$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa File: 29C3BF9E691411EF8D868864C4F9AE02.roa (raw, json) Hash identifier: 5FyekhanKOBzIO3xOANeuQCYPA72qdWmC2q5ETO03hU= Subject key identifier: 4F:00:D1:EA:33:1A:E5:6D:0C:21:60:3B:FE:DD:02:E6:36:84:6E:76 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 028A Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa Signing time: Mon 02 Sep 2024 10:14:40 +0000 ROA not before: Mon 02 Sep 2024 10:14:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136897 IP address blocks: 202.94.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Sep 2 10:14:40 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66d5900f-07fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c5:b8:8c:a1:5d:46:b7:93:a4:9f:df:ee:87: 2c:4d:61:ac:f1:5d:be:9d:cf:91:48:ba:67:73:87: e1:45:bf:81:8c:ce:3f:be:13:68:89:68:e0:c4:c5: a4:37:cd:4a:b7:af:98:9b:6f:fa:17:dc:50:b5:fc: 1f:dd:3f:7b:5c:e1:b8:31:37:44:d6:72:b8:71:95: d2:1d:13:e6:ce:19:6e:ed:bd:26:ee:98:3a:4f:e0: 90:e2:14:8e:83:a8:e8:3f:23:92:33:cd:f1:5b:b2: 1c:69:cb:86:13:a9:91:9a:44:28:48:be:46:1f:97: c0:a5:c3:9a:b1:e3:b1:4b:0f:ae:46:de:c1:73:f4: 6e:b4:2c:b7:99:43:51:89:5b:f2:fd:0f:34:c8:ed: 49:63:cc:38:11:7d:25:7c:50:ad:81:ff:dd:92:da: 2f:24:5c:a5:27:0b:b1:2a:e1:c1:0d:fe:55:d7:b7: c8:f1:6c:7e:c2:7b:be:88:ef:d0:0d:b2:a6:9a:c8: fa:86:29:00:3e:72:f6:7d:4a:fc:28:f5:f2:2e:7c: b8:97:e1:75:ab:bf:e2:b5:72:63:34:e6:90:59:b7: 4a:f6:75:6c:96:6d:b4:c9:77:77:ad:1f:dc:07:d5: a5:09:ac:17:cb:e7:db:95:5a:4b:45:cd:66:b1:74: d4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:00:D1:EA:33:1A:E5:6D:0C:21:60:3B:FE:DD:02:E6:36:84:6E:76 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.246.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ab:5d:41:09:10:16:80:ca:2b:37:9e:73:5b:9a:92:44:87: c1:a1:13:b4:47:6a:d9:12:be:ef:32:7b:9e:b8:88:99:3a:59: ed:55:fd:7d:59:cc:8c:1d:8c:38:e5:4a:24:d4:97:8a:d3:71: c8:05:f3:66:f7:46:7d:f4:4f:e7:0d:1c:de:a6:b6:8a:6d:99: 10:04:9e:4c:aa:44:fb:20:99:ec:11:66:e4:e6:ad:19:c3:ba: 4e:98:62:c2:6c:b4:d6:48:bb:66:d9:b0:7d:25:74:4f:21:a6: 09:78:cd:7f:d1:e2:ff:41:03:f6:99:56:05:6f:bd:b0:45:58: bb:f7:81:46:27:7b:96:94:65:ca:6a:82:51:86:1f:19:26:74: 26:96:59:da:f5:6a:a7:24:ab:50:f5:fc:15:a4:6a:92:ab:b2: ef:f7:97:ae:4a:85:38:0c:f2:44:37:99:bb:65:20:a7:10:5e: 26:7f:af:1a:e1:d0:e9:ba:37:9e:8d:c6:33:6a:bd:71:d3:02: 8e:63:2e:b9:1a:80:02:f9:79:3f:68:fc:8f:df:aa:82:40:b4: 09:58:7e:83:91:dc:59:0f:06:6e:43:54:bc:84:82:81:55:21: e2:23:7b:ab:33:ce:5d:48:02:ca:f2:8c:1d:4e:62:c4:67:dc: 1e:d4:c7:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQwOTAyMTAxNDQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1OTAwZi0wN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMW4jKFdRreTpJ/f7ocsTWGs8V2+nc+RSLpnc4fhRb+BjM4/vhNoiWjgxMWk N81Kt6+Ym2/6F9xQtfwf3T97XOG4MTdE1nK4cZXSHRPmzhlu7b0m7pg6T+CQ4hSO g6joPyOSM83xW7IcacuGE6mRmkQoSL5GH5fApcOaseOxSw+uRt7Bc/RutCy3mUNR iVvy/Q80yO1JY8w4EX0lfFCtgf/dktovJFylJwuxKuHBDf5V17fI8Wx+wnu+iO/Q DbKmmsj6hikAPnL2fUr8KPXyLny4l+F1q7/itXJjNOaQWbdK9nVslm20yXd3rR/c B9WlCawXy+fblVpLRc1msXTUkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE8A0eoz GuVtDCFgO/7dAuY2hG52MB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvMjlDM0JGOUU2 OTE0MTFFRjhEODY4ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXvYwDQYJKoZIhvcNAQELBQADggEBAHirXUEJEBaAyis3 nnNbmpJEh8GhE7RHatkSvu8ye564iJk6We1V/X1ZzIwdjDjlSiTUl4rTccgF82b3 Rn30T+cNHN6mtoptmRAEnkyqRPsgmewRZuTmrRnDuk6YYsJstNZIu2bZsH0ldE8h pgl4zX/R4v9BA/aZVgVvvbBFWLv3gUYne5aUZcpqglGGHxkmdCaWWdr1aqckq1D1 /BWkapKrsu/3l65KhTgM8kQ3mbtlIKcQXiZ/rxrh0Om6N56NxjNqvXHTAo5jLrka gAL5eT9o/I/fqoJAtAlYfoOR3FkPBm5DVLyEgoFVIeIje6szzl1IAsryjB1OYsRn 3B7Ux+o= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org