$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa File: D55BADE4193911ED82BB7358C4F9AE02.roa (raw, json) Hash identifier: 8yaknu8MiPagpG6EQOrfrODn/dPBd1c1mdQiC+1tMjo= Subject key identifier: 00:6A:10:CB:80:E6:1A:39:7F:C5:60:13:DB:82:74:28:FF:0A:0D:96 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0539 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa Signing time: Fri 13 Oct 2023 00:53:12 +0000 ROA not before: Fri 13 Oct 2023 00:53:12 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9381 IP address blocks: 2401:2c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 13 00:53:12 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652894f7-ec13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dd:b2:62:20:00:8d:f7:ea:3c:80:98:8f:8f: 6f:84:f6:18:81:03:5d:df:59:3b:a7:37:af:1d:2b: 52:24:d4:ed:81:96:66:bc:6b:53:04:1b:d6:98:2b: 34:ee:ec:d7:6e:22:6d:a1:61:fb:44:55:78:5d:11: fd:70:45:be:32:27:13:fa:25:67:76:df:2d:4e:c7: 7a:18:fc:a8:88:af:5d:72:a4:97:7f:ff:bc:96:09: 4f:08:ae:28:1e:0a:b1:fb:f7:6b:d3:f0:a1:04:cb: 4b:bd:34:fb:84:d0:99:a5:70:28:98:45:d0:40:82: 6a:4a:4a:0f:53:58:68:ff:c5:a8:64:90:3d:ed:e1: b2:8b:2b:39:cf:38:d3:87:58:c3:df:2c:75:a6:37: ce:3d:73:a7:ee:20:c8:61:9a:74:d8:9d:57:f9:0d: 6f:43:27:1a:37:2c:2a:71:14:66:86:4c:da:5b:be: 11:10:b3:70:7a:af:32:18:50:08:8e:b4:ac:6d:e5: 94:c3:06:7d:37:47:80:b7:97:07:de:c6:83:fc:ea: 28:89:96:8a:b4:7a:66:64:d4:86:50:1f:e0:3c:7c: 63:fa:f7:5b:dc:32:2e:8f:91:2a:bb:15:5f:9c:90: 1e:38:38:85:a4:37:9e:70:17:dd:88:95:8e:fd:0d: c5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6A:10:CB:80:E6:1A:39:7F:C5:60:13:DB:82:74:28:FF:0A:0D:96 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2c80::/32 Signature Algorithm: sha256WithRSAEncryption 98:da:e3:45:00:b8:4f:95:bf:fd:b9:12:be:7c:d6:83:db:16: 2a:83:7d:32:ea:77:39:e7:a9:c2:a7:fd:49:bd:cb:d3:bd:2e: 0c:a6:ad:2d:0f:97:9f:e7:73:28:43:b5:16:b0:6c:be:16:b4: 80:42:fa:5f:a1:b1:60:3a:96:3f:39:e1:6b:f5:98:6f:33:7d: 35:89:09:dc:63:5c:31:53:18:07:a0:e3:ef:58:12:f0:f9:7c: d7:81:0b:3a:f4:3e:33:8a:b7:7f:0a:07:61:eb:59:dc:3d:ac: 2b:24:83:49:20:f6:fe:7a:0f:7d:af:08:fb:8f:26:a3:37:b6: eb:dd:2e:89:1b:f8:27:49:1a:0b:a0:81:66:dd:b5:a8:5b:98: aa:70:cb:7e:9e:39:53:73:23:e9:83:72:8f:a3:42:c0:b2:48: 34:11:6e:67:60:4b:aa:6d:d8:38:0a:de:44:ef:1d:3b:79:6f: 4e:39:16:64:99:7f:db:8f:df:ee:9d:a4:09:d7:20:34:6f:92: 75:1c:19:4e:d9:a3:50:9f:79:6b:d2:df:29:48:ca:b0:ea:ce: 30:08:51:b7:c9:bf:f9:94:e8:16:5a:3b:03:c0:b9:18:55:35: 01:76:65:68:6b:f5:9f:64:bd:64:be:8e:64:ad:32:c8:b5:c0: 74:0e:f2:55 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjMxMDEzMDA1MzEyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4OTRmNy1lYzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt92yYiAAjffqPICYj49vhPYYgQNd31k7pzevHStSJNTtgZZmvGtTBBvWmCs0 7uzXbiJtoWH7RFV4XRH9cEW+MicT+iVndt8tTsd6GPyoiK9dcqSXf/+8lglPCK4o Hgqx+/dr0/ChBMtLvTT7hNCZpXAomEXQQIJqSkoPU1ho/8WoZJA97eGyiys5zzjT h1jD3yx1pjfOPXOn7iDIYZp02J1X+Q1vQycaNywqcRRmhkzaW74RELNweq8yGFAI jrSsbeWUwwZ9N0eAt5cH3saD/OooiZaKtHpmZNSGUB/gPHxj+vdb3DIuj5EquxVf nJAeODiFpDeecBfdiJWO/Q3FlQIDAQABo4ICljCCApIwHQYDVR0OBBYEFABqEMuA 5ho5f8VgE9uCdCj/Cg2WMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRDU1QkFERTQx OTM5MTFFRDgyQkI3MzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkASyAMA0GCSqGSIb3DQEBCwUAA4IBAQCY2uNFALhPlb/9 uRK+fNaD2xYqg30y6nc556nCp/1JvcvTvS4Mpq0tD5ef53MoQ7UWsGy+FrSAQvpf obFgOpY/OeFr9ZhvM301iQncY1wxUxgHoOPvWBLw+XzXgQs69D4zird/Cgdh61nc PawrJINJIPb+eg99rwj7jyajN7br3S6JG/gnSRoLoIFm3bWoW5iqcMt+njlTcyPp g3KPo0LAskg0EW5nYEuqbdg4Ct5E7x07eW9OORZkmX/bj9/unaQJ1yA0b5J1HBlO 2aNQn3lr0t8pSMqw6s4wCFG3yb/5lOgWWjsDwLkYVTUBdmVoa/WfZL1kvo5krTLI tcB0DvJV -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org