$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa File: 4FB7C576376811E9847C6223C4F9AE02.roa (raw, json) Hash identifier: ZCOrT5ezhAw5uA4But/7LBxSZmuk6SHo4IcQd8SCZEs= Subject key identifier: 7C:6E:4B:6E:D1:7A:2C:C3:5C:E7:F2:C8:2E:BF:26:84:B5:EF:2C:17 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2755 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:58 +0000 ROA not before: Tue 30 Jul 2024 16:03:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138631 IP address blocks: 2402:9e80:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10069 (0x2755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90eee-3f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fc:33:a9:64:a1:42:63:7c:ec:2b:81:c6:22: e3:4f:08:72:cb:53:4d:c3:8e:1f:55:93:51:eb:3c: 6d:a1:0c:a1:a8:ab:0e:20:7c:09:94:ec:66:43:ef: c5:8f:c9:51:5a:eb:09:a3:11:2d:11:07:d3:8a:48: a0:63:6c:2d:95:b6:e1:3a:42:32:38:0b:b3:3a:e0: cc:ce:f9:16:2a:b0:ed:5a:66:19:03:fb:59:a4:d0: bd:73:58:52:fb:69:97:bc:49:c2:ce:14:cd:70:6b: 4e:be:a7:a3:a7:cd:c1:9e:cd:f9:3e:70:24:48:5d: 86:68:23:34:3e:aa:4a:d2:83:dc:13:8e:b1:a9:12: 9e:f6:f3:c6:07:33:be:09:b6:32:5d:80:16:4e:59: f6:31:3e:4c:8e:c1:17:26:41:4e:3c:35:b9:60:d6: ba:ec:cc:47:81:e7:74:00:77:db:09:8f:19:5c:79: 91:94:87:01:e6:65:26:0d:25:de:f1:ec:b1:1f:46: b6:95:c2:f9:3f:a1:3f:3e:7d:05:09:9e:33:1c:ed: 40:1a:81:e8:a6:03:22:e6:d3:c5:60:5b:8b:e7:1a: fb:af:d3:2f:c5:54:2c:52:d0:66:d6:49:b1:b7:17: d1:69:d7:15:d7:3e:e5:39:a2:f0:99:b6:42:4f:d9: 6e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6E:4B:6E:D1:7A:2C:C3:5C:E7:F2:C8:2E:BF:26:84:B5:EF:2C:17 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:43::/48 Signature Algorithm: sha256WithRSAEncryption 48:4c:84:f6:8d:c5:b0:15:0e:08:27:32:17:b2:08:1e:08:9d: af:32:39:e6:c1:89:1e:6b:86:62:f9:d8:2a:8b:f6:c2:05:b7: 51:ef:76:5e:bc:a5:30:da:43:6c:8b:70:3d:3f:c6:70:c5:24: 0e:50:d1:21:82:7a:a0:cb:d3:56:06:66:60:56:16:c7:d5:98: ad:3b:91:a9:50:39:f6:ec:94:63:87:70:81:b1:d9:22:6f:f0: 80:57:74:08:07:6f:dd:16:d9:04:92:4a:d6:5b:52:3b:8a:76: ca:54:95:93:92:62:68:6f:be:cc:49:b6:f3:29:df:61:e1:df: c8:05:64:01:a8:b3:d0:8b:61:d5:90:a8:04:77:8c:21:b2:55: 1e:7f:fd:ec:ff:25:80:d2:d4:e8:d6:6c:c1:8f:dc:1b:5c:b4: 88:f2:39:fe:3e:83:70:14:17:b5:9c:09:9d:53:77:57:21:3c: df:b1:78:3c:52:da:8f:32:50:65:68:86:5a:91:71:bf:82:1c: cf:cc:7f:e3:de:7d:f5:15:77:71:85:91:8b:9b:45:28:11:1e: 1f:b2:d0:4f:99:34:17:eb:36:5d:90:5a:8c:97:d0:1a:54:dc: 67:50:9b:c4:f0:7a:03:e6:a8:bb:b3:b4:1c:b2:89:ec:6b:70: 97:6b:02:71 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlZS0zZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPwzqWShQmN87CuBxiLjTwhyy1NNw44fVZNR6zxtoQyhqKsOIHwJlOxmQ+/F j8lRWusJoxEtEQfTikigY2wtlbbhOkIyOAuzOuDMzvkWKrDtWmYZA/tZpNC9c1hS +2mXvEnCzhTNcGtOvqejp83Bns35PnAkSF2GaCM0PqpK0oPcE46xqRKe9vPGBzO+ CbYyXYAWTln2MT5MjsEXJkFOPDW5YNa67MxHged0AHfbCY8ZXHmRlIcB5mUmDSXe 8eyxH0a2lcL5P6E/Pn0FCZ4zHO1AGoHopgMi5tPFYFuL5xr7r9MvxVQsUtBm1kmx txfRadcV1z7lOaLwmbZCT9lu7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHxuS27R eizDXOfyyC6/JoS17ywXMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNEZCN0M1NzYz NzY4MTFFOTg0N0M2MjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAEMwDQYJKoZIhvcNAQELBQADggEBAEhMhPaNxbAV DggnMheyCB4Ina8yOebBiR5rhmL52CqL9sIFt1Hvdl68pTDaQ2yLcD0/xnDFJA5Q 0SGCeqDL01YGZmBWFsfVmK07kalQOfbslGOHcIGx2SJv8IBXdAgHb90W2QSSStZb UjuKdspUlZOSYmhvvsxJtvMp32Hh38gFZAGos9CLYdWQqAR3jCGyVR5//ez/JYDS 1OjWbMGP3BtctIjyOf4+g3AUF7WcCZ1Td1chPN+xeDxS2o8yUGVohlqRcb+CHM/M f+PeffUVd3GFkYubRSgRHh+y0E+ZNBfrNl2QWoyX0BpU3GdQm8TwegPmqLuztByy iexrcJdrAnE= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org