$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa File: 3404E194C47711EB9BD0E327C4F9AE02.roa (raw, json) Hash identifier: fZqpzbalO5KpYxN3RGdtzePMX7BwaVGglvOgJcFt/KY= Subject key identifier: DE:C9:C6:9A:2B:96:C5:8F:42:0A:CB:5E:EE:73:1C:D4:4F:B4:5A:67 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2773 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:27 +0000 ROA not before: Tue 30 Jul 2024 16:04:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 6921 IP address blocks: 2402:e380:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10099 (0x2773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:27 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90f0b-2512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d8:ce:d1:25:4f:09:0f:c9:22:82:84:28:d1: 3a:c7:36:16:ee:cd:fb:07:ea:5b:83:7a:04:b9:31: dc:ef:87:80:8b:6b:28:8e:29:92:55:43:a7:53:12: 2c:43:2c:f6:90:52:b0:b7:f5:fd:b2:eb:40:e8:fe: ea:dd:b8:43:e7:dd:b2:57:ba:55:12:e7:83:96:9c: b8:3b:3c:fe:08:6e:ef:38:6e:f4:81:43:0c:7b:74: 1e:bc:09:f9:f0:d2:b5:83:5a:08:74:55:1e:2e:2a: b8:e5:d8:d6:6c:18:3b:44:3d:4e:53:1b:f1:93:7e: 66:48:0a:72:6a:02:9b:a0:b1:5b:bf:42:7d:f1:ec: f0:c1:4e:c8:24:15:74:bb:1e:da:c2:0b:66:c8:6b: 35:80:43:91:c8:ab:a2:07:6a:37:d4:5e:9a:0f:9f: 29:fb:1b:87:96:58:7a:6a:98:30:f6:76:79:fe:94: 7b:16:52:5f:b7:bb:82:b8:3a:8f:09:b2:bf:f7:00: db:ff:f2:6a:a2:db:eb:0e:e9:95:fe:17:0e:f0:be: 98:8c:e5:bb:7d:34:87:d2:cc:8e:36:c3:02:24:22: 6e:a4:20:51:40:58:4f:48:6f:53:1f:59:24:b6:4b: 24:4f:9f:e6:38:16:9e:79:46:13:cb:55:49:65:66: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C9:C6:9A:2B:96:C5:8F:42:0A:CB:5E:EE:73:1C:D4:4F:B4:5A:67 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:e000::/35 Signature Algorithm: sha256WithRSAEncryption a4:ee:36:42:87:bf:af:76:8e:5d:41:24:cd:83:64:66:e2:7a: ab:a4:f5:22:ae:38:f6:b9:8c:6b:1a:c2:d7:89:1b:6a:8d:93: 5c:05:fc:5c:b3:56:2e:9a:4e:2d:b8:f6:d3:c6:68:b6:83:0f: 7d:22:59:fa:14:76:0f:09:50:da:f3:37:dc:df:bf:18:ce:87: e9:e0:97:4b:4c:35:6c:ae:1a:8a:4a:8a:2f:9f:77:5a:1b:dc: bb:1a:70:ef:7d:6b:bb:cf:07:38:d7:f8:ad:8f:2f:c8:95:1d: 81:7b:a9:d9:79:f1:8b:38:9f:2c:53:06:ba:10:28:60:13:30: 97:27:26:69:da:98:16:f6:c0:78:59:b0:a5:0b:3e:60:a0:d9: d0:92:47:83:a9:df:f4:a5:c7:36:ea:da:70:9e:3b:6e:a4:9d: 43:c8:62:19:cd:c6:67:bf:c5:42:17:fb:37:48:4b:2d:98:a7: 00:13:6c:90:ee:bb:b6:fe:93:da:55:36:11:be:f5:af:a4:83: 65:d8:9d:86:92:70:05:e0:46:aa:f6:9e:af:2c:77:16:50:d5: eb:b6:f9:6b:3f:4e:19:33:df:ca:32:89:d1:a6:0d:6d:79:1c: 38:84:a4:a1:97:a7:36:1e:94:93:4e:5d:eb:79:63:26:b1:d9: a5:a8:4c:20 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICJ3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDI3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGYwYi0yNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NjO0SVPCQ/JIoKEKNE6xzYW7s37B+pbg3oEuTHc74eAi2sojimSVUOnUxIs Qyz2kFKwt/X9sutA6P7q3bhD592yV7pVEueDlpy4Ozz+CG7vOG70gUMMe3QevAn5 8NK1g1oIdFUeLiq45djWbBg7RD1OUxvxk35mSApyagKboLFbv0J98ezwwU7IJBV0 ux7awgtmyGs1gEORyKuiB2o31F6aD58p+xuHllh6apgw9nZ5/pR7FlJft7uCuDqP CbK/9wDb//JqotvrDumV/hcO8L6YjOW7fTSH0syONsMCJCJupCBRQFhPSG9TH1kk tkskT5/mOBaeeUYTy1VJZWYexwIDAQABo4IClzCCApMwHQYDVR0OBBYEFN7Jxpor lsWPQgrLXu5zHNRPtFpnMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzQwNEUxOTRD NDc3MTFFQjlCRDBFMzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgUkAuOA4DANBgkqhkiG9w0BAQsFAAOCAQEApO42Qoe/r3aO XUEkzYNkZuJ6q6T1Iq449rmMaxrC14kbao2TXAX8XLNWLppOLbj208ZotoMPfSJZ +hR2DwlQ2vM33N+/GM6H6eCXS0w1bK4aikqKL593Whvcuxpw731ru88HONf4rY8v yJUdgXup2XnxizifLFMGuhAoYBMwlycmadqYFvbAeFmwpQs+YKDZ0JJHg6nf9KXH NuracJ47bqSdQ8hiGc3GZ7/FQhf7N0hLLZinABNskO67tv6T2lU2Eb71r6SDZdid hpJwBeBGqvaeryx3FlDV67b5az9OGTPfyjKJ0aYNbXkcOISkoZenNh6Uk05d63lj JrHZpahMIA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org