$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa File: 3494EF9604AB11EB8AAF5923C4F9AE02.roa (raw, json) Hash identifier: Fdh0iKaN9s5KAJUbhgRdPhwHOcikk4DN5iWNxBmnnTo= Subject key identifier: 62:D8:27:AE:66:AE:76:2A:4E:E1:E3:81:EB:ED:48:6E:BD:5A:4B:D4 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2635 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:03 +0000 ROA not before: Sun 06 Aug 2023 16:13:03 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 141223 IP address blocks: 2402:9e80:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9781 (0x2635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:03 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc68f-99bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:52:7c:d9:0c:bc:c9:55:f1:64:af:28:6f: dc:2d:6b:96:90:eb:c2:2c:d1:a6:4a:ca:cf:32:4f: 3d:ec:05:06:3b:48:f9:a4:6e:56:d4:18:be:f4:2c: 76:76:dc:30:96:e9:e3:37:5f:28:fa:5e:dd:5c:4a: ec:d3:2f:2a:78:1f:2c:64:7b:f7:b6:a9:73:3a:bd: 1d:5c:d4:40:4f:0b:b1:ec:e9:fb:b0:c1:0f:6f:13: 40:37:92:22:20:0a:a1:9a:aa:fa:5b:f9:49:64:a7: 53:24:7e:5b:1e:4d:d8:63:71:8d:da:52:37:92:56: 2f:2c:8c:d4:0c:6c:ce:80:17:dd:20:dd:cd:c8:ed: 13:e8:db:73:c8:05:76:f0:2b:e8:6b:48:e1:8b:07: bc:a5:07:39:87:d6:e8:61:24:ba:f6:0f:30:1b:94: 69:32:a4:0e:f2:16:6b:04:ab:03:c8:b3:1d:84:71: d3:26:55:c6:59:19:69:27:3d:bf:60:c6:ba:72:06: 45:ac:ee:d2:35:f8:fb:1c:89:c8:3d:61:15:98:cf: 3f:75:f8:7c:53:c2:2c:36:81:d1:c1:b7:ca:15:e8: 1f:ea:23:6b:07:33:aa:d3:fe:d7:2b:ef:c8:2c:7b: 44:37:fb:c7:4a:c8:2f:e0:79:09:8a:a3:cb:32:bf: 9b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D8:27:AE:66:AE:76:2A:4E:E1:E3:81:EB:ED:48:6E:BD:5A:4B:D4 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3494EF9604AB11EB8AAF5923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:53::/48 Signature Algorithm: sha256WithRSAEncryption bc:a3:28:ef:86:1b:6a:d9:52:81:c6:27:83:69:30:cd:5c:9a: a5:d0:6b:1d:19:e5:b1:b1:ae:57:97:4e:37:b8:fe:30:0d:69: ee:f4:28:8a:81:50:96:31:71:83:30:25:ab:e7:fa:50:f5:35: 07:7b:0e:bd:80:c1:91:b3:fa:90:2c:49:e4:f2:08:56:41:6c: d3:36:e9:ba:6f:35:c2:b6:12:2a:34:d9:83:02:16:d0:fd:7b: 5e:95:f2:12:8b:40:24:ef:29:90:e8:7f:33:32:de:c9:36:e2: 1f:74:e0:b5:9d:89:93:a7:4c:67:89:29:43:9e:42:44:74:27: da:de:87:77:92:aa:f8:fd:55:60:18:a2:95:72:2a:d9:e8:e5: 44:b8:f1:59:6d:70:e9:6e:95:8f:74:92:89:3d:9e:74:f4:56: 18:19:d2:94:5c:94:55:51:8b:b4:77:dc:5c:7c:0c:1a:8d:a0: fc:bd:99:8e:9a:8d:d0:95:8c:a9:ec:2d:4a:6b:83:d6:87:80: ee:49:2d:cd:eb:f7:f7:ae:e6:85:e0:22:d9:e0:19:77:d4:6f: be:34:be:df:41:ee:4a:be:b2:59:bc:9b:fb:97:74:d9:5b:66: 19:2b:09:f7:0a:9d:11:2b:29:1f:d6:78:a7:39:e3:b9:f2:94: 5e:7e:08:78 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzAzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4Zi05OWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5pSfNkMvMlV8WSvKG/cLWuWkOvCLNGmSsrPMk897AUGO0j5pG5W1Bi+9Cx2 dtwwlunjN18o+l7dXErs0y8qeB8sZHv3tqlzOr0dXNRATwux7On7sMEPbxNAN5Ii IAqhmqr6W/lJZKdTJH5bHk3YY3GN2lI3klYvLIzUDGzOgBfdIN3NyO0T6NtzyAV2 8Cvoa0jhiwe8pQc5h9boYSS69g8wG5RpMqQO8hZrBKsDyLMdhHHTJlXGWRlpJz2/ YMa6cgZFrO7SNfj7HInIPWEVmM8/dfh8U8IsNoHRwbfKFegf6iNrBzOq0/7XK+/I LHtEN/vHSsgv4HkJiqPLMr+bbwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGLYJ65m rnYqTuHjgevtSG69WkvUMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzQ5NEVGOTYw NEFCMTFFQjhBQUY1OTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAFMwDQYJKoZIhvcNAQELBQADggEBALyjKO+GG2rZ UoHGJ4NpMM1cmqXQax0Z5bGxrleXTje4/jANae70KIqBUJYxcYMwJavn+lD1NQd7 Dr2AwZGz+pAsSeTyCFZBbNM26bpvNcK2Eio02YMCFtD9e16V8hKLQCTvKZDofzMy 3sk24h904LWdiZOnTGeJKUOeQkR0J9reh3eSqvj9VWAYopVyKtno5US48VltcOlu lY90kok9nnT0VhgZ0pRclFVRi7R33Fx8DBqNoPy9mY6ajdCVjKnsLUprg9aHgO5J Lc3r9/eu5oXgItngGXfUb740vt9B7kq+slm8m/uXdNlbZhkrCfcKnRErKR/WeKc5 47nylF5+CHg= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:55 2024 by rpki-client on console-fra.rpki-client.org