$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa File: 8672C378CCCB11EAAAE49011C4F9AE02.roa (raw, json) Hash identifier: GfGKAdxNud+tUACjn3g5T9nVRLbkaqoQER5BfZEX8Y0= Subject key identifier: D5:64:9E:25:35:0F:DF:D0:0A:C1:3B:C8:09:05:E4:91:1B:72:F9:23 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2646 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:18 +0000 ROA not before: Sun 06 Aug 2023 16:13:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 29802 IP address blocks: 2402:9e80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9798 (0x2646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc69e-4db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b5:9a:a4:b0:d9:81:95:47:a0:aa:2a:5e:5c: a8:25:94:ec:5f:dd:c9:2e:03:f1:7d:02:c1:ed:f7: 15:bf:56:2b:31:f5:3f:36:f8:ba:28:2e:26:47:7c: cf:68:7e:cb:8a:c4:ff:64:48:d6:e8:54:b0:a1:21: 1c:87:cd:16:44:f9:d6:6c:f0:97:6f:cc:f2:39:08: c8:c2:f9:f0:a3:85:93:d7:8d:83:c8:22:63:d3:85: 20:2a:14:c8:93:33:60:19:9c:9b:7f:fd:1f:12:1f: 13:74:f3:af:46:b7:56:af:31:31:ba:8c:c1:d5:d0: c0:92:d7:ab:e6:3c:fd:7f:77:c2:3b:78:4d:a8:fe: 6c:9d:70:cf:25:c7:68:7b:6b:ca:f5:e6:70:4a:6b: 86:87:c3:24:46:e5:e8:11:6f:a0:a0:89:45:e0:81: fe:ab:a5:d9:49:f7:74:7c:c8:95:9e:5b:57:ae:d3: 60:b6:50:3e:48:35:ab:ba:88:46:db:b0:40:a8:ef: 51:86:b0:55:5a:72:14:6b:fc:ea:df:29:46:ea:53: a9:d0:71:c7:3b:be:d1:0e:3f:83:93:a4:80:8e:b9: 64:fd:64:dd:f3:38:00:ce:e0:d7:6c:84:7f:c7:41: a8:c6:ed:62:64:6f:07:e7:6b:e3:8c:37:fe:ce:f2: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:64:9E:25:35:0F:DF:D0:0A:C1:3B:C8:09:05:E4:91:1B:72:F9:23 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/8672C378CCCB11EAAAE49011C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:8::/48 Signature Algorithm: sha256WithRSAEncryption 7f:1b:54:82:80:b4:5a:d2:47:1a:c4:df:e4:d1:37:1f:81:ed: 85:09:14:68:1e:e5:0f:a2:89:8a:8f:66:95:0b:70:f3:12:8f: 02:20:64:04:84:5f:88:0d:d7:bf:2b:2e:d2:f8:b3:5d:5a:34: e8:d1:3c:ba:23:b4:3a:0f:5c:8a:94:09:15:9c:50:a3:af:b2: 78:ec:dd:5a:91:31:cf:35:76:c6:75:6c:96:0b:b4:a8:61:d9: 52:0d:ac:2b:21:9c:f7:78:bd:48:9e:7d:04:9e:54:d3:ff:46: 9c:ba:b5:e6:d2:95:0b:62:e3:77:7f:66:68:0c:50:c5:9f:51: 16:16:f4:34:9a:8e:04:3e:20:8f:2a:4f:98:a6:c2:71:77:58: cf:df:95:a7:7c:93:eb:94:ea:2a:94:94:6e:6c:34:2b:7f:f8: c3:c4:33:8b:92:e9:50:16:fe:90:de:50:b6:a8:cf:a8:63:e7: fc:cf:90:76:2b:d3:21:3a:2a:7d:ca:1f:84:f5:fe:de:9b:e2: 34:a6:c0:f0:56:86:86:7f:6a:20:37:37:a7:6f:9e:1d:95:14: 3e:92:cc:ca:6c:44:36:27:f2:f1:b2:f1:5f:7d:b0:b2:fd:c4: a6:68:51:6b:31:9e:c1:ba:fe:00:24:b6:40:d8:9b:36:1e:5f: b1:d8:c0:1f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY5ZS00ZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrWapLDZgZVHoKoqXlyoJZTsX93JLgPxfQLB7fcVv1YrMfU/Nvi6KC4mR3zP aH7LisT/ZEjW6FSwoSEch80WRPnWbPCXb8zyOQjIwvnwo4WT142DyCJj04UgKhTI kzNgGZybf/0fEh8TdPOvRrdWrzExuozB1dDAkter5jz9f3fCO3hNqP5snXDPJcdo e2vK9eZwSmuGh8MkRuXoEW+goIlF4IH+q6XZSfd0fMiVnltXrtNgtlA+SDWruohG 27BAqO9RhrBVWnIUa/zq3ylG6lOp0HHHO77RDj+Dk6SAjrlk/WTd8zgAzuDXbIR/ x0Goxu1iZG8H52vjjDf+zvLQxwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNVkniU1 D9/QCsE7yAkF5JEbcvkjMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvODY3MkMzNzhD Q0NCMTFFQUFBRTQ5MDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAAgwDQYJKoZIhvcNAQELBQADggEBAH8bVIKAtFrS RxrE3+TRNx+B7YUJFGge5Q+iiYqPZpULcPMSjwIgZASEX4gN178rLtL4s11aNOjR PLojtDoPXIqUCRWcUKOvsnjs3VqRMc81dsZ1bJYLtKhh2VINrCshnPd4vUiefQSe VNP/Rpy6tebSlQti43d/ZmgMUMWfURYW9DSajgQ+II8qT5imwnF3WM/flad8k+uU 6iqUlG5sNCt/+MPEM4uS6VAW/pDeULaoz6hj5/zPkHYr0yE6Kn3KH4T1/t6b4jSm wPBWhoZ/aiA3N6dvnh2VFD6SzMpsRDYn8vGy8V99sLL9xKZoUWsxnsG6/gAktkDY mzYeX7HYwB8= -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org