$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa File: 29B9D5B8524111EABEF0A119C4F9AE02.roa (raw, json) Hash identifier: TWQ1ADwa1K2dZAFElhYa7BYiQdhNeF1NWXVQTSgNoBY= Subject key identifier: FA:AF:7E:88:23:50:EC:4E:D9:B2:16:D7:EA:CF:AE:5F:CC:E4:5A:3F Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 09FC Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa Signing time: Fri 24 May 2024 21:00:07 +0000 ROA not before: Fri 24 May 2024 21:00:07 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 45495 IP address blocks: 202.4.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: May 24 21:00:07 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6650ffd7-051a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:a1:d5:e6:6f:17:b7:55:b0:ad:ee:1c:05: 93:2c:4e:ee:c5:3d:ff:e5:c8:0d:41:53:ca:29:3e: 28:ca:16:f9:f0:ed:e9:12:97:f7:e1:5e:60:5a:85: 7c:50:1e:bd:55:8c:16:8c:17:16:d3:d3:ad:de:0f: b7:13:05:8d:61:18:c5:3f:78:b1:4f:f6:3a:be:8a: 0a:ea:14:c6:bf:8b:d7:3e:8e:53:eb:a1:06:53:a2: 75:94:79:5f:21:b4:00:59:59:61:01:e4:31:5b:1d: 95:be:c6:12:ee:0a:07:a9:8e:5f:de:a3:eb:5f:49: b7:c7:ad:a3:4e:ca:1d:bc:c9:5f:7a:9a:e4:ef:c7: 65:bd:1f:98:c6:85:4e:44:5c:52:08:39:fc:6a:e1: f0:53:e7:e8:3e:b1:0c:e1:ac:ca:07:2d:f8:0d:60: da:87:31:90:41:6e:85:11:fe:f4:c0:cc:9b:24:a9: 06:66:9f:c1:76:11:18:9c:9a:25:80:78:fa:3f:37: 39:d6:93:4a:17:cd:56:c4:91:0c:25:5b:3c:71:fe: c7:ee:10:22:fe:33:24:38:81:2b:ba:97:68:b0:8a: ef:91:88:54:2a:38:bd:cf:d9:63:6c:34:5a:91:43: f1:3a:47:15:44:ff:b3:ad:a6:fd:6a:b9:e2:57:40: 0f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AF:7E:88:23:50:EC:4E:D9:B2:16:D7:EA:CF:AE:5F:CC:E4:5A:3F X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.251.0/24 Signature Algorithm: sha256WithRSAEncryption 95:a8:84:23:27:05:ec:7a:31:74:ee:de:88:01:f4:4c:a7:3d: 6f:75:94:6b:06:95:03:23:82:a8:58:eb:12:2b:03:9b:ea:80: 86:1e:cf:0b:27:5a:d3:39:47:e3:74:ee:aa:db:fb:99:24:66: ae:1c:eb:f2:05:85:86:d3:24:dd:84:49:11:50:19:90:71:da: a5:92:85:c9:c7:28:7f:c4:a6:a5:fc:a8:5e:99:3d:16:1f:47: 49:43:d2:33:ea:87:99:6d:37:8b:8f:23:a7:fc:ac:2b:e4:ba: 3c:7d:6d:0f:12:52:90:a8:da:17:c8:6f:89:86:3a:2f:a2:55: dc:b7:d9:4c:3a:44:dd:70:49:18:f5:02:ea:47:2e:36:8a:4e: 54:3f:62:e4:67:ae:83:2d:b0:76:74:0c:d3:a5:7f:ad:79:89: a9:5d:78:5e:8d:0c:a6:1b:2e:1e:30:d3:c3:92:f5:60:1b:88: 76:33:2d:60:87:c4:1d:bb:8b:11:d6:25:41:91:a7:20:5a:a6: 16:63:04:c8:da:92:09:04:be:f2:91:f7:c9:af:cb:14:67:61: e2:c4:79:6e:2d:09:b5:ac:25:9e:b8:93:1f:8f:6d:51:d8:7a: 0a:18:7d:d5:45:d1:b8:6e:f6:b8:16:20:e1:35:3f:84:d6:68: ca:84:e3:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjQwNTI0MjEwMDA3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUwZmZkNy0wNTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd6h1eZvF7dVsK3uHAWTLE7uxT3/5cgNQVPKKT4oyhb58O3pEpf34V5gWoV8 UB69VYwWjBcW09Ot3g+3EwWNYRjFP3ixT/Y6vooK6hTGv4vXPo5T66EGU6J1lHlf IbQAWVlhAeQxWx2VvsYS7goHqY5f3qPrX0m3x62jTsodvMlfeprk78dlvR+YxoVO RFxSCDn8auHwU+foPrEM4azKBy34DWDahzGQQW6FEf70wMybJKkGZp/BdhEYnJol gHj6Pzc51pNKF81WxJEMJVs8cf7H7hAi/jMkOIErupdosIrvkYhUKji9z9ljbDRa kUPxOkcVRP+zrab9arniV0APkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPqvfogj UOxO2bIW1+rPrl/M5Fo/MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDQTEvNzA2M0U0MjQ1MjNGMTFFQThDOUNGMDE2QzRGOUFFMDIvMjlCOUQ1Qjg1 MjQxMTFFQUJFRjBBMTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKBPswDQYJKoZIhvcNAQELBQADggEBAJWohCMnBex6MXTu 3ogB9EynPW91lGsGlQMjgqhY6xIrA5vqgIYezwsnWtM5R+N07qrb+5kkZq4c6/IF hYbTJN2ESRFQGZBx2qWShcnHKH/EpqX8qF6ZPRYfR0lD0jPqh5ltN4uPI6f8rCvk ujx9bQ8SUpCo2hfIb4mGOi+iVdy32Uw6RN1wSRj1AupHLjaKTlQ/YuRnroMtsHZ0 DNOlf615ialdeF6NDKYbLh4w08OS9WAbiHYzLWCHxB27ixHWJUGRpyBaphZjBMja kgkEvvKR98mvyxRnYeLEeW4tCbWsJZ64kx+PbVHYegoYfdVF0bhu9rgWIOE1P4TW aMqE44Q= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org