$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa File: 8672C378CCCB11EAAAE49011C4F9AE02.roa (raw, json) Hash identifier: pAeNijiYULFjzi5jYnKqqIcAfyApYD3cCW31vCnjAgw= Subject key identifier: 9F:02:48:3E:18:19:DD:00:9A:E0:CB:D9:65:8D:20:EB:C8:BD:49:B3 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 276E Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:22 +0000 ROA not before: Tue 30 Jul 2024 16:04:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 29802 IP address blocks: 2402:9e80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10094 (0x276e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D Validity Not Before: Jul 30 16:04:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90f05-bec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c6:22:4d:80:a0:86:c7:36:50:08:ad:04:78: 18:6c:8a:55:8b:3c:9a:3c:37:0c:ae:ac:ab:8b:a5: c2:27:7d:5a:77:08:db:b6:0a:e6:bb:f9:40:ba:aa: f5:9a:b8:d6:e4:89:52:1d:eb:09:52:72:41:a2:65: 95:7a:4f:68:4e:19:e0:67:0a:0c:91:c3:a1:50:fc: a6:df:62:da:17:84:14:60:b1:c3:87:c9:a0:5f:03: e7:91:b3:e1:13:e1:7c:89:52:21:c8:fb:05:13:78: 88:c4:ae:37:f2:71:84:d3:82:16:87:92:b7:df:d0: d3:03:99:5e:a2:75:ea:1a:c0:b6:90:df:b0:f0:ec: c1:09:37:da:f2:2d:12:d1:2d:81:20:c5:d9:2e:03: 91:02:f7:e8:51:d5:a9:34:87:81:13:e2:45:da:e1: 79:bd:69:f7:63:3d:31:14:5b:6e:f6:4c:05:45:f8: 98:6f:52:39:34:fb:2e:0d:f1:e0:42:69:e3:9d:5d: c9:85:82:35:f3:e7:47:23:19:34:c5:7b:05:2c:11: ea:7e:a2:37:5e:34:c3:e6:64:f6:14:ec:84:29:28: 5f:1b:e5:a2:98:7e:c2:4b:3f:7c:4b:d3:42:a0:a7: 5d:c8:89:bd:7e:c7:ad:5c:ef:09:b4:a3:b3:68:5e: 2d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:02:48:3E:18:19:DD:00:9A:E0:CB:D9:65:8D:20:EB:C8:BD:49:B3 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:8::/48 Signature Algorithm: sha256WithRSAEncryption 24:5e:27:16:ca:be:89:b4:d3:42:64:87:99:ff:af:72:0b:7c: 38:06:16:4b:46:e6:6d:73:1a:dd:f9:11:3d:de:eb:6c:9f:63: 2f:a4:b5:e8:2d:ad:ed:5e:9e:64:67:3b:99:06:cd:a2:a9:35: 42:28:dc:8d:8c:db:15:8d:b2:56:de:98:50:f9:e6:61:2c:8a: 84:47:01:58:4d:ea:9c:0b:f9:7b:d1:4a:be:60:ce:37:83:30: 30:da:73:66:70:ea:76:f3:16:52:19:53:60:52:ae:b3:07:25: b9:a1:fb:4e:d7:91:fa:9e:fe:82:ad:b1:0d:f3:1f:70:e1:8f: f1:b9:31:92:3c:ac:35:2a:d7:7e:64:34:33:4c:d1:19:31:38: db:1e:b6:e9:0f:45:d3:3f:69:c4:ac:ce:b0:a8:49:43:75:a2: b8:ce:0a:fd:bf:90:4c:7b:8c:f8:08:bc:ec:82:ed:1d:82:7c: 8a:f1:4a:d3:d3:b6:63:bb:59:cf:60:0f:8e:2a:62:c5:7e:19: 0b:65:7f:59:d3:30:8f:b8:43:ad:77:94:55:21:51:37:6b:80: 3a:cc:ec:33:ab:70:8d:33:71:c1:0b:fe:5e:cf:d2:0f:55:9b: 93:2e:be:46:47:f5:b7:25:1b:94:4f:15:6e:c6:36:6d:81:19: 20:31:35:3a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGYwNS1iZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8YiTYCghsc2UAitBHgYbIpVizyaPDcMrqyri6XCJ31adwjbtgrmu/lAuqr1 mrjW5IlSHesJUnJBomWVek9oThngZwoMkcOhUPym32LaF4QUYLHDh8mgXwPnkbPh E+F8iVIhyPsFE3iIxK438nGE04IWh5K339DTA5leonXqGsC2kN+w8OzBCTfa8i0S 0S2BIMXZLgORAvfoUdWpNIeBE+JF2uF5vWn3Yz0xFFtu9kwFRfiYb1I5NPsuDfHg QmnjnV3JhYI18+dHIxk0xXsFLBHqfqI3XjTD5mT2FOyEKShfG+WimH7CSz98S9NC oKddyIm9fsetXO8JtKOzaF4tewIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ8CSD4Y Gd0AmuDL2WWNIOvIvUmzMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvODY3MkMzNzhD Q0NCMTFFQUFBRTQ5MDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAAgwDQYJKoZIhvcNAQELBQADggEBACReJxbKvom0 00Jkh5n/r3ILfDgGFktG5m1zGt35ET3e62yfYy+ktegtre1enmRnO5kGzaKpNUIo 3I2M2xWNslbemFD55mEsioRHAVhN6pwL+XvRSr5gzjeDMDDac2Zw6nbzFlIZU2BS rrMHJbmh+07Xkfqe/oKtsQ3zH3Dhj/G5MZI8rDUq135kNDNM0RkxONsetukPRdM/ acSszrCoSUN1orjOCv2/kEx7jPgIvOyC7R2CfIrxStPTtmO7Wc9gD44qYsV+GQtl f1nTMI+4Q613lFUhUTdrgDrM7DOrcI0zccEL/l7P0g9Vm5MuvkZH9bclG5RPFW7G Nm2BGSAxNTo= -----END CERTIFICATE-----Generated at Sun Feb 16 15:39:42 2025 by rpki-client