$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa File: D9CB701ACBF311EBB9D2A784C4F9AE02.roa (raw, json) Hash identifier: sWHpKYmtjy2XaK6xn6CLe444fqdYz6EFpueDCdz5kB8= Subject key identifier: 88:DA:A1:45:D6:49:D2:B8:84:DE:4E:08:56:78:2D:61:8E:3B:83:1E Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 275F Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:09 +0000 ROA not before: Tue 30 Jul 2024 16:04:09 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141376 IP address blocks: 2402:e380:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10079 (0x275f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D Validity Not Before: Jul 30 16:04:09 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ef9-28e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:97:51:c3:63:b6:89:46:7b:30:b1:07:b6:44: 10:8d:3a:e3:6f:39:3e:af:d8:f8:40:aa:22:36:ea: 81:5f:f5:d0:57:ac:68:57:4b:87:92:31:5e:a5:7b: 6a:33:77:f3:ce:17:ec:8f:6b:0b:64:16:a9:d0:73: 88:ab:c7:49:5c:ec:b7:f8:4b:9b:f4:08:5f:f1:21: 02:3f:cc:9e:19:48:e3:b8:a1:18:05:d0:69:e0:a4: b1:fe:d2:22:e8:00:84:2c:a5:2a:9f:06:d6:0a:16: a8:54:8e:13:71:85:ee:c0:bb:fd:8f:25:b3:4e:d2: 23:d5:ab:bb:88:c6:66:4a:c6:c0:ed:34:8b:35:81: cc:c9:b1:fc:35:09:8c:ef:85:16:87:29:a9:07:8d: 62:d0:93:b7:a2:5c:76:08:a8:ec:c7:0c:de:4f:7a: ea:51:40:21:9b:17:a6:95:4f:15:4a:59:09:a0:3b: 62:c4:05:57:3e:9b:01:8c:65:73:79:b4:6f:9d:eb: 41:ea:a6:9f:07:ed:26:0b:9f:91:9d:7e:f9:1a:62: 16:32:fd:6c:a0:30:85:63:70:35:eb:06:e9:d0:3f: 7f:bf:3e:84:af:a0:a2:cd:ed:c5:66:39:ad:20:d8: 20:72:d2:42:b6:06:45:7e:57:d5:a9:47:f6:7c:74: 93:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:DA:A1:45:D6:49:D2:B8:84:DE:4E:08:56:78:2D:61:8E:3B:83:1E X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D9CB701ACBF311EBB9D2A784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:400::/40 Signature Algorithm: sha256WithRSAEncryption c2:21:61:9e:1c:5d:26:c9:70:de:11:67:5c:e2:30:c3:8c:97: 64:e8:c2:9e:92:b4:44:ba:b2:39:26:bf:2a:e5:28:83:4b:07: ee:44:bb:a0:3b:f1:bb:0b:6e:b1:ed:47:35:50:f8:b2:af:20: 68:70:57:85:23:56:ee:81:6a:62:77:87:af:28:b0:90:e2:8d: 4a:7f:38:82:8f:55:98:95:f7:1f:6f:b0:e5:e0:b5:16:15:d1: 76:8e:5c:80:44:04:86:fc:62:70:be:90:a6:72:dd:3c:28:d0: 94:21:df:6d:1d:a5:b8:3b:19:89:14:a1:86:d8:73:c9:ae:01: d3:88:08:cd:6b:d0:31:d0:cd:42:da:4e:7f:a0:0d:b2:9f:e0: 2d:10:6e:95:94:4d:b5:34:7c:44:69:d4:e4:5f:ad:e7:59:43: 16:cf:ec:02:d8:8e:db:42:3c:6f:60:29:2b:60:41:6e:de:75: 40:b0:5b:b4:f7:24:64:5c:eb:78:1a:72:ab:47:35:90:16:ab: b4:cf:69:e0:ab:5f:97:87:e5:ee:6b:61:84:83:ef:6b:40:37: bf:cf:70:15:ab:6f:38:0b:ef:50:6c:43:28:07:9c:1a:ff:b8: 77:02:2f:80:a9:ae:e4:55:ed:0b:f9:e1:0a:18:96:b9:c7:1b: f1:b2:d6:f5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICJ18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDA5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmOS0yOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppdRw2O2iUZ7MLEHtkQQjTrjbzk+r9j4QKoiNuqBX/XQV6xoV0uHkjFepXtq M3fzzhfsj2sLZBap0HOIq8dJXOy3+Eub9Ahf8SECP8yeGUjjuKEYBdBp4KSx/tIi 6ACELKUqnwbWChaoVI4TcYXuwLv9jyWzTtIj1au7iMZmSsbA7TSLNYHMybH8NQmM 74UWhympB41i0JO3olx2CKjsxwzeT3rqUUAhmxemlU8VSlkJoDtixAVXPpsBjGVz ebRvnetB6qafB+0mC5+RnX75GmIWMv1soDCFY3A16wbp0D9/vz6Er6Cize3FZjmt INggctJCtgZFflfVqUf2fHSTfwIDAQABo4IClzCCApMwHQYDVR0OBBYEFIjaoUXW SdK4hN5OCFZ4LWGOO4MeMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRDlDQjcwMUFD QkYzMTFFQkI5RDJBNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAuOABDANBgkqhkiG9w0BAQsFAAOCAQEAwiFhnhxdJslw 3hFnXOIww4yXZOjCnpK0RLqyOSa/KuUog0sH7kS7oDvxuwtuse1HNVD4sq8gaHBX hSNW7oFqYneHryiwkOKNSn84go9VmJX3H2+w5eC1FhXRdo5cgEQEhvxicL6QpnLd PCjQlCHfbR2luDsZiRShhthzya4B04gIzWvQMdDNQtpOf6ANsp/gLRBulZRNtTR8 RGnU5F+t51lDFs/sAtiO20I8b2ApK2BBbt51QLBbtPckZFzreBpyq0c1kBartM9p 4Ktfl4fl7mthhIPva0A3v89wFatvOAvvUGxDKAecGv+4dwIvgKmu5FXtC/nhChiW uccb8bLW9Q== -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:31 2025 by rpki-client