$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa File: 50527DFCD27811EBB9B4BB66C4F9AE02.roa (raw, json) Hash identifier: QVezbCdzM6SE9QxfNOIImHSnrbfD4zoKYFkFUOwxOhs= Subject key identifier: 7E:8E:ED:B4:FB:CC:98:47:6E:38:A4:8E:2E:1C:75:93:B4:BF:17:6B Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 263C Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:09 +0000 ROA not before: Sun 06 Aug 2023 16:13:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142540 IP address blocks: 2402:9e80:71::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9788 (0x263c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc695-b267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4d:2c:dd:77:8d:37:c7:c9:e3:3a:0e:4c:ff: 80:93:79:1f:e8:27:fb:27:6c:db:c9:da:e9:b7:86: c2:19:de:51:ed:71:19:c2:f9:c3:89:af:20:02:ab: 10:01:4a:bf:7c:97:17:cc:32:7a:e9:dc:ec:01:3b: 2a:ca:55:54:21:04:c7:8f:52:49:46:a8:cf:a6:ad: 61:3b:2d:3e:f7:2b:0e:48:52:c5:c9:72:58:67:76: be:af:bd:19:b8:1d:b0:b0:15:ba:26:53:92:1d:35: 09:b8:fd:9d:58:c8:9a:1c:60:9f:ee:c7:15:73:0c: fe:46:5a:ce:a9:e8:37:08:80:8b:b9:9a:df:62:7b: 15:1e:4c:1c:58:e4:5c:3a:0a:d6:bc:d4:1e:ac:e1: d7:35:6d:35:51:6d:2a:50:e3:4d:8c:eb:12:35:fc: 8c:d0:9e:3c:46:f6:b6:76:19:3c:b1:84:51:91:11: 63:fa:bb:38:b3:19:4b:3b:aa:f7:92:b9:67:87:fc: a9:9c:cc:36:69:15:c3:b4:66:d0:c6:7d:d8:44:11: 52:17:88:88:42:54:fa:1a:1f:76:8b:bb:c4:d7:d5: e5:34:80:ff:ea:56:1f:3c:52:ba:97:fd:b3:4a:f9: 1c:fe:ae:39:52:cc:ec:29:f3:25:5d:4c:a3:a6:c1: eb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8E:ED:B4:FB:CC:98:47:6E:38:A4:8E:2E:1C:75:93:B4:BF:17:6B X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/50527DFCD27811EBB9B4BB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:71::/48 Signature Algorithm: sha256WithRSAEncryption 31:f6:24:73:ab:38:1c:98:99:d6:17:5b:17:f5:f9:26:d6:7a: 90:38:59:be:99:af:a8:97:f5:db:52:d0:47:01:0e:87:ec:4a: b4:b6:1a:f3:ad:13:86:ac:9c:e6:59:6a:3c:cd:76:ce:56:9e: a7:be:98:eb:25:12:8f:ce:cb:bf:0f:ac:7a:0c:30:cf:f8:3e: 8a:aa:ca:71:70:be:33:c5:3a:d1:97:73:c9:79:54:2f:15:79: aa:1f:d1:1d:d8:2a:96:9d:8a:7d:46:47:03:5b:db:ab:09:51: ab:b4:dd:79:f8:6c:d6:92:69:2a:95:b3:8d:ba:43:8e:d3:15: 1b:c8:c0:8d:fe:4b:3f:e2:35:57:20:58:6c:88:45:2d:f4:14: bf:00:29:a1:d9:f6:8a:63:a5:70:98:c7:01:84:fc:56:aa:a0: 80:2a:d3:4a:3d:90:cf:ea:b4:eb:08:30:f0:a2:8e:a6:97:c0: 7f:ed:a8:dd:d1:c0:af:35:26:3e:44:84:02:97:58:80:6a:b2: 5e:f9:1c:b2:96:0e:77:d3:7c:58:1c:1f:81:c2:7b:14:b6:84: 46:f5:c0:71:46:a8:cc:3c:43:42:c6:95:37:0e:0d:bd:27:a9: 29:e3:42:30:f3:4d:0d:11:d3:ea:57:43:18:0f:55:ff:18:da: 93:37:f8:69 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY5NS1iMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy00s3XeNN8fJ4zoOTP+Ak3kf6Cf7J2zbydrpt4bCGd5R7XEZwvnDia8gAqsQ AUq/fJcXzDJ66dzsATsqylVUIQTHj1JJRqjPpq1hOy0+9ysOSFLFyXJYZ3a+r70Z uB2wsBW6JlOSHTUJuP2dWMiaHGCf7scVcwz+RlrOqeg3CICLuZrfYnsVHkwcWORc OgrWvNQerOHXNW01UW0qUONNjOsSNfyM0J48Rva2dhk8sYRRkRFj+rs4sxlLO6r3 krlnh/ypnMw2aRXDtGbQxn3YRBFSF4iIQlT6Gh92i7vE19XlNID/6lYfPFK6l/2z Svkc/q45UszsKfMlXUyjpsHrbQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFH6O7bT7 zJhHbjikji4cdZO0vxdrMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNTA1MjdERkNE Mjc4MTFFQkI5QjRCQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAHEwDQYJKoZIhvcNAQELBQADggEBADH2JHOrOByY mdYXWxf1+SbWepA4Wb6Zr6iX9dtS0EcBDofsSrS2GvOtE4asnOZZajzNds5Wnqe+ mOslEo/Oy78PrHoMMM/4PoqqynFwvjPFOtGXc8l5VC8Veaof0R3YKpadin1GRwNb 26sJUau03Xn4bNaSaSqVs426Q47TFRvIwI3+Sz/iNVcgWGyIRS30FL8AKaHZ9opj pXCYxwGE/FaqoIAq00o9kM/qtOsIMPCijqaXwH/tqN3RwK81Jj5EhAKXWIBqsl75 HLKWDnfTfFgcH4HCexS2hEb1wHFGqMw8Q0LGlTcODb0nqSnjQjDzTQ0R0+pXQxgP Vf8Y2pM3+Gk= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org