$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa File: C829F090459C11EF81933157C4F9AE02.roa (raw, json) Hash identifier: GEeHg9WjYU3lh1+rug3+iyAXkVTNme5S64Ryfn+QwdI= Subject key identifier: F9:41:5C:71:EE:5F:C4:68:24:E5:7A:E6:30:00:1F:DF:3C:1D:BC:BE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4648 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:48 +0000 ROA not before: Thu 05 Sep 2024 03:35:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38249 IP address blocks: 202.87.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17992 (0x4648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92713-ee20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:b0:f0:62:9e:0b:c0:b4:bb:88:1e:44:14: 85:ac:74:5b:af:86:a5:9a:6c:c3:d7:aa:b6:6a:7f: 9a:2f:dc:5b:b5:25:1d:15:cf:c7:68:92:3a:40:8b: dd:c8:23:fb:71:64:6a:85:87:11:82:9a:6a:ce:79: 64:16:71:5b:27:cb:52:c0:11:6d:1c:d3:8b:ad:95: e7:38:a7:70:6f:c4:d8:1c:5f:11:8c:0e:1e:e1:cc: ab:03:ed:b8:de:24:d1:43:83:f9:c8:e1:bb:68:52: a5:99:33:28:0c:1e:8e:a7:c0:98:1f:8e:32:2e:d0: 71:15:77:4b:96:50:48:67:3c:62:0c:1b:13:4f:4d: 7a:61:df:b6:5a:0b:50:b4:4a:9c:a8:f9:ee:5a:f4: 51:16:1c:2d:d1:ee:21:e1:6c:2c:50:8a:19:c0:72: 7d:2f:c8:5f:b3:9c:1d:51:97:68:a6:63:b0:0b:28: 25:73:25:d4:30:5c:08:74:86:dc:c6:99:70:ae:6d: 0f:c2:76:bf:0d:56:64:aa:a8:08:c6:6f:ed:64:70: 87:21:5d:6b:fe:3a:7c:47:12:4e:c7:32:6d:4a:0f: 04:47:23:0a:51:b6:26:08:49:c8:81:84:9d:90:d5: d0:52:82:18:8b:82:e7:68:72:83:72:2a:80:1c:e9: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:41:5C:71:EE:5F:C4:68:24:E5:7A:E6:30:00:1F:DF:3C:1D:BC:BE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.87.212.0/22 Signature Algorithm: sha256WithRSAEncryption 08:f4:45:00:94:4a:ac:14:a5:5f:e0:16:71:50:17:94:d8:c8: 47:27:31:f7:f2:42:4e:a8:13:c4:94:aa:0a:81:72:20:00:d9: a5:fa:fb:f4:17:cf:29:dd:d8:fa:36:12:b6:0c:cd:2c:29:26: a4:5e:db:36:88:64:75:b7:31:c3:c4:a1:8a:cb:31:8d:29:94: 01:c0:d6:17:38:eb:7c:f4:c2:5e:a5:56:5e:44:b7:30:73:fc: f3:51:9b:f1:b3:93:94:88:14:6b:31:13:cd:e7:e4:32:96:a4: 58:00:0c:61:df:66:3b:2a:4f:ba:0e:1e:f1:d5:25:ca:5e:37: 80:ab:92:fd:cc:74:35:72:af:fe:c8:c6:23:a9:4a:94:e7:16: 24:9a:ec:9c:09:99:99:65:3a:1b:27:30:a1:93:15:4b:62:17: 44:0e:04:56:65:70:eb:fe:75:e2:a3:45:31:1d:43:65:48:f8: 14:87:e6:94:8f:55:5c:83:92:e3:e9:8b:44:2a:56:ab:32:29: aa:7b:52:0d:dc:c6:43:8a:c4:8d:b0:09:11:43:b2:90:78:09: 9f:e0:76:a6:6c:e3:f4:cf:8c:3e:21:47:89:ba:b7:21:a4:21: fb:07:d5:3c:d4:96:e0:30:e7:2d:8a:6d:1e:0d:4b:41:d9:72: 90:d9:c9:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTQ4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcxMy1lZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzk6w8GKeC8C0u4geRBSFrHRbr4almmzD16q2an+aL9xbtSUdFc/HaJI6QIvd yCP7cWRqhYcRgppqznlkFnFbJ8tSwBFtHNOLrZXnOKdwb8TYHF8RjA4e4cyrA+24 3iTRQ4P5yOG7aFKlmTMoDB6Op8CYH44yLtBxFXdLllBIZzxiDBsTT016Yd+2WgtQ tEqcqPnuWvRRFhwt0e4h4WwsUIoZwHJ9L8hfs5wdUZdopmOwCyglcyXUMFwIdIbc xplwrm0Pwna/DVZkqqgIxm/tZHCHIV1r/jp8RxJOxzJtSg8ERyMKUbYmCEnIgYSd kNXQUoIYi4LnaHKDciqAHOmPoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPlBXHHu X8RoJOV65jAAH988Hby+MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzgyOUYwOTA0 NTlDMTFFRjgxOTMzMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKV9QwDQYJKoZIhvcNAQELBQADggEBAAj0RQCUSqwUpV/g FnFQF5TYyEcnMffyQk6oE8SUqgqBciAA2aX6+/QXzynd2Po2ErYMzSwpJqRe2zaI ZHW3McPEoYrLMY0plAHA1hc463z0wl6lVl5EtzBz/PNRm/Gzk5SIFGsxE83n5DKW pFgADGHfZjsqT7oOHvHVJcpeN4Crkv3MdDVyr/7IxiOpSpTnFiSa7JwJmZllOhsn MKGTFUtiF0QOBFZlcOv+deKjRTEdQ2VI+BSH5pSPVVyDkuPpi0QqVqsyKap7Ug3c xkOKxI2wCRFDspB4CZ/gdqZs4/TPjD4hR4m6tyGkIfsH1TzUluAw5y2KbR4NS0HZ cpDZyfQ= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org