$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa File: 99E3B47E230D11EBACAFB634C4F9AE02.roa (raw, json) Hash identifier: mGEgqKyInP3xTTdwTZvDYcI96TtdW90NHjn0xmimCTE= Subject key identifier: 02:27:19:1E:12:2C:63:86:74:CE:77:F4:DB:3A:15:B2:E0:62:84:FF Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 275B Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:05 +0000 ROA not before: Tue 30 Jul 2024 16:04:05 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139677 IP address blocks: 2402:9e80:58::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10075 (0x275b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:05 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ef5-9eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:68:11:56:65:ce:3f:c0:67:c0:3f:0d:59:0d: ba:12:48:b0:ad:46:6d:49:09:ef:42:ed:d0:dd:bf: 3b:04:5a:14:1c:36:93:da:4c:32:88:92:d5:27:c3: c2:28:b5:8a:15:a4:2a:e7:8a:a5:13:ba:68:9c:9a: bb:a8:76:11:d8:7a:b4:7e:da:d0:0a:91:29:bd:dc: c2:71:6b:41:3f:f8:f0:5f:ba:7d:c4:76:43:76:d3: eb:33:01:a8:71:90:0c:9d:a3:ed:10:39:80:13:66: 73:fe:2c:a4:09:01:26:d2:c8:95:d0:fa:08:5f:dc: 04:21:be:88:31:38:ea:5c:cd:67:cc:d0:88:32:c9: 7b:8a:55:65:84:3b:de:8b:72:3b:be:a5:af:4f:c2: 96:cf:65:1f:c6:3b:1c:cf:99:25:9f:26:54:06:3c: d6:34:71:f4:30:ae:f0:d9:82:16:10:b3:d5:35:9d: d7:fb:74:4f:f2:af:88:3b:c7:2c:f4:bd:eb:ba:fb: 1d:68:58:0f:e2:dd:b5:af:ac:9b:cc:1a:42:12:13: 48:d9:b7:34:11:2d:1b:0e:99:ed:7e:f7:1e:81:06: e5:d2:c0:ac:7e:2e:8f:bd:32:c8:2f:46:a1:07:1a: 33:ad:5d:8b:21:60:4e:08:46:b5:46:8e:db:03:b7: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:27:19:1E:12:2C:63:86:74:CE:77:F4:DB:3A:15:B2:E0:62:84:FF X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/99E3B47E230D11EBACAFB634C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:58::/48 Signature Algorithm: sha256WithRSAEncryption 1c:11:e9:83:34:d2:6e:db:f8:f1:b5:af:d1:a7:5d:33:83:d5: 20:9a:a8:a4:e4:4f:27:63:33:63:5f:c0:ce:b6:09:1e:42:f3: 2a:1b:0c:e4:4f:7b:5a:3f:10:ef:56:29:c8:27:f2:af:5c:2c: 70:99:1a:c0:fa:14:23:99:48:08:3b:47:41:75:15:4d:ef:1b: cf:72:94:89:0d:76:49:d8:64:8c:4e:23:5d:f6:57:41:bd:a4: 9c:33:df:36:18:32:0d:46:e5:3f:46:88:f0:d6:e7:f7:10:bd: 05:45:88:31:ac:66:d0:03:c7:0b:e7:99:0e:23:58:0a:01:88: ce:56:7c:24:ed:dd:ac:35:0d:7c:32:7f:92:25:dc:8c:8b:8d: 95:1a:59:62:0c:e3:fc:4d:13:8c:eb:e0:c5:db:0e:50:b1:b1: 02:f0:e9:ce:bb:48:0b:6e:69:c1:9d:ed:cc:d8:0d:6d:a1:0a: d6:0e:8e:d0:b2:3e:48:0f:13:94:a5:3a:71:cc:0b:b6:fb:95: 65:25:54:15:bf:b3:a5:45:81:cb:8b:c9:aa:67:90:89:1f:c9: 42:41:b4:2f:a6:63:93:26:0b:f0:f9:fb:b5:4a:46:cf:1f:25: c8:77:7d:e2:3f:09:8c:7c:e9:0f:b0:30:a6:38:d2:95:79:8b: ca:45:46:01 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDA1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmNS05ZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WgRVmXOP8BnwD8NWQ26EkiwrUZtSQnvQu3Q3b87BFoUHDaT2kwyiJLVJ8PC KLWKFaQq54qlE7ponJq7qHYR2Hq0ftrQCpEpvdzCcWtBP/jwX7p9xHZDdtPrMwGo cZAMnaPtEDmAE2Zz/iykCQEm0siV0PoIX9wEIb6IMTjqXM1nzNCIMsl7ilVlhDve i3I7vqWvT8KWz2Ufxjscz5klnyZUBjzWNHH0MK7w2YIWELPVNZ3X+3RP8q+IO8cs 9L3ruvsdaFgP4t21r6ybzBpCEhNI2bc0ES0bDpntfvcegQbl0sCsfi6PvTLIL0ah BxozrV2LIWBOCEa1Ro7bA7eH9wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAInGR4S LGOGdM539Ns6FbLgYoT/MB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvOTlFM0I0N0Uy MzBEMTFFQkFDQUZCNjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAFgwDQYJKoZIhvcNAQELBQADggEBABwR6YM00m7b +PG1r9GnXTOD1SCaqKTkTydjM2NfwM62CR5C8yobDORPe1o/EO9WKcgn8q9cLHCZ GsD6FCOZSAg7R0F1FU3vG89ylIkNdknYZIxOI132V0G9pJwz3zYYMg1G5T9GiPDW 5/cQvQVFiDGsZtADxwvnmQ4jWAoBiM5WfCTt3aw1DXwyf5Il3IyLjZUaWWIM4/xN E4zr4MXbDlCxsQLw6c67SAtuacGd7czYDW2hCtYOjtCyPkgPE5SlOnHMC7b7lWUl VBW/s6VFgcuLyapnkIkfyUJBtC+mY5MmC/D5+7VKRs8fJch3feI/CYx86Q+wMKY4 0pV5i8pFRgE= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org