$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/A085C546F64511EAAF5AD93BC4F9AE02.roa File: A085C546F64511EAAF5AD93BC4F9AE02.roa (raw, json) Hash identifier: BXf5GujzbS02LR1rm/GFLIluNcgnrubsWH5+vN+D36o= Subject key identifier: F0:BD:4D:42:45:D8:0F:D2:4F:AA:91:AB:6E:06:CB:17:E8:F2:BE:65 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2626 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/A085C546F64511EAAF5AD93BC4F9AE02.roa Signing time: Sun 06 Aug 2023 16:12:49 +0000 ROA not before: Sun 06 Aug 2023 16:12:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138408 IP address blocks: 2402:9e80:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9766 (0x2626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:12:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc681-b416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:05:51:31:a4:61:0c:d4:0b:a4:91:3d:be:cc: 61:d7:74:33:a9:ee:44:6e:ee:4f:73:1b:3c:e4:70: 83:ed:f1:e3:82:d2:8a:d1:23:7a:a2:be:8d:a5:5b: 4c:55:f7:1b:bd:c4:b8:af:e7:fe:32:7a:8c:58:d2: 93:42:e2:7d:25:0e:f1:2b:16:db:cd:e6:51:dc:18: 6c:56:b3:cc:45:21:ea:6d:db:eb:ef:32:0d:72:99: 8b:62:6a:46:d9:a4:62:68:9b:1a:90:9a:4b:47:04: 0c:e6:0d:02:6e:6f:a4:47:6a:15:c5:8d:2b:fa:df: c5:58:fa:8e:0e:e1:1d:42:87:73:c1:1b:11:38:11: 0e:3b:bb:d5:95:38:18:b4:f7:7d:bb:82:0b:0b:ec: 89:33:08:8d:49:0f:fa:18:6b:b1:eb:46:92:69:a2: 36:b5:9b:41:bf:3d:83:11:d2:f9:e1:96:c9:e8:ea: a9:49:00:c0:fc:77:11:d3:a5:19:14:05:2e:6b:3e: 8f:5f:02:3c:b3:4b:fb:5a:5a:c9:10:84:36:b4:a0: aa:18:c0:bd:77:09:37:2f:d7:5a:b8:34:ee:07:82: c5:f1:42:3a:ae:07:dc:a7:f3:0a:5d:5c:f5:fe:00: ab:92:c8:5d:33:ab:76:b5:e2:ed:a7:a6:d8:d0:a6: db:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BD:4D:42:45:D8:0F:D2:4F:AA:91:AB:6E:06:CB:17:E8:F2:BE:65 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/A085C546F64511EAAF5AD93BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:12::/48 Signature Algorithm: sha256WithRSAEncryption a5:eb:f3:60:63:cd:f0:c0:8f:40:87:8b:f3:85:7e:e6:47:bb: ef:a1:18:46:06:57:b3:ba:7c:fd:db:d1:f4:6a:3e:7e:ae:58: b6:45:fe:52:d7:3a:d5:b0:4e:f9:6b:61:08:10:68:7a:1c:4d: a4:20:63:00:ed:74:de:3d:ef:51:f3:83:be:35:6f:5a:b4:6c: 41:ad:e7:eb:c0:f9:16:05:f8:7c:b6:33:5b:1b:df:d2:c7:d7: d8:ae:4a:3e:ad:f4:4e:63:f1:de:9b:62:88:2a:c5:ff:bd:43: 7e:1a:86:3c:62:d7:05:48:c1:a3:27:5a:ba:c8:06:e3:af:5c: af:2a:7c:85:5f:f9:77:6a:35:f9:2a:9d:5f:ce:32:92:2b:04: 46:bb:90:a4:12:c3:67:ac:46:a7:14:65:9f:46:14:d3:3d:1a: 17:70:69:6f:51:18:af:f9:ae:13:e9:66:70:36:67:ca:ab:1b: ad:c8:37:bb:a3:69:16:3e:3e:bb:31:46:5f:d4:c5:6c:3a:7a: 55:cb:73:e2:ea:43:7e:bf:38:ec:e4:26:42:40:76:77:72:c6: e5:86:74:8b:ab:56:a6:4b:5f:b5:ae:83:94:a2:dd:18:59:21: 9d:3c:c3:e5:89:43:2b:61:0d:e1:d7:25:51:0e:0b:73:dd:a7: a5:b5:87:f6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMjQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4MS1iNDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQVRMaRhDNQLpJE9vsxh13Qzqe5Ebu5Pcxs85HCD7fHjgtKK0SN6or6NpVtM VfcbvcS4r+f+MnqMWNKTQuJ9JQ7xKxbbzeZR3BhsVrPMRSHqbdvr7zINcpmLYmpG 2aRiaJsakJpLRwQM5g0Cbm+kR2oVxY0r+t/FWPqODuEdQodzwRsROBEOO7vVlTgY tPd9u4ILC+yJMwiNSQ/6GGux60aSaaI2tZtBvz2DEdL54ZbJ6OqpSQDA/HcR06UZ FAUuaz6PXwI8s0v7WlrJEIQ2tKCqGMC9dwk3L9dauDTuB4LF8UI6rgfcp/MKXVz1 /gCrkshdM6t2teLtp6bY0KbbzwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPC9TUJF 2A/ST6qRq24Gyxfo8r5lMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQTA4NUM1NDZG NjQ1MTFFQUFGNUFEOTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AABIwDQYJKoZIhvcNAQELBQADggEBAKXr82BjzfDA j0CHi/OFfuZHu++hGEYGV7O6fP3b0fRqPn6uWLZF/lLXOtWwTvlrYQgQaHocTaQg YwDtdN4971Hzg741b1q0bEGt5+vA+RYF+Hy2M1sb39LH19iuSj6t9E5j8d6bYogq xf+9Q34ahjxi1wVIwaMnWrrIBuOvXK8qfIVf+XdqNfkqnV/OMpIrBEa7kKQSw2es RqcUZZ9GFNM9GhdwaW9RGK/5rhPpZnA2Z8qrG63IN7ujaRY+PrsxRl/UxWw6elXL c+LqQ36/OOzkJkJAdndyxuWGdIurVqZLX7Wug5Si3RhZIZ08w+WJQythDeHXJVEO C3Pdp6W1h/Y= -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org