$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa File: EEF98246721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: 1zfLWs5q9saGuW/sCyZRx0VPahTHTrE5EYz+Hue/MA4= Subject key identifier: DD:B7:B7:69:E6:4F:08:F2:CB:D4:75:80:98:56:EE:34:45:7F:F5:AF Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 1D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:05:41 +0000 ROA not before: Fri 13 Sep 2024 21:05:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138003 IP address blocks: 202.29.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:05:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4a925-fad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:65:18:d9:e4:ab:eb:d1:e8:d4:5f:f9:d9:f1: e4:57:7a:b9:bd:6f:94:6d:7c:41:f8:f9:52:c2:ef: 71:61:b7:b1:b4:89:4c:f9:a8:a6:1b:55:de:ac:f1: ee:96:01:b1:ef:7c:66:89:97:f8:4c:ae:40:32:9c: 22:2f:6c:43:04:0b:61:cc:19:66:f5:b0:30:8d:84: 20:68:c5:2d:e5:8c:60:b0:3e:78:55:a9:ff:3c:0a: 18:63:05:f4:eb:2e:c5:56:9c:48:31:e2:54:a7:5d: 03:78:f6:80:56:8f:86:65:75:4b:b0:6a:87:55:67: b3:f2:f8:78:a5:da:69:fb:69:26:87:c0:b8:31:86: 52:11:ef:a3:b5:9d:fd:b2:74:24:c5:de:2d:30:1d: 21:85:b5:25:79:bf:ca:28:16:40:26:71:a2:db:bc: ba:b4:23:a6:85:80:10:d9:ed:4e:cb:97:db:71:0a: fd:27:08:c7:43:58:62:8d:bc:c0:f1:31:02:74:64: 8e:84:78:86:42:01:16:2f:80:a9:e6:ea:2d:06:08: db:07:39:2f:0d:bc:6e:1c:44:77:9a:1a:78:49:3c: 32:1e:35:cf:77:20:ad:81:5a:f5:f0:d7:6d:4d:02: 7c:20:eb:b3:bd:ce:8a:15:de:ce:8a:98:cb:0b:9e: 6e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B7:B7:69:E6:4F:08:F2:CB:D4:75:80:98:56:EE:34:45:7F:F5:AF X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.103.0/24 Signature Algorithm: sha256WithRSAEncryption 21:0a:e3:d0:09:a8:80:f1:73:da:22:46:89:8c:6d:5a:6a:06: 69:6a:eb:8d:4f:27:55:a2:33:0d:9f:a4:ab:6b:b1:6b:00:bc: 22:5e:42:bd:1c:45:eb:81:47:0c:4e:15:39:0e:74:7c:33:f1: 62:cb:cd:52:aa:8f:a6:ad:8a:79:82:82:cb:de:6d:77:d8:38: 21:e9:90:fd:d8:fe:56:26:cd:79:1d:fb:d1:c6:53:f7:6f:ca: c9:9d:5e:b6:db:7b:0f:8d:94:64:f5:d4:1b:4f:ae:bb:02:b5: 01:14:23:12:b5:f3:53:a4:c6:1c:af:45:dc:cd:d1:93:98:a7: 0a:aa:e6:63:bc:91:dc:8a:cd:15:ba:19:9f:f0:b2:7c:bc:7f: e2:ef:d5:b5:77:fe:76:75:0e:fe:ef:7f:6e:30:bf:27:9c:6c: 10:3a:c1:8a:11:fe:3c:89:14:c5:fd:d2:18:c2:27:72:07:4f: c4:a2:4e:11:b7:d0:c0:96:96:d6:70:39:95:c3:5c:ce:3b:f4: 4c:5c:01:11:1f:54:bf:f2:00:79:96:93:2b:63:a6:3a:0b:9c: a5:c5:1e:a5:bc:29:1d:b5:dc:41:ca:e8:19:47:cd:65:27:f6: 77:90:2c:a6:85:f0:17:b4:d7:1d:cd:12:70:96:e3:97:f2:96: 9d:cb:b3:e0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTA1NDFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhOTI1LWZhZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhZRjZ5Kvr0ejUX/nZ8eRXerm9b5RtfEH4+VLC73Fht7G0iUz5qKYbVd6s8e6W AbHvfGaJl/hMrkAynCIvbEMEC2HMGWb1sDCNhCBoxS3ljGCwPnhVqf88ChhjBfTr LsVWnEgx4lSnXQN49oBWj4ZldUuwaodVZ7Py+Hil2mn7aSaHwLgxhlIR76O1nf2y dCTF3i0wHSGFtSV5v8ooFkAmcaLbvLq0I6aFgBDZ7U7Ll9txCv0nCMdDWGKNvMDx MQJ0ZI6EeIZCARYvgKnm6i0GCNsHOS8NvG4cRHeaGnhJPDIeNc93IK2BWvXw121N Anwg67O9zooV3s6KmMsLnm45AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3be3aeZP CPLL1HWAmFbuNEV/9a8wHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FRUY5ODI0Njcy MTMxMUVGQTlEN0NBM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModZzANBgkqhkiG9w0BAQsFAAOCAQEAIQrj0AmogPFz2iJG iYxtWmoGaWrrjU8nVaIzDZ+kq2uxawC8Il5CvRxF64FHDE4VOQ50fDPxYsvNUqqP pq2KeYKCy95td9g4IemQ/dj+VibNeR370cZT92/KyZ1ettt7D42UZPXUG0+uuwK1 ARQjErXzU6TGHK9F3M3Rk5inCqrmY7yR3IrNFboZn/CyfLx/4u/VtXf+dnUO/u9/ bjC/J5xsEDrBihH+PIkUxf3SGMIncgdPxKJOEbfQwJaW1nA5lcNczjv0TFwBER9U v/IAeZaTK2OmOgucpcUepbwpHbXcQcroGUfNZSf2d5AspoXwF7TXHc0ScJbjl/KW ncuz4A== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org