21 Dec 2024 05:50:23 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9464 IP address blocks: 202.29.144.0/21 maxlen: 21 2001:3c8:9007::/48 maxlen: 48 2001:3c8:9009::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:23 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766571f-296c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:26:a5:23:3d:cf:18:d7:b5:f0:f9:27:b2: 49:70:07:70:67:30:d4:2c:8c:da:46:6a:7f:04:dc: 06:03:95:24:52:93:d5:10:3d:b0:4c:6c:27:69:70: 84:f6:ba:8b:ea:8d:db:f3:70:6f:1e:e3:d1:7f:a2: 50:66:17:03:e6:19:da:30:df:38:8c:c2:59:68:1b: 28:2c:f3:28:08:e1:f1:d5:df:37:c6:2d:3f:f3:15: 8a:59:86:16:38:f4:04:8e:a1:a4:fb:bf:c5:4c:a1: 8f:14:59:ab:22:ef:90:e9:d3:cf:21:44:65:9d:ae: c1:77:cf:be:84:15:10:4e:30:c4:1b:65:22:d0:69: e1:53:51:52:4c:00:ea:e9:c7:10:70:f0:68:95:94: af:90:02:0e:1f:5d:e4:3d:eb:f5:ce:e6:16:a0:d9: 70:1d:5e:cc:1f:45:9f:de:9b:c5:3c:30:79:99:95: a6:07:92:91:ed:6c:61:2e:ab:cf:c4:ec:70:8d:5f: fc:8b:f8:b2:10:db:3d:ac:f0:be:29:ca:30:df:c8: c7:25:22:03:f3:ff:21:fe:a7:83:55:1d:18:06:b3: a3:f9:1d:b5:ed:81:4d:45:7f:86:ae:f2:b6:79:74: 18:33:db:1e:66:cf:82:d4:9a:58:cd:57:4c:38:2d: 00:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A9:E1:5D:DC:D8:C0:B4:E8:98:98:00:A9:2E:36:2E:D5:65:7F:5F X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F73A83F4721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.144.0/21 IPv6: 2001:3c8:9007::/48 2001:3c8:9009::/48 Signature Algorithm: sha256WithRSAEncryption 2b:ab:57:a1:44:77:fa:54:85:1c:5c:ac:47:a7:c2:fa:bf:7f: bd:f4:19:b8:5d:eb:1a:ed:aa:5e:e1:03:bd:e3:e3:70:8e:1a: c5:7d:05:59:0b:bb:97:31:f8:f0:ed:8a:41:39:21:14:76:fa: 1a:2e:ee:22:00:89:98:90:03:70:b4:cb:3a:b8:bd:a4:ec:85: 2a:1f:27:77:0c:70:f1:78:cd:1b:df:79:5d:19:c1:60:d3:6f: ad:eb:94:69:f5:e9:05:a4:e2:ea:6c:59:fb:c8:0b:11:cb:60: eb:a4:06:53:8e:1e:a2:ef:04:79:93:3b:76:0c:51:07:bb:67: b1:9d:f1:8c:93:c1:86:b0:83:69:d4:97:17:58:d1:c3:fc:22: 52:d4:7a:e9:4e:95:02:eb:3a:f5:11:64:f7:3e:6a:84:f1:4f: b0:2a:97:aa:f7:84:be:ac:d9:97:79:5a:11:ac:63:fa:fc:60: f3:81:e5:90:05:79:8e:84:fa:90:91:d5:e6:dc:e6:d3:39:44: 4d:f4:c0:76:85:9c:f2:1a:e7:f7:35:ad:16:30:87:2b:9d:e1: ca:c7:9a:5b:7b:b3:a3:09:e3:f9:4a:3f:fd:d6:b8:b5:eb:3b: dc:a6:f3:f0:c9:70:39:96:b1:96:bd:b1:aa:c7:49:41:a3:70: 55:a5:f0:b7 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDIzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxZi0yOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1P4mpSM9zxjXtfD5J7JJcAdwZzDULIzaRmp/BNwGA5UkUpPVED2wTGwnaXCE 9rqL6o3b83BvHuPRf6JQZhcD5hnaMN84jMJZaBsoLPMoCOHx1d83xi0/8xWKWYYW OPQEjqGk+7/FTKGPFFmrIu+Q6dPPIURlna7Bd8++hBUQTjDEG2Ui0GnhU1FSTADq 6ccQcPBolZSvkAIOH13kPev1zuYWoNlwHV7MH0Wf3pvFPDB5mZWmB5KR7WxhLqvP xOxwjV/8i/iyENs9rPC+Kcow38jHJSID8/8h/qeDVR0YBrOj+R217YFNRX+GrvK2 eXQYM9seZs+C1JpYzVdMOC0AIQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFJ6p4V3c 2MC06JiYAKkuNi7VZX9fMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjczQTgzRjQ3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAPKHZAwGAQCAAIwEgMHACABA8iQBwMHACABA8iQCTANBgkq hkiG9w0BAQsFAAOCAQEAK6tXoUR3+lSFHFysR6fC+r9/vfQZuF3rGu2qXuEDvePj cI4axX0FWQu7lzH48O2KQTkhFHb6Gi7uIgCJmJADcLTLOri9pOyFKh8ndwxw8XjN G995XRnBYNNvreuUafXpBaTi6mxZ+8gLEctg66QGU44eou8EeZM7dgxRB7tnsZ3x jJPBhrCDadSXF1jRw/wiUtR66U6VAus69RFk9z5qhPFPsCqXqveEvqzZl3laEaxj +vxg84HlkAV5joT6kJHV5tzm0zlETfTAdoWc8hrn9zWtFjCHK53hyseaW3uzownj +Uo//da4tes73Kbz8MlwOZaxlr2xqsdJQaNwVaXwtw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:02:50 2025 by rpki-client