$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/6BF06690D18111EE9F4F1C6BC4F9AE02.roa File: 6BF06690D18111EE9F4F1C6BC4F9AE02.roa (raw, json) Hash identifier: h4/OAT+qJGylddnfn76cU70rc+hVAMJXrP4UtwDGK6I= Subject key identifier: FA:BD:54:03:B8:A3:C2:F8:61:CF:A1:69:0C:BF:45:05:1C:61:97:13 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 26D4 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/6BF06690D18111EE9F4F1C6BC4F9AE02.roa Signing time: Thu 22 Feb 2024 12:53:49 +0000 ROA not before: Thu 22 Feb 2024 12:53:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136557 IP address blocks: 2402:9e80:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9940 (0x26d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Feb 22 12:53:49 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65d743dc-a9e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:23:c2:8a:a1:2c:68:55:43:40:a5:60:7b:de: 78:ef:0b:9e:41:d1:ca:5a:32:22:3b:8e:42:b7:65: 65:91:89:1c:be:21:69:ac:52:47:6d:cb:aa:30:ef: 38:b9:3c:de:8c:af:8a:f3:18:6c:69:83:cb:a9:82: 81:d4:42:18:cf:8e:11:1d:21:21:ab:3e:2b:89:59: 1a:59:a7:89:f5:15:50:96:6a:82:79:b5:56:54:22: 01:3a:98:8c:25:93:75:55:f9:c3:21:b1:85:88:7c: 32:47:cd:33:48:f5:2e:b0:e0:d1:39:a5:26:ae:9a: 5b:fa:76:1c:61:1f:8b:26:7f:aa:e6:42:16:bf:22: db:6c:c2:de:ea:92:01:78:20:c9:f4:fa:d4:3a:bf: 05:9f:5e:3d:68:86:19:95:58:e1:59:b2:50:ff:69: c7:77:ae:cf:c4:cc:89:66:06:0a:54:3a:ab:e8:c4: 1d:c1:ee:8d:15:bc:d1:b5:1f:a9:a0:53:30:95:2b: cc:07:6e:99:8c:b1:df:e4:fd:02:03:a5:3e:91:eb: ad:4d:79:f3:5c:9a:67:5e:3d:6c:30:9a:86:9e:6d: 77:0b:ed:5d:32:58:7d:37:d2:16:52:fb:38:30:9d: 69:e6:99:1a:47:8b:e6:a8:74:03:b7:95:d2:60:bb: 90:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BD:54:03:B8:A3:C2:F8:61:CF:A1:69:0C:BF:45:05:1C:61:97:13 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/6BF06690D18111EE9F4F1C6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:6::/48 Signature Algorithm: sha256WithRSAEncryption cb:63:90:45:33:a5:a8:27:28:ac:43:44:a2:39:27:0f:df:d4: ef:17:12:67:a3:8c:81:47:4f:3d:1b:29:bc:ac:88:91:f6:8a: ef:4d:e5:11:89:83:72:6c:50:01:79:05:59:a9:85:93:2c:a8: 34:56:6b:17:49:37:78:8f:35:da:dd:a8:d9:4f:fa:53:5f:e8: 57:9a:e3:e5:ff:0f:fd:b3:03:6e:b8:32:10:c3:d2:23:56:80: a2:f5:f0:cb:4b:70:de:e2:08:8c:9d:77:f0:4b:49:d9:e7:61: 49:48:33:32:43:8e:47:27:32:dc:05:b6:53:fd:a7:ee:98:61: a3:de:f4:d1:c8:47:a8:c2:7b:45:92:79:39:f8:a5:1b:ee:1a: 5b:b3:7b:8d:eb:80:60:c8:b9:5c:2b:d8:5c:e5:9f:6b:86:5f: d6:ef:96:d2:14:08:be:45:93:36:2a:c3:ab:bb:23:71:7d:9a: 63:66:6c:c3:df:01:fa:1c:7b:f4:ed:50:fb:20:f3:e1:14:a6: 86:2f:57:75:0b:94:58:9c:11:8a:8d:33:3c:8b:2d:7b:b4:ad: 51:e2:31:ca:39:a9:95:b7:04:32:fe:ea:98:ab:f6:8f:de:e4: ec:a7:d6:09:49:7e:8b:d5:14:9a:5f:24:04:00:cf:2b:b2:6f: 82:ae:80:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwMjIyMTI1MzQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3NDNkYy1hOWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCPCiqEsaFVDQKVge9547wueQdHKWjIiO45Ct2VlkYkcviFprFJHbcuqMO84 uTzejK+K8xhsaYPLqYKB1EIYz44RHSEhqz4riVkaWaeJ9RVQlmqCebVWVCIBOpiM JZN1VfnDIbGFiHwyR80zSPUusODROaUmrppb+nYcYR+LJn+q5kIWvyLbbMLe6pIB eCDJ9PrUOr8Fn149aIYZlVjhWbJQ/2nHd67PxMyJZgYKVDqr6MQdwe6NFbzRtR+p oFMwlSvMB26ZjLHf5P0CA6U+keutTXnzXJpnXj1sMJqGnm13C+1dMlh9N9IWUvs4 MJ1p5pkaR4vmqHQDt5XSYLuQlwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPq9VAO4 o8L4Yc+haQy/RQUcYZcTMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNkJGMDY2OTBE MTgxMTFFRTlGNEYxQzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAAYwDQYJKoZIhvcNAQELBQADggEBAMtjkEUzpagn KKxDRKI5Jw/f1O8XEmejjIFHTz0bKbysiJH2iu9N5RGJg3JsUAF5BVmphZMsqDRW axdJN3iPNdrdqNlP+lNf6Fea4+X/D/2zA264MhDD0iNWgKL18MtLcN7iCIydd/BL SdnnYUlIMzJDjkcnMtwFtlP9p+6YYaPe9NHIR6jCe0WSeTn4pRvuGluze43rgGDI uVwr2Fzln2uGX9bvltIUCL5FkzYqw6u7I3F9mmNmbMPfAfoce/TtUPsg8+EUpoYv V3ULlFicEYqNMzyLLXu0rVHiMco5qZW3BDL+6pir9o/e5Oyn1glJfovVFJpfJAQA zyuyb4KugIU= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org