$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa File: 2E6B58ECFEC911E88E78993AC4F9AE02.roa (raw, json) Hash identifier: Paw5bfGld1oCSfMEWio7XkiKc/T5uM8UYHKa4CjPQCo= Subject key identifier: 5C:1A:A6:E9:9F:DB:AE:53:C6:A4:8B:00:AA:12:53:AD:45:6A:BD:C0 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2750 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:54 +0000 ROA not before: Tue 30 Jul 2024 16:03:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138333 IP address blocks: 2402:9e80:30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10064 (0x2750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:54 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ee9-34cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:4d:44:e1:ac:67:ec:0d:ed:cd:54:ce:8b: cb:4b:a3:5b:0a:e9:39:59:62:30:07:3a:f0:0e:fc: cc:63:32:fc:c9:3b:98:b0:1d:7a:a4:9c:ef:e5:76: c7:dc:9c:2e:74:9b:d3:25:9b:a1:2a:74:8e:7c:6a: 2e:dc:bb:77:3a:aa:f0:97:c7:9c:43:1b:c1:9d:22: 85:6a:57:5f:7b:43:71:ca:5e:7a:26:cd:f9:40:be: f5:d3:4e:3c:21:34:2f:b7:0a:1a:02:31:a7:9f:69: 0c:1f:09:db:7a:49:de:f4:02:fb:b1:02:9a:17:01: e3:1c:86:d4:fe:8b:b1:e7:34:ce:8e:7c:45:90:67: df:e2:01:ab:23:03:2f:18:7f:a1:43:92:cd:59:4b: 4e:cc:75:27:82:91:92:25:72:cc:cd:5c:63:fc:3e: 53:09:11:85:1f:2a:f5:0d:db:01:c6:08:a9:e5:78: 32:9c:8c:ca:15:93:8b:92:78:8f:c1:7e:94:c8:50: 00:67:05:19:ac:a8:bc:59:90:d5:a9:12:ef:12:75: 28:21:de:11:27:1d:00:cf:78:bf:d9:e6:97:98:06: a4:77:a6:a4:7e:d2:02:31:29:68:52:78:f1:5a:f0: 59:10:d2:29:61:2f:4a:c2:af:16:b0:9c:a2:1b:c8: 12:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1A:A6:E9:9F:DB:AE:53:C6:A4:8B:00:AA:12:53:AD:45:6A:BD:C0 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:30::/44 Signature Algorithm: sha256WithRSAEncryption 2c:5e:1a:b6:e6:4a:b9:95:35:bf:73:bc:a6:44:dd:18:6f:c0: 33:df:79:ba:71:68:a3:15:66:b5:3b:b5:2d:4f:2d:2b:64:67: 83:07:91:3b:c4:0d:e7:6a:e2:b4:8e:2e:e3:0a:25:2e:10:ec: f4:6a:5c:73:7a:b5:bd:db:09:04:a6:5c:0b:f9:ed:27:92:a2: 11:2f:a0:a8:29:c3:48:7b:f8:39:b9:4d:8a:49:4e:88:fa:e5: a6:cc:f1:4a:c7:cc:29:9c:3b:b7:12:49:01:fc:1e:05:91:2f: f9:1e:3e:bf:ac:32:80:84:71:b0:10:5d:3c:c8:5d:fb:1c:cc: 5f:29:47:7c:89:c2:8a:e6:d4:1e:58:bf:c7:01:96:00:88:b1: 3a:68:53:47:9f:d8:62:24:0b:eb:b3:51:14:7b:71:af:0d:37: bc:e5:8c:38:7f:18:26:02:c4:6f:4c:9d:3d:26:1c:14:3f:65: 75:f1:c9:f6:b1:67:38:c9:78:98:17:d7:fa:1a:44:5d:5e:0d: 29:31:6d:ef:e9:47:b5:c9:f4:c8:79:4b:2e:e5:63:68:82:45: f3:5f:00:8b:11:40:13:e5:6b:dd:10:7a:ec:bf:d0:cb:34:32: 81:75:fc:04:e9:c3:83:2e:fb:2d:15:93:ab:b3:b3:6a:16:45: c5:80:a4:ea -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzU0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlOS0zNGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9VNROGsZ+wN7c1UzovLS6NbCuk5WWIwBzrwDvzMYzL8yTuYsB16pJzv5XbH 3JwudJvTJZuhKnSOfGou3Lt3Oqrwl8ecQxvBnSKFaldfe0Nxyl56Js35QL710048 ITQvtwoaAjGnn2kMHwnbekne9AL7sQKaFwHjHIbU/oux5zTOjnxFkGff4gGrIwMv GH+hQ5LNWUtOzHUngpGSJXLMzVxj/D5TCRGFHyr1DdsBxgip5XgynIzKFZOLkniP wX6UyFAAZwUZrKi8WZDVqRLvEnUoId4RJx0Az3i/2eaXmAakd6akftICMSloUnjx WvBZENIpYS9Kwq8WsJyiG8gSfQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFwapumf 265TxqSLAKoSU61Far3AMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMkU2QjU4RUNG RUM5MTFFODhFNzg5OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAp6AADAwDQYJKoZIhvcNAQELBQADggEBACxeGrbmSrmV Nb9zvKZE3RhvwDPfebpxaKMVZrU7tS1PLStkZ4MHkTvEDedq4rSOLuMKJS4Q7PRq XHN6tb3bCQSmXAv57SeSohEvoKgpw0h7+Dm5TYpJToj65abM8UrHzCmcO7cSSQH8 HgWRL/kePr+sMoCEcbAQXTzIXfsczF8pR3yJworm1B5Yv8cBlgCIsTpoU0ef2GIk C+uzURR7ca8NN7zljDh/GCYCxG9MnT0mHBQ/ZXXxyfaxZzjJeJgX1/oaRF1eDSkx be/pR7XJ9Mh5Sy7lY2iCRfNfAIsRQBPla90Qeuy/0Ms0MoF1/ATpw4Mu+y0Vk6uz s2oWRcWApOo= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org