$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa File: DC28826E41C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: TEb6fiq9/f5LZ+elOa5ALyHgoVgSw553mtzVzxyagRQ= Subject key identifier: 7E:ED:4E:9E:98:90:0A:AE:A3:84:B0:3E:B5:A8:96:0F:84:3D:B6:1B Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2616 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:12:35 +0000 ROA not before: Sun 06 Aug 2023 16:12:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132352 IP address blocks: 2402:9e80:22::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9750 (0x2616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:12:35 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc672-e9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:75:37:3f:db:0e:cb:a5:40:72:ac:c2:71: 02:d0:e0:ad:61:97:4a:4a:1a:87:3c:2c:b7:4d:ee: da:24:28:87:75:ff:85:33:c6:6c:3e:c6:36:37:71: 2b:bf:fd:27:30:25:ce:98:97:12:ae:52:e5:6b:2f: f6:f5:e4:6f:f1:ac:05:81:e0:ee:d4:a2:4e:ee:35: 76:7f:eb:cc:2f:3c:5c:ea:af:a4:32:a2:91:54:0e: 85:da:76:b8:0c:75:ef:bd:99:09:5c:19:56:46:c2: 66:09:ba:4a:19:e9:05:94:44:be:b6:ec:50:68:73: ac:c7:e9:61:b1:bc:34:a9:56:65:a8:6e:20:77:50: 5c:30:b3:1f:1e:ab:91:96:df:32:22:60:fc:b4:63: 57:4a:3c:ac:7b:2a:bc:2f:66:38:ee:d1:6c:21:a7: 63:6d:64:51:34:22:13:5e:74:a2:99:c6:a2:2b:1b: ae:2d:02:21:96:22:e5:fb:9b:21:66:77:9b:c8:9d: ca:97:5a:66:03:cc:18:6a:e3:cd:dc:9f:0d:67:24: bd:3f:37:10:76:82:37:37:d0:bc:bf:ef:46:07:d3: 2a:c1:93:1e:81:aa:04:8e:8e:ee:e6:d3:55:09:61: c9:84:21:17:e0:4a:f3:d2:ee:8e:7b:f0:37:cc:9c: d6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:ED:4E:9E:98:90:0A:AE:A3:84:B0:3E:B5:A8:96:0F:84:3D:B6:1B X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:22::/48 Signature Algorithm: sha256WithRSAEncryption c4:bf:18:82:fe:d4:6c:4a:12:c7:25:30:f5:82:e4:56:5d:e8: f9:03:8c:d2:30:f2:fa:ab:a7:4e:4b:8f:ac:fe:a4:0e:af:9b: 40:21:2f:64:da:4a:a9:cb:e8:f4:4b:ef:40:d1:71:82:2f:9b: 41:bd:dc:93:f1:ee:28:53:4b:14:48:b3:c7:13:19:a0:7f:21: 12:55:ee:73:9a:e7:45:00:b7:2d:67:3b:46:8e:3a:97:10:28: ba:a6:60:1a:05:fc:cc:18:89:bb:2e:6a:6a:28:a9:08:b1:db: 81:b6:f0:93:3b:cf:62:95:c9:68:4b:94:32:a8:55:f7:30:82: 12:27:c7:39:ec:72:c4:a2:1b:42:fd:c4:55:5b:dd:ab:f2:22: fe:30:bb:8f:99:e7:31:53:f0:5a:a6:a1:bc:57:08:ac:ee:28: c6:eb:ef:bf:31:c8:9c:08:1a:d8:a7:cd:e2:d3:3f:19:b4:c2: c6:69:85:5a:4e:f4:f0:7f:c1:bb:0b:69:5e:03:95:c8:17:f5: 90:77:be:a1:41:4c:a0:c2:ab:07:8f:ae:6b:a9:af:0d:b4:c4: 4d:8e:82:12:a4:94:4c:a4:1d:1e:73:8f:0c:c7:21:1b:ef:08: c9:9b:6a:bf:af:86:26:7a:39:e4:ef:89:a9:81:53:3d:bb:db: 00:ee:b9:0c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMjM1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY3Mi1lOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriF1Nz/bDsulQHKswnEC0OCtYZdKShqHPCy3Te7aJCiHdf+FM8ZsPsY2N3Er v/0nMCXOmJcSrlLlay/29eRv8awFgeDu1KJO7jV2f+vMLzxc6q+kMqKRVA6F2na4 DHXvvZkJXBlWRsJmCbpKGekFlES+tuxQaHOsx+lhsbw0qVZlqG4gd1BcMLMfHquR lt8yImD8tGNXSjyseyq8L2Y47tFsIadjbWRRNCITXnSimcaiKxuuLQIhliLl+5sh ZnebyJ3Kl1pmA8wYauPN3J8NZyS9PzcQdoI3N9C8v+9GB9MqwZMegaoEjo7u5tNV CWHJhCEX4Erz0u6Oe/A3zJzW9QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFH7tTp6Y kAquo4SwPrWolg+EPbYbMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvREMyODgyNkU0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACIwDQYJKoZIhvcNAQELBQADggEBAMS/GIL+1GxK EsclMPWC5FZd6PkDjNIw8vqrp05Lj6z+pA6vm0AhL2TaSqnL6PRL70DRcYIvm0G9 3JPx7ihTSxRIs8cTGaB/IRJV7nOa50UAty1nO0aOOpcQKLqmYBoF/MwYibsuamoo qQix24G28JM7z2KVyWhLlDKoVfcwghInxznscsSiG0L9xFVb3avyIv4wu4+Z5zFT 8FqmobxXCKzuKMbr778xyJwIGtinzeLTPxm0wsZphVpO9PB/wbsLaV4DlcgX9ZB3 vqFBTKDCqwePrmuprw20xE2OghKklEykHR5zjwzHIRvvCMmbar+vhiZ6OeTviamB Uz272wDuuQw= -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org