$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa File: AFC59224604711E9BB8C0349C4F9AE02.roa (raw, json) Hash identifier: 86fvCe3ZggiV+Ztt8qUapJoZWtynZNCJo38wxy2dPrM= Subject key identifier: 93:4E:2E:61:0F:87:F6:23:EC:87:1A:A1:14:C5:55:5E:4D:AD:8E:55 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2758 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:01 +0000 ROA not before: Tue 30 Jul 2024 16:04:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138992 IP address blocks: 2402:9e80:49::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10072 (0x2758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ef0-c4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:75:a5:76:4f:d2:6e:f9:48:6f:c5:18:18:bd: 05:32:ae:a7:dd:fb:ef:a1:5a:68:df:dc:58:b2:59: 10:fb:8c:c7:a4:56:9d:2b:ec:6e:2b:61:23:43:8b: b3:29:35:96:7b:7b:96:c4:3c:63:9e:7e:a1:06:73: 3e:ec:e4:9c:bd:7d:7b:19:f9:f5:28:bd:aa:c3:76: 82:ab:92:9c:52:04:8a:5f:8a:fc:3d:05:9b:f2:d3: 07:60:eb:0f:83:fb:df:67:71:71:4e:7e:0d:6c:50: 95:26:96:bb:1f:04:ab:97:5b:ed:64:93:ea:e7:c5: b8:d0:96:18:18:8e:af:6f:5d:78:30:1c:69:1a:4f: 3b:e2:c4:80:b3:03:6b:fb:da:f4:ad:b1:db:45:b9: a4:9f:54:e0:72:ab:ba:47:f6:81:67:9f:1c:50:95: 55:78:2d:60:11:a9:af:65:fd:87:28:0d:cf:68:b2: c6:df:99:49:18:91:5c:17:90:ff:ab:b9:4b:fa:27: 51:22:a5:47:77:b9:0e:d6:ec:d0:f3:f5:9b:e6:3c: e0:91:bb:74:e3:1f:30:f3:6c:09:7a:7d:e6:c5:ca: 2e:ec:d0:90:5d:00:93:a9:58:6d:7a:4a:7b:06:45: c1:95:00:b9:4c:82:11:80:12:39:a2:cf:78:6d:8f: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4E:2E:61:0F:87:F6:23:EC:87:1A:A1:14:C5:55:5E:4D:AD:8E:55 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:49::/48 Signature Algorithm: sha256WithRSAEncryption c5:ff:89:d0:e4:a8:d9:ac:ae:1f:bc:8d:20:31:ed:42:2c:4e: c9:87:7a:5d:e9:d2:4f:1c:bb:2b:69:ef:87:8e:af:81:62:a2: 7b:3a:b9:43:4e:52:42:d2:93:b3:4e:9c:1d:cd:af:a7:1a:0c: 4f:d6:df:b1:ab:a7:02:d5:c6:0a:b5:57:fe:98:e0:70:d0:cf: 21:71:86:ec:24:c4:be:74:89:b7:c6:db:bd:ea:ce:81:1e:ab: 05:83:f1:cb:f6:4d:8c:84:16:49:b1:7e:f1:14:40:a7:4c:06: 36:99:d2:53:be:30:cc:bc:21:f0:be:f7:a0:15:17:0c:95:be: cd:b5:a2:78:dd:2e:3d:55:57:1b:74:1e:47:91:2b:7b:62:0f: f6:19:48:d7:f7:bd:a2:7f:99:42:d6:10:51:10:78:a5:f7:f3: aa:56:ad:9e:35:08:16:00:43:82:81:47:7f:e5:3b:f5:33:2d: c6:18:a6:a9:07:f2:52:3c:d6:5b:d7:1a:3c:83:d6:df:b0:16: 87:4d:7b:63:c3:6c:17:15:bc:c4:e2:bf:21:2f:a8:87:47:d6: 0a:da:d3:a5:35:19:91:33:32:25:4c:6a:bd:fc:5d:26:6e:9f: fc:a5:23:f3:55:c1:7a:c8:b2:a1:a7:f5:be:91:c1:1c:23:9a: e4:48:40:e6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmMC1jNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9nWldk/SbvlIb8UYGL0FMq6n3fvvoVpo39xYslkQ+4zHpFadK+xuK2EjQ4uz KTWWe3uWxDxjnn6hBnM+7OScvX17Gfn1KL2qw3aCq5KcUgSKX4r8PQWb8tMHYOsP g/vfZ3FxTn4NbFCVJpa7HwSrl1vtZJPq58W40JYYGI6vb114MBxpGk874sSAswNr +9r0rbHbRbmkn1Tgcqu6R/aBZ58cUJVVeC1gEamvZf2HKA3PaLLG35lJGJFcF5D/ q7lL+idRIqVHd7kO1uzQ8/Wb5jzgkbt04x8w82wJen3mxcou7NCQXQCTqVhtekp7 BkXBlQC5TIIRgBI5os94bY/NvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJNOLmEP h/Yj7IcaoRTFVV5NrY5VMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQUZDNTkyMjQ2 MDQ3MTFFOUJCOEMwMzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAEkwDQYJKoZIhvcNAQELBQADggEBAMX/idDkqNms rh+8jSAx7UIsTsmHel3p0k8cuytp74eOr4Fions6uUNOUkLSk7NOnB3Nr6caDE/W 37GrpwLVxgq1V/6Y4HDQzyFxhuwkxL50ibfG273qzoEeqwWD8cv2TYyEFkmxfvEU QKdMBjaZ0lO+MMy8IfC+96AVFwyVvs21onjdLj1VVxt0HkeRK3tiD/YZSNf3vaJ/ mULWEFEQeKX386pWrZ41CBYAQ4KBR3/lO/UzLcYYpqkH8lI81lvXGjyD1t+wFodN e2PDbBcVvMTivyEvqIdH1gra06U1GZEzMiVMar38XSZun/ylI/NVwXrIsqGn9b6R wRwjmuRIQOY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org