$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa File: 1968CADACCCA11EA86EC0A0DC4F9AE02.roa (raw, json) Hash identifier: QQTC2eUq1wqSPRITL8Q1632ZtpBDKgN8BRZE3Y8ZWMU= Subject key identifier: E6:AB:80:46:87:F1:E1:BC:A2:32:1A:0A:61:97:AC:14:63:CD:5D:94 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 275D Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:07 +0000 ROA not before: Tue 30 Jul 2024 16:04:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140934 IP address blocks: 2402:9e80:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10077 (0x275d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:07 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ef7-fd02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:28:e5:56:5a:c3:0f:c9:c8:ff:c5:eb:28:7c: 56:ce:db:7e:07:f7:78:c5:59:3b:d3:7c:44:42:0b: 9f:fd:0a:18:4b:12:99:db:fe:3a:a1:b2:67:9b:cb: 88:08:2c:f9:14:32:bf:ac:73:53:2d:62:20:c3:b6: f2:71:b9:ce:f5:4b:8a:78:22:b6:ae:db:98:50:36: a3:cb:8b:15:38:01:52:57:15:cb:91:fa:90:9c:af: 07:cf:3a:52:c9:93:82:fa:6d:39:2a:a1:c3:bf:b0: bc:d6:b7:54:84:d0:20:ef:89:fa:85:d3:14:b6:f0: dd:cf:1d:8e:b8:56:a4:ec:4a:c1:6b:43:b8:8d:3b: e0:79:34:e1:67:d3:d9:2f:7c:62:c2:ee:5f:49:c3: ab:99:eb:6c:56:3c:24:56:96:88:a7:e1:b1:c7:8a: 5d:02:83:2a:fe:04:67:ad:06:51:9c:a6:da:04:45: 7f:dc:5a:ed:a9:87:f4:04:bf:2e:3f:06:74:f3:76: 45:e8:06:9c:9b:fe:c1:cc:86:42:89:85:cb:71:df: ad:cf:89:b9:42:6e:ea:57:9f:aa:c8:50:36:a9:1e: 1a:70:88:4f:9f:ca:74:93:e2:86:cd:53:b1:92:01: 18:24:c6:86:38:32:b7:45:d0:66:4e:eb:5c:06:2d: fb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AB:80:46:87:F1:E1:BC:A2:32:1A:0A:61:97:AC:14:63:CD:5D:94 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:23::/48 Signature Algorithm: sha256WithRSAEncryption 7b:c5:2d:b6:ee:16:ac:e7:fa:a4:31:23:b5:4a:05:fb:89:71: ec:81:d1:c1:58:5f:a5:9b:6d:6d:ba:d8:ef:de:1e:7e:1d:c4: 6f:22:28:d6:40:11:90:f5:7f:ba:fe:39:6d:f5:6f:8e:5d:52: a3:18:73:91:ac:f0:1c:d4:fb:89:72:48:77:62:88:f5:d2:7e: 01:28:48:b4:2c:47:2f:02:60:00:5d:fb:1c:85:8a:65:d1:43: 89:22:77:94:eb:42:53:d3:57:ee:9d:e2:6b:35:f2:34:51:0d: 8a:90:91:15:72:36:05:24:c5:1f:61:74:30:7d:57:fc:24:2d: 8f:08:9f:3b:bc:11:d8:d3:fe:36:00:dd:47:f8:50:ce:a5:cd: 5c:21:98:97:8f:f4:c4:3f:83:4b:23:6e:e3:94:79:a2:03:24: 35:d1:97:5a:e6:9c:fd:13:86:7f:fe:88:d1:56:43:f3:cc:05: 56:67:8c:93:e8:18:1c:d8:d3:4c:dc:2a:5f:ed:05:3f:1a:33: d0:c6:a2:ef:14:48:f1:3f:d7:72:2b:0c:66:b3:60:3a:da:22: 08:2f:bc:cc:3c:e3:23:1f:be:37:26:49:f5:bd:ab:36:58:42: a2:24:53:9a:e1:4d:58:e8:39:58:ca:70:ea:1c:20:3d:a0:28: 21:6e:e7:b0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmNy1mZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkyjlVlrDD8nI/8XrKHxWztt+B/d4xVk703xEQguf/QoYSxKZ2/46obJnm8uI CCz5FDK/rHNTLWIgw7bycbnO9UuKeCK2rtuYUDajy4sVOAFSVxXLkfqQnK8HzzpS yZOC+m05KqHDv7C81rdUhNAg74n6hdMUtvDdzx2OuFak7ErBa0O4jTvgeTThZ9PZ L3xiwu5fScOrmetsVjwkVpaIp+Gxx4pdAoMq/gRnrQZRnKbaBEV/3FrtqYf0BL8u PwZ083ZF6Aacm/7BzIZCiYXLcd+tz4m5Qm7qV5+qyFA2qR4acIhPn8p0k+KGzVOx kgEYJMaGODK3RdBmTutcBi37eQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOargEaH 8eG8ojIaCmGXrBRjzV2UMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMTk2OENBREFD Q0NBMTFFQTg2RUMwQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACMwDQYJKoZIhvcNAQELBQADggEBAHvFLbbuFqzn +qQxI7VKBfuJceyB0cFYX6WbbW262O/eHn4dxG8iKNZAEZD1f7r+OW31b45dUqMY c5Gs8BzU+4lySHdiiPXSfgEoSLQsRy8CYABd+xyFimXRQ4kid5TrQlPTV+6d4ms1 8jRRDYqQkRVyNgUkxR9hdDB9V/wkLY8Inzu8EdjT/jYA3Uf4UM6lzVwhmJeP9MQ/ g0sjbuOUeaIDJDXRl1rmnP0Thn/+iNFWQ/PMBVZnjJPoGBzY00zcKl/tBT8aM9DG ou8USPE/13IrDGazYDraIggvvMw84yMfvjcmSfW9qzZYQqIkU5rhTVjoOVjKcOoc ID2gKCFu57A= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org