$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa File: F60CA67E721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: IcCUZDeZg38Uq0vtniFdjnrOsLZk+3nz08UiCAgNuO0= Subject key identifier: F7:49:BC:C1:26:BB:77:1E:60:37:F4:72:77:AA:3E:15:6D:96:FF:CA Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 39 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:20:12 +0000 ROA not before: Fri 13 Sep 2024 21:20:12 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24344 IP address blocks: 202.29.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:20:12 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac8c-8ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0f:f9:dd:c3:af:77:ec:d7:14:bb:12:17:66: f2:d6:15:2f:f1:59:e7:d9:f5:98:fd:47:d4:dd:ac: 18:5c:60:85:1a:8d:98:cc:68:6a:2f:af:69:6f:4d: 77:95:a8:e7:b3:d1:b7:a3:d7:be:2d:f9:62:2b:3b: 4d:93:0e:09:bb:95:87:1d:29:57:fa:fb:94:c9:a7: 29:ea:f8:17:ea:56:c3:61:91:b7:40:a2:02:0a:63: 7e:d8:f2:c2:a4:76:88:5c:dc:52:42:e8:68:06:a4: c4:9c:5b:86:ce:4e:9d:68:03:8f:98:05:b3:d2:89: f8:5c:61:08:7f:40:aa:31:e4:47:f7:a7:0b:6e:e3: 06:f8:59:b9:66:e4:c3:41:eb:f4:98:bf:c1:f5:94: f4:0b:b3:44:f8:2a:c0:41:ab:eb:cb:de:ba:9a:c4: fe:88:5e:ab:87:91:20:ea:5b:36:5f:ee:02:23:62: 1f:11:6c:fe:3d:69:99:79:56:1c:a6:57:eb:84:5e: 21:ec:68:72:fc:6d:6f:c4:2c:ac:39:0b:16:84:21: c4:df:89:92:2a:6d:c5:c0:d4:9c:8e:b8:e2:72:83: 02:d8:81:f3:0d:88:a0:f9:ab:c0:2b:2b:14:99:ed: c9:f9:97:39:f7:9f:64:74:66:b9:f1:b3:5c:9d:e8: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:49:BC:C1:26:BB:77:1E:60:37:F4:72:77:AA:3E:15:6D:96:FF:CA X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F60CA67E721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.60.0/24 Signature Algorithm: sha256WithRSAEncryption 22:76:a1:56:b8:5f:e8:0e:2f:95:86:e5:b9:6a:31:50:e4:5b: f2:9c:2b:dd:00:64:0a:bb:19:e1:42:d6:b8:6c:35:7f:e4:95: f7:b0:32:47:f7:f8:ec:43:8f:1c:f3:84:4a:c6:aa:6c:e2:2f: 5d:0f:e0:27:11:3a:be:59:1a:54:83:e4:ad:7c:72:eb:37:6a: 56:a8:bc:8c:2e:39:b7:f7:77:8f:52:33:40:ff:17:df:1f:1c: e6:01:d6:f5:3f:38:df:56:2a:44:02:f8:da:80:a5:af:38:41: c9:98:b9:dd:71:70:68:aa:6b:f7:9f:73:7d:62:c2:e7:f8:5e: fc:7b:21:e2:b7:f5:1a:8c:fb:aa:ba:74:96:f8:91:55:b9:70: a8:0f:2e:21:d8:0b:c2:00:83:f5:63:29:3a:bd:d2:95:c0:39: 9f:1c:55:f2:76:e6:69:39:e3:64:7e:87:96:e6:3e:59:78:df: 40:e0:a4:f5:a2:f1:23:6b:9f:60:f6:6e:f3:9d:9a:95:c5:fe: e9:f9:fc:e3:20:5f:a2:b5:77:cd:46:af:1b:32:37:ad:15:ad: 32:8c:11:7f:93:ac:1e:ad:6c:67:3b:e5:5a:74:89:e1:4b:da: 8f:9d:e4:f3:53:20:6c:9f:4c:da:24:ef:de:2e:af:57:cc:8d: 3d:04:be:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTIwMTJaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzhjLThlZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXD/ndw6937NcUuxIXZvLWFS/xWefZ9Zj9R9TdrBhcYIUajZjMaGovr2lvTXeV qOez0bej174t+WIrO02TDgm7lYcdKVf6+5TJpynq+BfqVsNhkbdAogIKY37Y8sKk dohc3FJC6GgGpMScW4bOTp1oA4+YBbPSifhcYQh/QKox5Ef3pwtu4wb4Wblm5MNB 6/SYv8H1lPQLs0T4KsBBq+vL3rqaxP6IXquHkSDqWzZf7gIjYh8RbP49aZl5Vhym V+uEXiHsaHL8bW/ELKw5CxaEIcTfiZIqbcXA1JyOuOJygwLYgfMNiKD5q8ArKxSZ 7cn5lzn3n2R0Zrnxs1yd6H6rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU90m8wSa7 dx5gN/Ryd6o+FW2W/8owHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GNjBDQTY3RTcy MTUxMUVGQTdEODJEM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAModPDANBgkqhkiG9w0BAQsFAAOCAQEAInahVrhf6A4vlYbl uWoxUORb8pwr3QBkCrsZ4ULWuGw1f+SV97AyR/f47EOPHPOESsaqbOIvXQ/gJxE6 vlkaVIPkrXxy6zdqVqi8jC45t/d3j1IzQP8X3x8c5gHW9T8431YqRAL42oClrzhB yZi53XFwaKpr959zfWLC5/he/Hsh4rf1Goz7qrp0lviRVblwqA8uIdgLwgCD9WMp Or3SlcA5nxxV8nbmaTnjZH6HluY+WXjfQOCk9aLxI2ufYPZu852alcX+6fn84yBf orV3zUavGzI3rRWtMowRf5OsHq1sZzvlWnSJ4Uvaj53k81MgbJ9M2iTv3i6vV8yN PQS+hA== -----END CERTIFICATE-----Generated at Mon Nov 25 07:14:56 2024 by rpki-client on console-fra.rpki-client.org