$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa File: 99E3B47E230D11EBACAFB634C4F9AE02.roa (raw, json) Hash identifier: LP2p8BumLBYIO5+Yri43PDp4VbJIF6Xk1wtVXR0TnJg= Subject key identifier: 6D:66:BB:2C:BC:10:D3:1D:B1:D6:4A:7C:FA:3A:BC:6C:C2:C6:83:81 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2632 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:00 +0000 ROA not before: Sun 06 Aug 2023 16:13:00 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139677 IP address blocks: 2402:9e80:58::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9778 (0x2632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:00 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc68b-c530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:fb:56:e6:06:be:9a:0e:1f:0a:b7:6f:49: e9:e2:6c:8a:d0:49:a5:0f:43:11:4d:25:97:9c:5d: cd:8b:0a:03:a0:8b:3b:79:c7:37:78:4f:cc:f7:9c: 73:60:52:14:6c:50:a0:9b:6c:6a:63:ca:1a:84:cd: 16:b7:4c:3f:b9:b4:46:0a:5e:4a:f9:97:dc:62:36: 84:c0:03:ab:d2:c1:d3:43:5d:a8:d9:a1:74:32:03: f8:2e:97:56:fd:72:58:63:4a:70:c7:64:c0:a4:be: 4e:11:fc:33:bc:b2:98:e5:17:2a:8f:5b:06:15:1c: 40:1b:26:03:ee:48:1a:ec:03:3c:46:9e:65:a7:50: 10:e5:b9:fc:e0:16:40:d3:cd:ae:b4:7e:c3:13:bf: 2a:b1:86:78:a8:79:e8:22:42:cf:0b:41:95:f1:c4: 45:ee:23:87:39:2d:d8:5e:a5:4f:a0:c6:d2:48:21: 4c:dd:68:f9:d5:b6:1a:58:72:b8:af:6b:39:5b:93: 52:f5:a5:8d:6b:88:61:62:65:20:1c:e7:86:c9:58: ac:18:35:da:db:14:25:a5:0a:24:dc:4d:dd:c7:bf: 95:8e:93:b5:6b:c0:f8:0d:d8:6f:12:df:1e:62:15: f7:0f:d4:df:85:59:82:aa:98:7c:6e:57:4f:9e:53: 6f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:66:BB:2C:BC:10:D3:1D:B1:D6:4A:7C:FA:3A:BC:6C:C2:C6:83:81 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:58::/48 Signature Algorithm: sha256WithRSAEncryption 28:cb:8a:b3:0f:bd:46:9f:26:f7:c3:dc:55:07:26:55:34:80: f6:fd:c1:16:3e:11:d7:be:6d:bc:17:78:16:32:0d:26:e3:d0: f9:74:f5:1e:75:e4:14:50:d9:7e:3a:25:97:8e:6e:00:db:cd: 34:f3:77:5c:e3:2d:1c:1b:4d:8a:b7:98:36:b9:72:39:1b:3f: 9e:ef:aa:ab:8a:4f:39:17:8c:bf:42:12:e7:13:d6:08:7f:5a: 3c:66:f9:74:cf:1b:2c:7a:09:77:a5:4d:1f:9d:bf:29:d4:ef: 27:f9:a7:da:39:b8:30:3d:39:a3:e7:cc:ab:cf:93:53:25:9e: 6b:53:0a:36:72:e8:33:d4:2a:64:f9:cb:dd:5b:cf:c3:ee:86: cb:02:b2:9a:0a:b1:ab:e6:65:39:d4:7f:f9:0f:5c:cf:99:dc: 9c:5f:66:92:02:49:50:d0:c0:d5:d5:2e:39:61:4d:1f:d3:32: fc:c4:91:cb:93:1f:a3:df:b0:09:97:aa:e9:d9:b3:a8:40:4b: 96:54:12:66:94:4b:1a:5e:e8:af:de:88:42:68:dc:f2:90:3e: 8e:a4:49:31:b4:94:c2:b1:2f:95:66:bd:0f:3d:52:77:dc:ca: bb:d8:b2:0d:9b:b3:53:40:c3:96:60:1a:49:04:65:9c:be:c1: 2a:25:b2:89 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzAwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4Yi1jNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkb7VuYGvpoOHwq3b0np4myK0EmlD0MRTSWXnF3NiwoDoIs7ecc3eE/M95xz YFIUbFCgm2xqY8oahM0Wt0w/ubRGCl5K+ZfcYjaEwAOr0sHTQ12o2aF0MgP4LpdW /XJYY0pwx2TApL5OEfwzvLKY5Rcqj1sGFRxAGyYD7kga7AM8Rp5lp1AQ5bn84BZA 082utH7DE78qsYZ4qHnoIkLPC0GV8cRF7iOHOS3YXqVPoMbSSCFM3Wj51bYaWHK4 r2s5W5NS9aWNa4hhYmUgHOeGyVisGDXa2xQlpQok3E3dx7+VjpO1a8D4DdhvEt8e YhX3D9TfhVmCqph8bldPnlNvqQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFG1muyy8 ENMdsdZKfPo6vGzCxoOBMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvOTlFM0I0N0Uy MzBEMTFFQkFDQUZCNjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAFgwDQYJKoZIhvcNAQELBQADggEBACjLirMPvUaf JvfD3FUHJlU0gPb9wRY+Ede+bbwXeBYyDSbj0Pl09R515BRQ2X46JZeObgDbzTTz d1zjLRwbTYq3mDa5cjkbP57vqquKTzkXjL9CEucT1gh/Wjxm+XTPGyx6CXelTR+d vynU7yf5p9o5uDA9OaPnzKvPk1MlnmtTCjZy6DPUKmT5y91bz8PuhssCspoKsavm ZTnUf/kPXM+Z3JxfZpICSVDQwNXVLjlhTR/TMvzEkcuTH6PfsAmXqunZs6hAS5ZU EmaUSxpe6K/eiEJo3PKQPo6kSTG0lMKxL5VmvQ89UnfcyrvYsg2bs1NAw5ZgGkkE ZZy+wSolsok= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org