$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa File: 1968CADACCCA11EA86EC0A0DC4F9AE02.roa (raw, json) Hash identifier: Rgz3ppKREwJUQu+zJGW3pophrE6u2sRsREWmlvm9yTE= Subject key identifier: EC:9A:6D:2D:CC:AD:7C:4F:DA:64:31:57:9F:97:9E:64:CF:D7:EC:BB Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2634 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:02 +0000 ROA not before: Sun 06 Aug 2023 16:13:02 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140934 IP address blocks: 2402:9e80:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9780 (0x2634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:02 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc68e-fb2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ca:7b:df:82:92:5f:24:6b:90:81:9a:1f:bb: 86:58:89:2c:28:1a:3a:28:86:02:65:47:44:aa:7b: 4e:41:cd:0b:19:c6:fb:5b:a3:9f:ba:f2:7b:d8:29: a7:f2:ae:ab:20:3a:00:72:5a:6c:32:11:ec:aa:7f: d2:db:1f:bb:7b:79:69:f5:ad:38:19:f3:6b:c4:f9: e7:e9:b5:1a:1c:86:2e:5b:52:ba:d5:fa:f0:4f:f0: 31:49:33:e3:e8:fe:8a:e7:b0:54:c6:31:3a:58:d9: b9:85:b1:2d:94:eb:f0:3d:49:f3:c8:68:68:97:60: 7b:2a:dc:85:37:d8:84:e1:48:b3:8b:27:eb:2f:33: 27:35:67:ee:89:ce:7a:5c:c8:6b:d7:3c:33:c9:e5: 1a:c7:24:86:ba:91:09:9d:15:a9:0d:37:9e:27:ca: 4e:c2:81:76:60:aa:fd:ee:36:be:02:ed:33:12:4e: fc:ff:bb:87:f8:76:d0:7e:09:e0:66:b9:e8:d7:97: dc:e3:67:8c:99:26:7a:51:7f:32:d5:1a:c4:77:87: b8:08:04:b3:04:84:d7:bf:df:e0:f6:0a:d0:79:02: 85:ad:2b:ea:c3:a0:9e:a8:f0:ed:57:e4:12:24:e5: 28:fd:23:71:35:d4:d2:14:21:20:db:ad:14:3e:16: 5e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9A:6D:2D:CC:AD:7C:4F:DA:64:31:57:9F:97:9E:64:CF:D7:EC:BB X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:23::/48 Signature Algorithm: sha256WithRSAEncryption 44:87:5b:09:b1:e4:ed:30:0c:17:98:08:dd:64:18:fb:01:44: 19:b9:1b:19:a1:31:b3:75:a1:26:7b:30:b7:14:d7:e1:f0:ab: 9a:61:43:e6:cd:40:ca:f0:73:9f:8c:11:b2:d2:79:7f:c2:00: d2:06:2f:ad:52:b2:fb:66:cd:ea:f8:6d:e5:09:bd:f6:29:2a: 1a:37:f8:db:73:aa:74:a3:53:83:ff:44:66:c2:ab:66:56:ea: 2f:7c:0d:ff:1c:25:ca:c2:a2:92:34:e4:52:5b:d1:90:90:7d: d0:00:ca:ef:0c:2a:f2:78:45:c6:09:0c:81:fc:37:ea:33:ba: 45:3f:dd:8e:18:a5:2c:09:46:d0:05:4d:c5:ab:c2:99:76:43: 33:39:4f:f1:6e:ae:7c:c2:6a:43:2d:e1:71:a8:db:8d:c7:d9: 84:c1:5a:1c:13:f0:b3:dd:87:81:f2:94:10:97:d1:ab:f8:b6: 83:e2:5f:02:f5:ac:31:a9:d6:af:01:56:92:8c:cc:b0:98:5b: ab:f2:b8:ce:1c:e3:fb:03:4a:36:3e:27:37:dc:a4:62:1e:b9: 7c:f7:47:48:69:a0:08:59:dc:41:96:72:65:26:de:9c:74:08: 88:31:2f:ef:8b:6b:8b:6a:83:c5:6e:01:8a:fc:ed:7d:ba:51: 4f:01:2d:aa -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzAyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4ZS1mYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cp734KSXyRrkIGaH7uGWIksKBo6KIYCZUdEqntOQc0LGcb7W6OfuvJ72Cmn 8q6rIDoAclpsMhHsqn/S2x+7e3lp9a04GfNrxPnn6bUaHIYuW1K61frwT/AxSTPj 6P6K57BUxjE6WNm5hbEtlOvwPUnzyGhol2B7KtyFN9iE4UiziyfrLzMnNWfuic56 XMhr1zwzyeUaxySGupEJnRWpDTeeJ8pOwoF2YKr97ja+Au0zEk78/7uH+HbQfgng Zrno15fc42eMmSZ6UX8y1RrEd4e4CASzBITXv9/g9grQeQKFrSvqw6CeqPDtV+QS JOUo/SNxNdTSFCEg260UPhZetQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOyabS3M rXxP2mQxV5+XnmTP1+y7MB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMTk2OENBREFD Q0NBMTFFQTg2RUMwQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACMwDQYJKoZIhvcNAQELBQADggEBAESHWwmx5O0w DBeYCN1kGPsBRBm5GxmhMbN1oSZ7MLcU1+Hwq5phQ+bNQMrwc5+MEbLSeX/CANIG L61Ssvtmzer4beUJvfYpKho3+NtzqnSjU4P/RGbCq2ZW6i98Df8cJcrCopI05FJb 0ZCQfdAAyu8MKvJ4RcYJDIH8N+ozukU/3Y4YpSwJRtAFTcWrwpl2QzM5T/FurnzC akMt4XGo243H2YTBWhwT8LPdh4HylBCX0av4toPiXwL1rDGp1q8BVpKMzLCYW6vy uM4c4/sDSjY+JzfcpGIeuXz3R0hpoAhZ3EGWcmUm3px0CIgxL++La4tqg8VuAYr8 7X26UU8BLao= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:55 2024 by rpki-client on console-fra.rpki-client.org