$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa File: D9CB701ACBF311EBB9D2A784C4F9AE02.roa (raw, json) Hash identifier: qPJPPIhLucg7hVkunwTvkDm5ubZVClK+d8L9bJRO7JY= Subject key identifier: D9:50:5F:1B:D8:85:FB:EE:68:CC:D5:55:36:47:35:D7:61:53:7B:9F Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2636 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:13:04 +0000 ROA not before: Sun 06 Aug 2023 16:13:04 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 141376 IP address blocks: 2402:e380:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9782 (0x2636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:13:04 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc68f-b5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:a8:e8:93:95:3d:68:2a:42:d6:a2:30:6f: ba:08:1f:e1:2c:ae:db:63:92:36:97:2b:6d:f8:51: 3d:3f:d4:8f:bf:6d:b8:f1:7b:3f:a3:c5:11:1c:79: a2:34:46:f5:60:16:ba:9f:48:79:5b:0a:b0:87:a8: 76:10:15:04:f4:71:4a:ff:61:1f:d2:2d:6d:97:4b: 9b:98:43:5e:82:ab:01:46:6a:c3:6e:d0:2c:10:bf: a8:a9:15:fa:5d:24:72:e5:f2:bd:23:53:8b:de:65: d3:4f:21:e8:ac:81:89:cd:0e:fc:f2:f2:51:93:d3: 82:5d:21:c6:9b:bb:22:f6:31:83:7a:21:30:43:46: 72:94:52:bd:32:60:c9:ad:89:17:3a:29:38:5a:86: bb:57:c2:e2:8d:54:b8:7c:af:df:bb:54:0e:e1:c3: 5a:6e:d5:27:6a:3f:8a:c7:eb:aa:11:f2:71:87:a9: 70:09:af:c5:95:73:61:56:04:20:97:ae:c1:2e:29: 5f:33:04:e6:f6:8e:f7:a3:15:ab:97:bd:35:c9:28: 63:a2:aa:6e:31:95:5d:de:e2:57:4c:75:43:52:94: a8:60:ff:33:d0:19:5b:e3:79:88:a5:8c:6b:66:6a: 18:cb:32:22:be:46:b2:e4:7a:ee:8e:4b:90:c6:e3: 12:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:50:5F:1B:D8:85:FB:EE:68:CC:D5:55:36:47:35:D7:61:53:7B:9F X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:400::/40 Signature Algorithm: sha256WithRSAEncryption 83:91:66:76:4f:fc:4d:8b:97:87:07:3d:94:17:52:27:89:5a: e5:5f:bc:de:e4:d7:29:2c:7d:a8:44:91:10:e7:86:e9:e8:1b: a8:69:80:88:57:d1:17:44:91:60:5c:c0:2d:3c:9a:5f:38:9d: 8a:03:f6:4e:aa:53:78:fd:6d:ae:9e:67:66:61:b0:b4:37:8f: 8d:56:62:39:c8:69:94:8f:bc:36:dd:2d:15:1d:cf:10:68:fd: 17:28:79:c7:7b:73:82:75:ca:f6:df:a2:06:4f:04:8a:26:ec: 99:8a:a0:c4:1d:4f:67:c0:ed:75:93:bf:03:76:39:7e:82:59: 35:d2:a7:62:e1:a7:0f:3c:a5:59:b0:87:c5:e4:30:14:52:da: 63:54:d9:a6:e5:d5:2c:f3:b6:5e:f4:42:e4:72:8a:55:10:7b: 12:44:86:c2:39:64:85:e1:40:d8:40:f3:5f:b1:b5:82:47:5d: cd:c8:01:2a:8b:d9:a8:b5:9b:75:15:2e:6f:e4:e0:72:a5:64: c4:34:52:21:d3:8c:71:bc:da:db:ae:f4:5f:31:ec:2b:bf:d8: db:5c:de:0b:67:ef:7c:b5:c7:d1:cd:3e:d8:89:a5:9b:a6:07: 6a:18:79:95:55:8d:1d:d4:02:fc:61:24:3d:7f:42:74:a3:58: 90:ee:85:41 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICJjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMzA0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY4Zi1iNWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUWo6JOVPWgqQtaiMG+6CB/hLK7bY5I2lytt+FE9P9SPv2248Xs/o8URHHmi NEb1YBa6n0h5Wwqwh6h2EBUE9HFK/2Ef0i1tl0ubmENegqsBRmrDbtAsEL+oqRX6 XSRy5fK9I1OL3mXTTyHorIGJzQ788vJRk9OCXSHGm7si9jGDeiEwQ0ZylFK9MmDJ rYkXOik4Woa7V8LijVS4fK/fu1QO4cNabtUnaj+Kx+uqEfJxh6lwCa/FlXNhVgQg l67BLilfMwTm9o73oxWrl701yShjoqpuMZVd3uJXTHVDUpSoYP8z0Blb43mIpYxr ZmoYyzIivkay5HrujkuQxuMScQIDAQABo4IClzCCApMwHQYDVR0OBBYEFNlQXxvY hfvuaMzVVTZHNddhU3ufMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRDlDQjcwMUFD QkYzMTFFQkI5RDJBNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAuOABDANBgkqhkiG9w0BAQsFAAOCAQEAg5Fmdk/8TYuX hwc9lBdSJ4la5V+83uTXKSx9qESREOeG6egbqGmAiFfRF0SRYFzALTyaXzidigP2 TqpTeP1trp5nZmGwtDePjVZiOchplI+8Nt0tFR3PEGj9Fyh5x3tzgnXK9t+iBk8E iibsmYqgxB1PZ8DtdZO/A3Y5foJZNdKnYuGnDzylWbCHxeQwFFLaY1TZpuXVLPO2 XvRC5HKKVRB7EkSGwjlkheFA2EDzX7G1gkddzcgBKovZqLWbdRUub+TgcqVkxDRS IdOMcbza2670XzHsK7/Y21zeC2fvfLXH0c0+2Imlm6YHahh5lVWNHdQC/GEkPX9C dKNYkO6FQQ== -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org