$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa File: C304F128721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: he445Fw1NtPRyf/pqK6Un08+JhPgDCtgjjaoYq0qdYA= Subject key identifier: E0:4D:F3:F9:3B:5C:10:95:5C:71:A8:25:02:02:81:54:31:9D:35:A8 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 30 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:47 +0000 ROA not before: Fri 13 Sep 2024 21:18:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137241 IP address blocks: 202.29.80.0/23 maxlen: 23 2001:3c8:4007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac36-9851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ac:b0:f9:8e:75:14:ad:2a:f3:6a:e9:fd:29: a5:13:d0:9a:a7:3f:07:fc:b5:64:5f:6d:d4:d3:80: 16:3a:b2:b0:19:a4:89:4c:72:c4:83:31:f0:3e:78: 28:4e:b9:05:43:5b:41:38:42:2d:0a:e9:18:31:a1: 36:06:b0:04:29:71:49:28:24:45:41:8e:df:2b:38: 6a:a2:be:f0:f8:2d:de:4d:50:79:b0:97:91:10:fe: 4a:4d:df:ab:83:69:e3:80:85:dc:90:64:0b:ce:5f: 3a:cd:82:c6:9a:d5:8c:ad:7b:9b:2e:5b:77:c0:7c: f3:c1:d4:0a:09:47:dc:d7:62:6b:dc:5a:7d:77:42: eb:64:c5:93:44:b7:ab:31:aa:3b:5b:79:fa:29:3c: ad:ac:d8:5d:6f:68:0e:43:e2:82:96:a6:7e:01:a0: af:25:a1:cb:e2:87:95:13:1d:aa:94:36:16:7b:1d: e0:99:f8:97:0f:87:8a:ef:3d:61:85:c5:e9:fb:49: 5a:c5:38:2c:d1:f2:09:62:37:ff:e0:75:ce:74:c9: 5d:ea:19:24:6b:5c:47:ee:bd:2e:5e:23:02:17:65: 90:50:ce:9f:1b:2f:b0:1c:e3:d5:18:2b:03:34:7f: 5b:a9:2a:85:d2:35:e0:36:c9:ff:e4:f5:22:e2:73: 6b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4D:F3:F9:3B:5C:10:95:5C:71:A8:25:02:02:81:54:31:9D:35:A8 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.80.0/23 IPv6: 2001:3c8:4007::/48 Signature Algorithm: sha256WithRSAEncryption 96:cc:24:65:16:40:65:4a:78:60:57:13:86:bc:7c:23:52:46: 62:83:3d:7f:40:57:59:ad:a8:c9:b3:82:83:80:4a:35:66:f3: da:bd:bf:03:42:f6:5d:21:db:de:e0:10:43:a8:b6:96:20:7b: 43:4a:b7:f9:06:df:1c:ab:ab:be:97:8c:27:48:05:4e:67:75: dd:91:b3:2c:e6:8a:bb:9d:e7:4d:de:bf:df:2b:ea:f2:cd:82: 65:2c:ff:da:cd:11:a7:2e:09:fc:25:5a:32:7c:f6:d4:2b:0a: fc:32:61:a2:4c:43:a8:fe:80:b4:36:65:65:d3:c0:a3:e1:7f: cf:96:0b:d9:63:b0:5f:61:bf:89:44:78:00:85:cc:42:b8:ea: 7a:b8:cf:be:80:c7:54:e0:58:b3:24:4b:a9:0a:5a:01:1c:a0: fb:71:3a:7d:bc:02:aa:b1:47:3b:ed:ec:2e:e3:07:94:c6:75: a2:e5:27:69:9e:7d:e1:74:59:7b:63:72:14:c8:e3:1f:b0:a0: 6a:23:d9:5b:64:92:32:75:a8:5e:8e:7c:fc:f7:2f:4d:88:fe: 6b:61:5f:10:71:9d:a5:c4:2c:1a:91:95:40:0b:f0:92:e1:3a: 87:d1:0f:af:97:81:91:f2:81:22:f7:16:44:fa:56:29:d0:91: 8b:40:03:3c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4NDdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzM2LTk4NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPrLD5jnUUrSrzaun9KaUT0JqnPwf8tWRfbdTTgBY6srAZpIlMcsSDMfA+eChO uQVDW0E4Qi0K6RgxoTYGsAQpcUkoJEVBjt8rOGqivvD4Ld5NUHmwl5EQ/kpN36uD aeOAhdyQZAvOXzrNgsaa1Yyte5suW3fAfPPB1AoJR9zXYmvcWn13QutkxZNEt6sx qjtbefopPK2s2F1vaA5D4oKWpn4BoK8locvih5UTHaqUNhZ7HeCZ+JcPh4rvPWGF xen7SVrFOCzR8gliN//gdc50yV3qGSRrXEfuvS5eIwIXZZBQzp8bL7Ac49UYKwM0 f1upKoXSNeA2yf/k9SLic2u/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU4E3z+Ttc EJVccaglAgKBVDGdNagwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9DMzA0RjEyODcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcodUDAPBAIAAjAJAwcAIAEDyEAHMA0GCSqGSIb3DQEBCwUA A4IBAQCWzCRlFkBlSnhgVxOGvHwjUkZigz1/QFdZrajJs4KDgEo1ZvPavb8DQvZd Idve4BBDqLaWIHtDSrf5Bt8cq6u+l4wnSAVOZ3XdkbMs5oq7nedN3r/fK+ryzYJl LP/azRGnLgn8JVoyfPbUKwr8MmGiTEOo/oC0NmVl08Cj4X/PlgvZY7BfYb+JRHgA hcxCuOp6uM++gMdU4FizJEupCloBHKD7cTp9vAKqsUc77ewu4weUxnWi5Sdpnn3h dFl7Y3IUyOMfsKBqI9lbZJIydahejnz89y9NiP5rYV8QcZ2lxCwakZVAC/CS4TqH 0Q+vl4GR8oEi9xZE+lYp0JGLQAM8 -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:48 2024 by rpki-client on console-fra.rpki-client.org