$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa File: 2E6B58ECFEC911E88E78993AC4F9AE02.roa (raw, json) Hash identifier: XBY5wO3kMds9YL3WpFG/JM0u34QgMc4G65losa8LONs= Subject key identifier: 90:B8:09:B8:8E:EC:CE:A4:6C:7B:2A:67:20:D7:47:66:18:CD:82:EC Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2624 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa Signing time: Sun 06 Aug 2023 16:12:47 +0000 ROA not before: Sun 06 Aug 2023 16:12:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138333 IP address blocks: 2402:9e80:30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9764 (0x2624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:12:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc67f-dd5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:85:d8:84:79:84:f2:92:33:18:e1:c3:47: a5:57:0d:89:57:14:cf:f4:3d:e8:01:2d:b5:77:9e: 7f:22:f2:94:6e:74:da:81:b1:f5:64:d7:88:28:90: 53:af:bb:af:28:15:17:be:cc:1e:c9:3e:7e:71:cd: 45:12:68:dc:c1:b9:e1:aa:d9:8b:f9:e6:2f:a1:2a: d8:02:af:46:f9:f1:d9:26:9f:aa:92:71:ac:4d:5e: 78:c1:d4:4c:3c:8b:ae:e5:3b:69:00:34:46:f6:c4: 0f:8b:cd:85:2c:02:76:39:e4:a2:af:e9:35:1e:ab: 50:b1:c5:9b:9e:21:be:f5:93:0f:3a:12:8a:c2:23: eb:0e:c6:9d:e3:c6:29:6d:b6:d6:58:0f:31:b1:cc: 69:e6:b7:a5:8d:06:b1:73:09:17:9e:04:23:40:2e: df:50:bf:a7:2a:5c:58:83:83:3a:47:6c:bd:4a:93: 7f:16:2f:5b:c7:04:31:42:0f:ab:f7:65:a2:f0:75: d0:18:fa:92:0e:ca:0c:23:a4:73:4c:e0:65:18:1b: f6:49:e5:f2:eb:2a:6b:8f:94:da:74:26:96:96:7b: 09:55:e6:60:59:38:82:00:d2:3a:4b:cc:20:95:88: ec:ba:ac:13:c4:37:68:45:5c:22:ab:d9:61:8f:72: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B8:09:B8:8E:EC:CE:A4:6C:7B:2A:67:20:D7:47:66:18:CD:82:EC X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2E6B58ECFEC911E88E78993AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:30::/44 Signature Algorithm: sha256WithRSAEncryption 66:1d:c0:ac:f6:9e:d6:c8:8a:73:26:1a:2f:3b:05:94:8c:28: 33:01:a6:46:ab:c4:2f:aa:b8:4a:08:f6:6d:e3:43:38:72:3b: 21:7d:a4:27:92:c0:78:89:70:d8:6d:22:e9:06:33:db:81:a2: f7:ff:d8:56:31:48:d0:4c:79:1c:0b:35:12:08:31:46:5b:ef: c5:66:d4:8d:f2:24:d9:f6:cc:4f:fa:2e:89:53:25:78:69:49: ed:19:23:03:72:7f:ea:b1:2a:c7:51:7e:2c:ed:27:5a:99:b9: d2:f0:43:23:43:e5:56:c8:88:02:73:15:4a:4e:34:a2:24:fb: 3c:45:9b:33:b5:4a:d0:cb:5e:d5:82:04:a2:fd:07:a6:00:ba: 90:eb:45:3d:f1:9b:f0:34:7e:c2:91:89:be:0d:f5:ae:a7:7a: 9b:e4:c3:93:d4:49:46:17:a6:b6:8c:e9:36:6f:55:c6:1e:5a: 47:5a:a6:1e:28:d8:09:8c:c7:13:f0:89:30:6b:60:f7:7b:52: a4:69:72:e1:c4:e3:28:06:4a:6d:07:c9:d7:e1:1a:a9:3b:98: 8e:55:fc:0d:c0:76:f5:97:38:ed:d4:fd:ff:cc:0d:41:d8:e8: a1:60:76:63:be:70:33:e6:b4:6f:ec:15:11:7c:60:35:e7:ab: f9:b3:9b:59 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMjQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY3Zi1kZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdSF2IR5hPKSMxjhw0elVw2JVxTP9D3oAS21d55/IvKUbnTagbH1ZNeIKJBT r7uvKBUXvsweyT5+cc1FEmjcwbnhqtmL+eYvoSrYAq9G+fHZJp+qknGsTV54wdRM PIuu5TtpADRG9sQPi82FLAJ2OeSir+k1HqtQscWbniG+9ZMPOhKKwiPrDsad48Yp bbbWWA8xscxp5reljQaxcwkXngQjQC7fUL+nKlxYg4M6R2y9SpN/Fi9bxwQxQg+r 92Wi8HXQGPqSDsoMI6RzTOBlGBv2SeXy6yprj5TadCaWlnsJVeZgWTiCANI6S8wg lYjsuqwTxDdoRVwiq9lhj3KVrQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJC4CbiO 7M6kbHsqZyDXR2YYzYLsMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMkU2QjU4RUNG RUM5MTFFODhFNzg5OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAp6AADAwDQYJKoZIhvcNAQELBQADggEBAGYdwKz2ntbI inMmGi87BZSMKDMBpkarxC+quEoI9m3jQzhyOyF9pCeSwHiJcNhtIukGM9uBovf/ 2FYxSNBMeRwLNRIIMUZb78Vm1I3yJNn2zE/6LolTJXhpSe0ZIwNyf+qxKsdRfizt J1qZudLwQyND5VbIiAJzFUpONKIk+zxFmzO1StDLXtWCBKL9B6YAupDrRT3xm/A0 fsKRib4N9a6nepvkw5PUSUYXpraM6TZvVcYeWkdaph4o2AmMxxPwiTBrYPd7UqRp cuHE4ygGSm0HydfhGqk7mI5V/A3AdvWXOO3U/f/MDUHY6KFgdmO+cDPmtG/sFRF8 YDXnq/mzm1k= -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org