$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa File: 50527DFCD27811EBB9B4BB66C4F9AE02.roa (raw, json) Hash identifier: +sgWUxPgZYqdHfuSJA/5OOyi2/G/J5JJMKk1Q2ZipDA= Subject key identifier: C5:A1:34:B8:EF:47:7C:86:08:99:56:5E:60:CF:09:7B:96:41:8D:0C Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2762 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:12 +0000 ROA not before: Tue 30 Jul 2024 16:04:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142540 IP address blocks: 2402:9e80:71::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10082 (0x2762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90efb-840c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:21:40:2f:fa:a1:31:68:ea:69:46:05:bf: e6:6e:35:54:20:02:45:d3:88:08:d9:52:19:f5:41: 1f:0e:50:4d:95:44:73:77:33:b8:21:34:6b:32:46: 34:5b:ad:2f:a1:1b:a1:bb:41:18:c9:b5:2d:ff:36: 30:c7:e5:b2:07:26:43:44:93:b6:68:17:8b:b0:ea: 3f:6c:f8:5c:e2:10:56:3d:02:74:74:a0:29:a2:71: 30:a9:3d:bc:8a:cd:3c:8f:51:2b:06:7c:24:84:35: 9c:e1:95:cf:1f:39:a0:15:d5:da:e4:51:b6:fc:36: 09:44:28:b9:dc:bc:eb:50:2e:3a:26:ba:6d:02:11: c8:c9:67:2e:ec:7f:0a:c4:2a:86:d9:8a:61:e9:4b: d4:fc:cd:46:b7:c3:62:ef:f5:63:6f:ed:45:8f:41: ed:7e:59:fd:2e:7c:0c:56:c5:5f:35:22:74:4f:36: 3d:4b:c3:13:5d:81:5b:6a:f8:0d:5b:e3:a7:62:ff: bb:be:f8:e8:bc:9d:5f:98:30:82:b2:49:1a:3d:56: 97:6c:89:c2:62:ad:9f:cf:36:ba:a0:37:26:51:df: e2:8f:da:ca:e0:04:51:4f:7e:cf:fa:85:a8:89:b7: 6c:2a:50:0f:2c:cd:e3:b8:8c:f8:a5:58:3a:fd:ce: 4e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A1:34:B8:EF:47:7C:86:08:99:56:5E:60:CF:09:7B:96:41:8D:0C X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:71::/48 Signature Algorithm: sha256WithRSAEncryption 2e:3c:98:bf:4a:6c:0f:53:7e:85:75:75:c1:f9:79:cb:e8:da: 8e:d5:8a:c6:5b:c9:0c:b0:8f:ab:a8:02:c1:fc:be:44:a9:1e: 77:43:aa:29:fe:15:d1:48:f7:90:5b:46:31:ee:1b:a5:21:f8: b0:f1:56:15:b7:5b:ba:ed:dd:65:37:da:52:79:74:e9:bd:d8: ec:68:5e:a7:69:c9:bb:1c:d9:48:51:3e:37:af:d2:6e:14:11: 80:83:58:03:10:10:c5:eb:d5:d5:5d:9e:5f:fb:df:a2:24:20: c8:a3:22:76:35:26:50:7a:8c:a7:05:20:d4:e9:64:ab:b1:c9: a3:18:5e:ff:4d:31:49:7d:18:62:9c:50:5e:ca:9e:52:2e:e7: 00:09:a9:3f:05:ed:76:b5:f5:6f:e6:65:af:87:71:8a:e7:43: 05:d4:37:24:d6:cc:43:26:d2:37:43:04:73:a3:c6:e4:4f:40: cc:e0:0d:06:82:32:a3:ba:8a:e2:fd:9b:ec:df:d4:84:2b:cf: 9c:8e:9c:69:49:14:dc:7f:6e:e4:9d:57:05:a9:d0:10:30:1c: 67:51:00:cb:20:06:cb:8f:bf:41:1c:75:91:32:87:1b:eb:1b: 35:8c:72:d1:fa:87:b3:f8:b0:e9:04:a5:c0:c7:c2:6a:47:ae: 9f:27:50:ea -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmYi04NDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfohQC/6oTFo6mlGBb/mbjVUIAJF04gI2VIZ9UEfDlBNlURzdzO4ITRrMkY0 W60voRuhu0EYybUt/zYwx+WyByZDRJO2aBeLsOo/bPhc4hBWPQJ0dKAponEwqT28 is08j1ErBnwkhDWc4ZXPHzmgFdXa5FG2/DYJRCi53LzrUC46JrptAhHIyWcu7H8K xCqG2Yph6UvU/M1Gt8Ni7/Vjb+1Fj0Htfln9LnwMVsVfNSJ0TzY9S8MTXYFbavgN W+OnYv+7vvjovJ1fmDCCskkaPVaXbInCYq2fzza6oDcmUd/ij9rK4ARRT37P+oWo ibdsKlAPLM3juIz4pVg6/c5OCQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMWhNLjv R3yGCJlWXmDPCXuWQY0MMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNTA1MjdERkNE Mjc4MTFFQkI5QjRCQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAHEwDQYJKoZIhvcNAQELBQADggEBAC48mL9KbA9T foV1dcH5ecvo2o7VisZbyQywj6uoAsH8vkSpHndDqin+FdFI95BbRjHuG6Uh+LDx VhW3W7rt3WU32lJ5dOm92OxoXqdpybsc2UhRPjev0m4UEYCDWAMQEMXr1dVdnl/7 36IkIMijInY1JlB6jKcFINTpZKuxyaMYXv9NMUl9GGKcUF7KnlIu5wAJqT8F7Xa1 9W/mZa+HcYrnQwXUNyTWzEMm0jdDBHOjxuRPQMzgDQaCMqO6iuL9m+zf1IQrz5yO nGlJFNx/buSdVwWp0BAwHGdRAMsgBsuPv0EcdZEyhxvrGzWMctH6h7P4sOkEpcDH wmpHrp8nUOo= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:13 2024 by rpki-client on console-ams.rpki-client.org