$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2F36F25EFEC911E88E78993AC4F9AE02.roa File: 2F36F25EFEC911E88E78993AC4F9AE02.roa (raw, json) Hash identifier: lbtfttZLykOFL2X6vUbtnMhzUOAWTePTmvUBhS0VvTo= Subject key identifier: 12:3F:27:46:43:74:A9:EC:FE:17:B2:D7:55:26:8A:69:89:DE:F3:71 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2751 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2F36F25EFEC911E88E78993AC4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:55 +0000 ROA not before: Tue 30 Jul 2024 16:03:55 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138358 IP address blocks: 2402:9e80:28::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10065 (0x2751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:55 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90eea-7ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:d7:95:20:d4:02:aa:53:c6:e9:82:38:eb: cc:96:e1:04:21:63:fc:d1:ca:6b:50:dc:8d:68:0f: eb:a0:f3:c9:a2:b6:c7:96:03:c5:f7:c7:6a:a9:8d: 49:5a:65:55:cb:0a:5c:6e:b9:3f:84:89:74:a6:18: eb:43:b3:28:dc:02:52:b8:01:4c:40:41:af:62:3d: c9:6a:9d:db:59:13:04:66:1e:ad:69:9f:e0:a5:fc: 3f:97:8b:8e:0d:4c:5b:12:fa:26:b0:16:c2:42:74: 4b:a4:39:c7:19:05:12:3a:63:59:8f:fa:02:65:0c: 60:f8:04:72:66:bf:43:3d:ad:05:69:05:41:a6:da: 05:52:f7:19:ff:b0:24:dd:89:81:ca:fb:63:fb:d1: 0c:f1:fd:7c:89:e3:02:be:c4:51:d5:bb:81:3f:f1: e7:c6:d6:20:a4:57:7d:2b:12:d0:5b:0f:20:4c:1a: 8f:90:77:55:4a:ca:95:ea:b3:d6:52:ed:2a:7f:99: 42:95:d3:a4:3f:00:ff:f8:7f:13:d9:95:1c:35:62: bb:4f:4d:86:a0:1d:0d:1f:76:23:4b:01:09:c3:c6: 91:80:b4:14:1c:d9:65:a4:09:7e:89:d0:56:6d:a3: 7c:7e:10:8c:0c:72:79:1b:f6:6f:0a:8c:88:78:f0: b9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:3F:27:46:43:74:A9:EC:FE:17:B2:D7:55:26:8A:69:89:DE:F3:71 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2F36F25EFEC911E88E78993AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:28::/48 Signature Algorithm: sha256WithRSAEncryption 4e:78:be:ff:4a:35:26:d1:47:d1:2f:82:22:9e:51:e6:70:5b: b2:38:5b:87:a7:db:3f:3a:c3:8e:03:b2:f8:3f:fb:1a:d6:84: ce:81:5e:18:da:7b:85:1d:ce:36:25:9a:5e:6d:08:5c:ab:bb: 3d:75:6c:82:53:09:df:f1:05:10:b4:dc:02:fb:45:7d:4c:9f: ed:61:8a:2a:3c:8e:4c:91:bf:9e:64:9e:28:8c:38:29:4f:b9: 7e:57:7d:d0:b5:b0:2c:4b:1c:fe:58:b6:32:ed:2d:2b:5d:e7: f5:17:26:84:78:1d:fd:5b:5c:4b:70:4b:66:ff:87:7d:23:4e: 83:ce:ce:47:ae:98:29:b9:1f:27:f6:71:81:07:33:6d:f5:e6: 66:62:0a:3c:46:e6:06:2d:5b:70:f1:30:27:73:50:b9:d5:2a: d8:07:fb:82:01:94:2c:3d:98:94:fd:72:15:c9:5d:71:83:2d: 37:0e:26:f9:66:f5:99:99:1c:83:39:95:9c:7c:d6:e2:07:5d: b1:8f:6e:a0:de:29:56:f1:7d:66:fb:a0:b4:c9:20:77:b9:63: 84:20:c6:07:db:f4:83:f4:5f:88:80:b0:ff:31:5a:09:1e:e8: 27:77:58:80:fa:42:b8:b9:c4:ff:75:04:ef:52:fd:f5:1f:25: f3:45:5a:d0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzU1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlYS03Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKjXlSDUAqpTxumCOOvMluEEIWP80cprUNyNaA/roPPJorbHlgPF98dqqY1J WmVVywpcbrk/hIl0phjrQ7Mo3AJSuAFMQEGvYj3Jap3bWRMEZh6taZ/gpfw/l4uO DUxbEvomsBbCQnRLpDnHGQUSOmNZj/oCZQxg+ARyZr9DPa0FaQVBptoFUvcZ/7Ak 3YmByvtj+9EM8f18ieMCvsRR1buBP/HnxtYgpFd9KxLQWw8gTBqPkHdVSsqV6rPW Uu0qf5lCldOkPwD/+H8T2ZUcNWK7T02GoB0NH3YjSwEJw8aRgLQUHNllpAl+idBW baN8fhCMDHJ5G/ZvCoyIePC5GwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBI/J0ZD dKns/hey11UmimmJ3vNxMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMkYzNkYyNUVG RUM5MTFFODhFNzg5OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACgwDQYJKoZIhvcNAQELBQADggEBAE54vv9KNSbR R9EvgiKeUeZwW7I4W4en2z86w44Dsvg/+xrWhM6BXhjae4UdzjYlml5tCFyruz11 bIJTCd/xBRC03AL7RX1Mn+1hiio8jkyRv55kniiMOClPuX5XfdC1sCxLHP5YtjLt LStd5/UXJoR4Hf1bXEtwS2b/h30jToPOzkeumCm5Hyf2cYEHM2315mZiCjxG5gYt W3DxMCdzULnVKtgH+4IBlCw9mJT9chXJXXGDLTcOJvlm9ZmZHIM5lZx81uIHXbGP bqDeKVbxfWb7oLTJIHe5Y4Qgxgfb9IP0X4iAsP8xWgke6Cd3WID6Qri5xP91BO9S /fUfJfNFWtA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:13 2024 by rpki-client on console-ams.rpki-client.org