$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa File: 3494EF9604AB11EB8AAF5923C4F9AE02.roa (raw, json) Hash identifier: J16r+nqwYWjQC9q3yK2BAnvYm7fbGma4jggfeMpNhNk= Subject key identifier: A9:42:19:D8:1B:5A:13:A1:37:58:DB:7E:2C:32:84:1C:6C:13:76:5D Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 275E Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:09 +0000 ROA not before: Tue 30 Jul 2024 16:04:08 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141223 IP address blocks: 2402:9e80:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10078 (0x275e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:08 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ef8-7fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a5:8b:ca:f0:59:92:5a:2a:f4:84:bf:46:33: 77:d4:05:8a:eb:20:7e:c0:04:9f:2a:dd:5c:2a:be: a1:37:4d:d7:bc:17:1a:c5:3a:c5:5c:3e:2d:80:37: df:56:00:73:01:a3:3c:97:72:88:07:a0:5b:4d:12: d7:d4:1a:b7:92:36:c1:18:e5:ce:0d:b8:ef:25:9c: 62:a2:87:f8:55:5a:81:50:e9:33:09:0e:ee:52:25: a4:fb:15:d8:dd:bf:fa:2e:1a:f8:e5:9d:1a:ff:b2: 1f:6c:db:d7:16:c8:85:7e:ee:00:78:a6:f1:4e:53: ba:c4:26:af:a4:63:b2:7e:8f:9f:20:06:3e:6d:c4: 48:38:d9:aa:00:3b:da:1c:e9:cf:4e:cf:f2:b6:72: 7b:9d:21:a7:21:94:60:b5:3e:88:5b:f9:9a:a0:06: 06:7a:9a:b2:4c:ac:b3:b1:64:53:11:ed:f7:f5:2b: 3c:23:c2:fe:9b:41:df:c9:ea:7e:23:f2:1d:b0:b0: e2:c9:d7:36:e2:d5:1f:62:c7:5c:f6:c4:ab:56:70: 83:a2:fd:16:8a:56:de:55:e6:e1:59:2d:37:1c:fc: 2d:63:50:70:cd:ee:8c:25:61:ac:7b:70:d0:e2:ab: 79:8f:87:23:68:e1:f9:1f:d9:42:65:32:38:85:29: 2b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:42:19:D8:1B:5A:13:A1:37:58:DB:7E:2C:32:84:1C:6C:13:76:5D X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:53::/48 Signature Algorithm: sha256WithRSAEncryption 03:0e:59:b1:5f:f6:bd:09:dc:16:28:99:4c:4a:cf:c7:07:e2: 73:00:74:e5:2b:c2:03:4d:28:ad:fd:de:64:8e:31:1b:c8:33: 04:25:90:70:1c:89:80:ab:17:8e:39:8a:ab:14:2a:1c:8f:79: 45:d1:53:51:ad:12:07:da:4e:e8:23:a3:dc:1c:e3:b7:f8:aa: 09:cb:4a:dc:a2:b9:0c:93:c4:e2:7b:84:3f:64:52:42:f5:fe: 9e:62:63:d7:c0:85:f7:f1:4e:23:0d:fc:44:79:90:f0:0b:8a: c7:d4:a9:5a:e1:c0:83:06:3b:9c:ac:13:4c:2a:4e:df:15:fa: e6:fd:7a:c5:31:55:39:6e:0a:75:e3:f2:6d:87:02:dd:6d:db: 48:00:9d:d0:ae:d0:cc:33:5f:88:27:10:c6:70:63:b2:97:d3: 16:d6:26:1e:92:0d:1f:38:6e:78:80:7e:a7:4c:de:84:81:f2: 2c:05:e7:d7:47:37:93:fa:59:48:f7:2f:89:82:b5:88:11:e3: 71:5a:f3:6d:78:37:86:35:cd:2a:66:55:3f:c6:fb:fd:71:d6: 77:3f:9c:3d:17:22:13:ca:0e:2a:06:cb:02:02:62:3f:dc:05: 8f:38:1a:70:00:d1:a3:dc:3d:0b:f4:68:ef:21:68:cf:c1:a4: dd:b9:0b:3b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDA4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmOC03ZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqWLyvBZkloq9IS/RjN31AWK6yB+wASfKt1cKr6hN03XvBcaxTrFXD4tgDff VgBzAaM8l3KIB6BbTRLX1Bq3kjbBGOXODbjvJZxioof4VVqBUOkzCQ7uUiWk+xXY 3b/6Lhr45Z0a/7IfbNvXFsiFfu4AeKbxTlO6xCavpGOyfo+fIAY+bcRIONmqADva HOnPTs/ytnJ7nSGnIZRgtT6IW/maoAYGepqyTKyzsWRTEe339Ss8I8L+m0Hfyep+ I/IdsLDiydc24tUfYsdc9sSrVnCDov0WilbeVebhWS03HPwtY1Bwze6MJWGse3DQ 4qt5j4cjaOH5H9lCZTI4hSkrTwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKlCGdgb WhOhN1jbfiwyhBxsE3ZdMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzQ5NEVGOTYw NEFCMTFFQjhBQUY1OTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAFMwDQYJKoZIhvcNAQELBQADggEBAAMOWbFf9r0J 3BYomUxKz8cH4nMAdOUrwgNNKK393mSOMRvIMwQlkHAciYCrF445iqsUKhyPeUXR U1GtEgfaTugjo9wc47f4qgnLStyiuQyTxOJ7hD9kUkL1/p5iY9fAhffxTiMN/ER5 kPALisfUqVrhwIMGO5ysE0wqTt8V+ub9esUxVTluCnXj8m2HAt1t20gAndCu0Mwz X4gnEMZwY7KX0xbWJh6SDR84bniAfqdM3oSB8iwF59dHN5P6WUj3L4mCtYgR43Fa 8214N4Y1zSpmVT/G+/1x1nc/nD0XIhPKDioGywICYj/cBY84GnAA0aPcPQv0aO8h aM/BpN25Czs= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org