$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa File: 29C3BF9E691411EF8D868864C4F9AE02.roa (raw, json) Hash identifier: HQ71fsK6HJEx6JB43+BRDscF/a1IXcYLFxyQuU5FBnw= Subject key identifier: D4:11:6E:3C:5A:3D:E4:0B:26:C1:25:0B:76:B8:D0:90:99:AA:12:3D Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02DD Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:34:52 +0000 ROA not before: Wed 27 Nov 2024 01:34:52 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136897 IP address blocks: 202.94.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:34:52 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6746773c-d682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:52:6d:1e:c2:9d:23:87:39:9d:c2:1c:42:5b: 5e:ef:6d:41:2b:0a:80:39:40:64:02:5e:27:56:05: d6:f5:45:c7:f5:0e:04:ba:66:ff:21:18:6a:e0:3a: bf:2e:55:29:a3:9d:8e:79:72:ad:9d:08:04:1a:1a: ec:1e:50:9d:5d:1e:71:c2:6a:86:22:8e:41:ae:05: 73:3a:1a:30:ad:4a:d7:3f:96:99:96:11:ae:6b:40: 2b:33:51:18:c0:88:0a:55:ad:13:2b:73:c0:6b:8a: 45:52:99:e0:c9:88:5b:4c:dd:6a:5a:a6:1e:cf:1f: 81:78:26:00:b4:a9:94:87:f3:79:1e:ee:de:40:df: c4:0e:70:aa:a5:11:be:db:2f:f7:52:a2:5d:ea:42: ef:1a:db:33:44:26:73:2a:fa:ba:5b:77:d6:27:7b: 6b:3b:cf:8d:b5:71:81:b1:ae:b1:ce:de:a9:0f:fe: 08:4a:a3:81:93:ff:2c:63:b6:df:9e:05:b1:aa:80: 93:e8:55:0f:61:3e:23:d2:81:2a:b0:15:64:af:54: 86:3d:e7:c6:77:ec:91:8d:d6:ae:50:cb:28:3e:60: c5:ff:a1:50:f0:1b:14:e8:56:25:31:e3:92:fb:1e: 9a:ce:19:be:63:27:ca:fd:23:55:dd:8b:03:d1:f5: 1a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:11:6E:3C:5A:3D:E4:0B:26:C1:25:0B:76:B8:D0:90:99:AA:12:3D X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/29C3BF9E691411EF8D868864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.246.0/24 Signature Algorithm: sha256WithRSAEncryption 87:15:9c:76:c5:f7:ed:51:dd:72:e2:a8:35:06:ce:23:42:69: 6c:3b:61:fb:bc:bb:34:9a:53:0e:f1:e6:bf:3e:dc:17:ad:fc: b4:d7:f4:72:da:96:2d:8e:ed:6a:3a:ac:02:cf:59:4f:13:66: 53:7f:c3:9d:43:4e:05:89:65:09:1d:7f:3a:a7:cc:70:92:46: 42:4b:e0:db:9a:f2:5c:97:d2:2e:c8:8d:31:cc:da:e4:4e:67: 5f:20:62:c7:1a:c8:f1:09:e8:3b:c6:3a:02:f6:5c:61:10:81: 68:b2:b4:86:dc:a0:de:1f:31:55:96:43:7f:72:de:dc:46:fd: 6e:7d:5e:7a:a1:68:da:21:e6:73:f1:b4:f8:21:3d:5e:21:58: 43:93:7f:e0:5a:92:55:a0:61:b3:58:2b:57:2c:5a:26:14:f8: fb:47:1f:59:d2:0a:2b:5b:63:88:d4:b5:d9:02:24:98:d3:76: bc:83:e6:59:c5:79:df:f2:77:19:1f:21:e2:72:9c:5d:2c:52: c8:de:a3:03:c2:fb:ed:79:7a:85:7c:cb:ac:62:38:4b:8a:7b: d8:6a:f4:c3:80:07:ff:72:83:35:f2:6b:f1:1e:0b:83:c5:22: 15:28:9c:25:32:b1:62:1e:59:0e:67:3f:ca:08:d3:0f:6e:f0: 6a:f0:de:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNDUyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2NzczYy1kNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlJtHsKdI4c5ncIcQlte721BKwqAOUBkAl4nVgXW9UXH9Q4Eumb/IRhq4Dq/ LlUpo52OeXKtnQgEGhrsHlCdXR5xwmqGIo5BrgVzOhowrUrXP5aZlhGua0ArM1EY wIgKVa0TK3PAa4pFUpngyYhbTN1qWqYezx+BeCYAtKmUh/N5Hu7eQN/EDnCqpRG+ 2y/3UqJd6kLvGtszRCZzKvq6W3fWJ3trO8+NtXGBsa6xzt6pD/4ISqOBk/8sY7bf ngWxqoCT6FUPYT4j0oEqsBVkr1SGPefGd+yRjdauUMsoPmDF/6FQ8BsU6FYlMeOS +x6azhm+YyfK/SNV3YsD0fUaHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNQRbjxa PeQLJsElC3a40JCZqhI9MB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvMjlDM0JGOUU2 OTE0MTFFRjhEODY4ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXvYwDQYJKoZIhvcNAQELBQADggEBAIcVnHbF9+1R3XLi qDUGziNCaWw7Yfu8uzSaUw7x5r8+3Bet/LTX9HLali2O7Wo6rALPWU8TZlN/w51D TgWJZQkdfzqnzHCSRkJL4Nua8lyX0i7IjTHM2uROZ18gYscayPEJ6DvGOgL2XGEQ gWiytIbcoN4fMVWWQ39y3txG/W59XnqhaNoh5nPxtPghPV4hWEOTf+BaklWgYbNY K1csWiYU+PtHH1nSCitbY4jUtdkCJJjTdryD5lnFed/ydxkfIeJynF0sUsjeowPC ++15eoV8y6xiOEuKe9hq9MOAB/9ygzXya/EeC4PFIhUonCUysWIeWQ5nP8oI0w9u 8Grw3iE= -----END CERTIFICATE-----Generated at Sat Apr 5 08:24:16 2025 by rpki-client