$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa File: AFC59224604711E9BB8C0349C4F9AE02.roa (raw, json) Hash identifier: ihk91+q7IgNyUjYKGL+u42e69xVnX0pAZbLXyW700vM= Subject key identifier: 92:C3:0A:FC:20:3C:87:56:D7:EB:0B:53:0E:99:95:9C:F4:4D:33:52 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 262E Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:12:56 +0000 ROA not before: Sun 06 Aug 2023 16:12:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138992 IP address blocks: 2402:9e80:49::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9774 (0x262e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:12:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc688-7602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2f:d8:6e:db:eb:4c:3d:7c:f7:17:55:79:45: ea:61:2d:7b:fb:a3:4a:c9:41:17:cb:2e:9f:38:22: 3d:0b:ab:54:38:9a:4f:82:6c:00:a0:b0:03:11:60: 0a:26:24:a6:e2:22:6d:d9:5f:1c:69:c0:64:e6:be: aa:78:ff:c5:ad:35:f5:93:77:3b:31:51:be:56:6b: e2:96:7d:a8:3c:4a:c7:f1:4a:dc:6b:9e:c6:31:6f: 79:58:33:9c:ca:ac:36:2d:6d:1f:7d:75:61:54:c5: 6d:08:15:7a:d4:e8:c0:25:31:e4:d8:96:fd:9a:c9: 12:52:3e:6f:92:d0:31:6d:c4:34:90:2a:76:a0:f3: 08:4c:33:0e:5a:25:83:b2:1e:a5:e7:ed:28:87:20: e9:74:77:c3:53:89:9c:aa:ba:06:38:48:23:07:1d: 77:e7:7e:00:f2:5c:bf:0a:36:c1:fa:bb:c3:a6:ba: 3e:d8:88:3a:a7:4f:e8:6a:06:20:33:cb:0b:3c:9b: 56:80:9f:d4:b7:32:61:42:b9:e8:aa:e0:b6:69:38: ed:50:4a:bd:f6:94:c0:df:a9:e9:ac:70:c6:59:eb: fa:29:62:cd:4d:b2:14:ed:14:62:ae:7c:5f:36:13: 99:ad:e5:99:a3:46:fc:e7:fb:d3:99:48:47:30:a5: 86:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C3:0A:FC:20:3C:87:56:D7:EB:0B:53:0E:99:95:9C:F4:4D:33:52 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:49::/48 Signature Algorithm: sha256WithRSAEncryption c5:ca:be:3e:24:b0:f8:4c:32:b1:24:00:80:30:38:64:e1:4b: 01:f8:0e:78:91:4b:7f:35:d6:a1:9a:0c:84:a0:52:57:a1:95: b6:ab:7d:51:68:63:db:0b:72:bb:55:5b:b9:f1:42:2c:8b:fd: 78:10:40:4b:7a:54:af:fa:2d:cb:3d:6c:55:a6:71:7d:13:13: 9f:41:4a:d4:b0:fd:c8:b4:eb:ed:89:a4:41:51:8a:76:0d:72: 67:27:98:9c:67:81:29:7c:a4:f1:de:31:b8:00:53:00:01:69: 0f:3e:0f:85:49:ca:52:af:e9:1d:cc:c9:99:25:90:be:40:0e: 4a:bf:1f:cf:ce:e7:d0:83:10:6f:75:b9:80:37:00:05:a5:c0: 6e:b8:db:fe:9b:51:ab:98:03:06:dd:06:59:c9:cc:9e:d0:72: 9f:7a:50:c5:9e:4b:5f:2c:3a:a2:7f:48:69:fc:3d:56:dd:09: 35:09:b0:4f:90:e1:66:6a:33:29:6a:6f:70:a6:80:49:50:03: d9:52:8a:d7:75:9e:99:86:02:c6:3d:73:e0:21:57:eb:d0:b3: 7d:f7:9a:c6:01:ff:53:62:b6:52:79:c1:d4:ea:1e:c8:e9:fa: 82:d8:0e:77:c1:1a:16:66:94:80:bc:a0:7f:1e:2f:a1:b4:01: 8f:16:84:44 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMjU2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4OC03NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy/YbtvrTD189xdVeUXqYS17+6NKyUEXyy6fOCI9C6tUOJpPgmwAoLADEWAK JiSm4iJt2V8cacBk5r6qeP/FrTX1k3c7MVG+Vmviln2oPErH8Urca57GMW95WDOc yqw2LW0ffXVhVMVtCBV61OjAJTHk2Jb9mskSUj5vktAxbcQ0kCp2oPMITDMOWiWD sh6l5+0ohyDpdHfDU4mcqroGOEgjBx13534A8ly/CjbB+rvDpro+2Ig6p0/oagYg M8sLPJtWgJ/UtzJhQrnoquC2aTjtUEq99pTA36nprHDGWev6KWLNTbIU7RRirnxf NhOZreWZo0b85/vTmUhHMKWGYQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJLDCvwg PIdW1+sLUw6ZlZz0TTNSMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQUZDNTkyMjQ2 MDQ3MTFFOUJCOEMwMzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAEkwDQYJKoZIhvcNAQELBQADggEBAMXKvj4ksPhM MrEkAIAwOGThSwH4DniRS3811qGaDISgUlehlbarfVFoY9sLcrtVW7nxQiyL/XgQ QEt6VK/6Lcs9bFWmcX0TE59BStSw/ci06+2JpEFRinYNcmcnmJxngSl8pPHeMbgA UwABaQ8+D4VJylKv6R3MyZklkL5ADkq/H8/O59CDEG91uYA3AAWlwG642/6bUauY AwbdBlnJzJ7Qcp96UMWeS18sOqJ/SGn8PVbdCTUJsE+Q4WZqMylqb3CmgElQA9lS itd1npmGAsY9c+AhV+vQs333msYB/1NitlJ5wdTqHsjp+oLYDnfBGhZmlIC8oH8e L6G0AY8WhEQ= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org