$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2FF0D93AFEC911E88E78993AC4F9AE02.roa File: 2FF0D93AFEC911E88E78993AC4F9AE02.roa (raw, json) Hash identifier: C4plZK6XXxKIeoIaaMmlznlh+k4bOliQDbE8KF8lE2A= Subject key identifier: 9F:9D:1F:4F:07:6F:E3:1F:C8:B2:CB:D7:8C:DD:6E:50:D7:7C:D4:E4 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2753 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2FF0D93AFEC911E88E78993AC4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:56 +0000 ROA not before: Tue 30 Jul 2024 16:03:56 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138445 IP address blocks: 2402:9e80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10067 (0x2753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:56 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90eec-3b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c1:af:b3:96:b4:eb:aa:e4:33:78:95:0d:96: ef:37:8c:47:2a:a8:28:9b:bf:a6:d5:f0:aa:e2:e6: c4:25:13:97:6e:3b:03:0e:fb:83:97:85:d1:48:e6: a3:1b:3b:9a:f0:21:8d:ac:67:e8:58:f0:af:7b:91: 79:d5:29:eb:f2:08:b3:a5:f7:8f:05:e1:77:65:91: dd:6e:c5:36:c7:77:cc:56:3f:ec:f8:6b:ec:dc:d5: 1f:26:9f:f0:30:74:67:6d:85:8e:76:58:13:fb:77: e7:39:59:31:e4:9a:a6:be:04:c1:37:d4:05:00:2f: aa:f9:e2:48:55:c4:1a:c1:c6:4f:08:44:23:19:7d: ae:c3:d3:69:69:c1:3c:a9:77:6d:90:80:e9:44:bb: fc:42:29:10:b5:df:9d:9c:85:9c:56:99:50:27:7b: 96:96:4c:32:b4:00:ee:42:ed:cb:e0:11:8e:5f:22: ec:f2:19:b5:73:e7:47:d3:01:be:10:83:dc:58:a8: 3d:35:4d:7e:6b:58:6a:a9:d6:ba:34:d1:07:46:6c: 93:a0:e2:c8:1d:3e:df:80:26:70:c7:37:94:9f:af: 4e:fc:53:46:74:d8:9b:7b:c7:b2:aa:a2:67:1b:99: 8e:ee:4c:d1:4c:c7:39:53:2b:b3:57:6f:9d:5d:12: 40:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9D:1F:4F:07:6F:E3:1F:C8:B2:CB:D7:8C:DD:6E:50:D7:7C:D4:E4 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2FF0D93AFEC911E88E78993AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:7::/48 Signature Algorithm: sha256WithRSAEncryption c7:6a:f9:c6:96:e9:c9:12:af:a5:87:d4:6f:f8:8c:e4:bf:54: 7d:4a:b1:c8:02:af:e9:1c:cc:51:67:d2:41:b8:33:75:e5:8b: 93:0e:22:75:8d:f9:92:69:44:da:f1:6b:4a:fd:f5:ce:b7:c9: 44:2c:01:3b:91:92:be:3a:52:47:31:89:d5:41:07:d2:f1:34: 0b:64:08:3d:99:c7:51:0c:2c:4f:e0:5e:68:46:49:fe:06:50: 3b:cc:5c:a7:5c:f1:cf:5a:ed:0b:22:3d:06:37:cd:ba:87:43: eb:9e:f4:1b:b2:a3:0a:dd:79:dd:1a:1c:a7:ce:c4:46:49:54: 18:35:31:1c:59:44:2c:77:f6:81:19:7b:5e:cc:53:23:3a:ea: 27:b4:97:e9:3e:ea:09:8a:36:81:b5:99:62:ee:2a:35:6d:7b: d5:3d:3a:e3:43:41:6a:67:91:25:5a:61:a4:c5:19:16:bd:34: ec:35:28:7a:0c:2d:fb:88:04:f9:eb:bd:c5:b8:4c:24:33:2e: 4f:91:27:03:ca:cc:96:3a:bd:8a:7f:49:14:d3:3c:cb:56:ef: 54:34:52:8f:ad:34:53:17:62:40:f1:ba:75:5d:72:82:bb:4a: 8e:7f:ba:b4:cc:6a:af:90:f0:bf:b0:c7:ad:1f:f6:59:26:01: 82:07:f2:ae -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzU2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlYy0zYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38Gvs5a066rkM3iVDZbvN4xHKqgom7+m1fCq4ubEJROXbjsDDvuDl4XRSOaj Gzua8CGNrGfoWPCve5F51Snr8gizpfePBeF3ZZHdbsU2x3fMVj/s+Gvs3NUfJp/w MHRnbYWOdlgT+3fnOVkx5JqmvgTBN9QFAC+q+eJIVcQawcZPCEQjGX2uw9NpacE8 qXdtkIDpRLv8QikQtd+dnIWcVplQJ3uWlkwytADuQu3L4BGOXyLs8hm1c+dH0wG+ EIPcWKg9NU1+a1hqqda6NNEHRmyToOLIHT7fgCZwxzeUn69O/FNGdNibe8eyqqJn G5mO7kzRTMc5UyuzV2+dXRJAgwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ+dH08H b+MfyLLL14zdblDXfNTkMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMkZGMEQ5M0FG RUM5MTFFODhFNzg5OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAAcwDQYJKoZIhvcNAQELBQADggEBAMdq+caW6ckS r6WH1G/4jOS/VH1KscgCr+kczFFn0kG4M3Xli5MOInWN+ZJpRNrxa0r99c63yUQs ATuRkr46UkcxidVBB9LxNAtkCD2Zx1EMLE/gXmhGSf4GUDvMXKdc8c9a7QsiPQY3 zbqHQ+ue9Buyowrded0aHKfOxEZJVBg1MRxZRCx39oEZe17MUyM66ie0l+k+6gmK NoG1mWLuKjVte9U9OuNDQWpnkSVaYaTFGRa9NOw1KHoMLfuIBPnrvcW4TCQzLk+R JwPKzJY6vYp/SRTTPMtW71Q0Uo+tNFMXYkDxunVdcoK7So5/urTMaq+Q8L+wx60f 9lkmAYIH8q4= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:13 2024 by rpki-client on console-ams.rpki-client.org