$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa File: 144FD192722011EF981BE15DC4F9AE02.roa (raw, json) Hash identifier: l/e0hEDUdAwMY8h9cqbzUQisYHPrbTpc9AzvCcMP65E= Subject key identifier: BA:B4:91:06:1D:7A:BE:1F:1B:B7:6F:B1:E0:B3:AC:0A:D8:B8:AF:DD Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: CD Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:22 +0000 ROA not before: Sat 21 Dec 2024 05:50:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 56277 IP address blocks: 202.29.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:22 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6766571e-82e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:b2:f9:aa:83:8f:64:64:9b:06:56:6d:05: 70:bf:76:ff:75:f8:a3:1c:79:a6:52:24:26:14:c7: 45:16:9a:3c:6d:be:16:44:b5:4b:00:c1:cf:14:c4: d6:95:69:b0:24:f0:3b:b6:fb:ff:e5:a3:5f:0d:22: 7b:66:5d:a2:1d:53:b6:87:5b:bc:6f:fe:33:8b:be: 66:92:9f:d3:ec:3e:42:a7:6f:2d:1f:33:82:2a:6f: 95:18:34:8f:9e:f2:0d:e6:f0:85:ec:71:7f:b4:fe: 85:35:c8:38:a2:45:53:bd:47:34:c4:2d:8e:9f:42: 5c:3e:1f:f2:8f:77:95:04:c6:1d:a2:f5:1c:4f:74: d3:1e:a7:c0:67:88:7e:38:47:54:e6:c6:c6:d2:cf: 8a:67:82:e3:1c:1f:5f:83:8d:70:c6:ef:4c:0c:fc: cc:bd:68:52:bd:f0:19:32:0a:53:b5:d0:85:8b:19: ee:b1:23:2f:4d:0a:72:33:74:86:c3:39:4b:e0:97: 2e:6a:97:ff:57:ba:3e:e1:b3:83:02:47:d0:08:43: 26:22:53:20:50:b6:b3:f4:1f:6d:0e:27:be:ef:e4: 7c:c0:46:cc:b7:ff:69:01:d0:51:51:f7:f3:19:85: 28:9e:a9:cd:4a:b0:dd:c6:7e:84:6d:6e:d8:55:87: f9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B4:91:06:1D:7A:BE:1F:1B:B7:6F:B1:E0:B3:AC:0A:D8:B8:AF:DD X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.23.0/24 Signature Algorithm: sha256WithRSAEncryption 44:94:80:90:89:22:ae:76:45:a7:f3:91:e0:66:7c:4c:75:d8: dc:2c:62:cf:2c:85:ca:d4:76:ed:bd:a8:1a:e5:c2:6a:af:13: cf:9f:7a:f4:1c:da:0d:17:0f:aa:46:60:ca:ab:75:13:ca:20: 63:5d:f3:7e:7b:67:d8:56:b7:55:68:22:5c:07:9e:05:d6:37: ea:24:99:27:b5:f1:9b:e5:66:ac:f1:2d:fb:72:83:4d:60:73: 07:8b:21:de:a9:94:61:e3:62:64:58:df:b8:e4:a1:3f:e4:ad: ba:2e:58:15:b8:a9:a1:b4:a7:75:a4:a1:9b:9b:32:2f:d1:5b: fe:bb:bf:18:30:6d:3e:d9:e7:45:de:93:7f:bc:fe:3b:df:eb: 6f:c9:b4:a1:b1:4e:96:98:8e:41:62:2c:dc:b0:b4:ea:8b:96: a0:10:e0:e5:e2:ef:0f:40:08:15:3f:1f:b8:15:f9:6e:37:d0: ba:b6:97:f1:1b:e2:1e:54:8e:42:ef:71:d8:42:a4:73:37:0e: 22:11:54:61:42:c6:cb:24:f6:e5:3b:93:f5:4d:e3:12:99:79: 60:9d:94:f9:f4:d1:0e:e2:6e:e2:21:82:0e:77:01:03:f7:cb: 9b:31:7b:57:cd:05:ac:c3:f1:e3:a0:ad:69:0b:bb:48:91:2a: 71:87:a1:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxZS04MmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6Cy+aqDj2RkmwZWbQVwv3b/dfijHHmmUiQmFMdFFpo8bb4WRLVLAMHPFMTW lWmwJPA7tvv/5aNfDSJ7Zl2iHVO2h1u8b/4zi75mkp/T7D5Cp28tHzOCKm+VGDSP nvIN5vCF7HF/tP6FNcg4okVTvUc0xC2On0JcPh/yj3eVBMYdovUcT3TTHqfAZ4h+ OEdU5sbG0s+KZ4LjHB9fg41wxu9MDPzMvWhSvfAZMgpTtdCFixnusSMvTQpyM3SG wzlL4Jcuapf/V7o+4bODAkfQCEMmIlMgULaz9B9tDie+7+R8wEbMt/9pAdBRUffz GYUonqnNSrDdxn6EbW7YVYf5mQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLq0kQYd er4fG7dvseCzrArYuK/dMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMTQ0RkQxOTI3 MjIwMTFFRjk4MUJFMTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHRcwDQYJKoZIhvcNAQELBQADggEBAESUgJCJIq52Rafz keBmfEx12NwsYs8shcrUdu29qBrlwmqvE8+fevQc2g0XD6pGYMqrdRPKIGNd8357 Z9hWt1VoIlwHngXWN+okmSe18ZvlZqzxLftyg01gcweLId6plGHjYmRY37jkoT/k rbouWBW4qaG0p3WkoZubMi/RW/67vxgwbT7Z50Xek3+8/jvf62/JtKGxTpaYjkFi LNywtOqLlqAQ4OXi7w9ACBU/H7gV+W430Lq2l/Eb4h5UjkLvcdhCpHM3DiIRVGFC xssk9uU7k/VN4xKZeWCdlPn00Q7ibuIhgg53AQP3y5sxe1fNBazD8eOgrWkLu0iR KnGHoeQ= -----END CERTIFICATE-----Generated at Mon Feb 17 08:17:18 2025 by rpki-client