$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa File: DCC9968641C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: ZqVDdf5yHYROu2F/jkHzaPvEliQhiiqrae0HpBjvn6g= Subject key identifier: F9:BB:E9:49:31:13:41:FD:55:30:CB:D5:BC:3D:D2:C2:E9:1E:4F:AF Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2617 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa Signing time: Sun 06 Aug 2023 16:12:36 +0000 ROA not before: Sun 06 Aug 2023 16:12:36 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132362 IP address blocks: 2402:9e80:20::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9751 (0x2617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Aug 6 16:12:36 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cfc673-323f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:74:ab:81:fc:c5:8b:47:48:30:12:01:50:70: a6:c4:dd:2c:fe:87:68:df:20:34:20:6e:25:7d:22: b0:b0:19:40:4e:cf:a7:4c:fa:d8:ad:2a:6c:91:1e: 6a:46:b8:fd:2e:f7:de:20:a4:ac:28:b0:ff:47:93: 4d:d9:9b:83:04:b0:4e:a5:df:5b:70:df:4a:69:57: 09:ca:78:8c:af:97:d4:39:71:1e:ec:c2:32:c4:84: b0:eb:b7:9b:fe:ef:20:86:a7:50:28:ed:d1:c1:0d: 7e:be:84:25:9b:4b:45:26:ca:80:ac:4a:64:ae:ef: 0c:1f:1a:c3:bd:84:5c:f0:c3:27:22:62:59:f6:18: c6:45:d4:7b:63:28:b9:2c:3a:f8:7e:4a:28:d4:9a: 6e:66:25:c3:3f:2b:7f:fe:8c:60:c2:94:33:b3:2f: 80:e6:2b:bc:3e:9f:c1:d2:41:73:df:16:66:dc:4b: 12:f6:68:19:33:c5:9c:39:9f:b0:b4:b9:83:96:d2: 60:a6:59:33:3a:a3:ac:de:5b:4e:8f:f3:b9:10:d4: 4f:47:c6:4f:72:76:80:41:3d:c3:fb:53:d7:50:ce: 61:57:45:7c:e0:d3:9c:74:5c:db:ae:e7:a0:ca:90: 66:27:dd:1f:82:03:5a:9f:e4:3b:43:43:ca:12:36: 9d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:BB:E9:49:31:13:41:FD:55:30:CB:D5:BC:3D:D2:C2:E9:1E:4F:AF X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:20::/47 Signature Algorithm: sha256WithRSAEncryption 13:19:81:64:72:3f:cb:ca:4e:80:17:08:8f:88:8a:a8:54:8b: fd:9e:93:18:0c:de:9a:d8:a3:5f:a5:ad:87:ed:ec:fa:f2:41: 49:1f:25:89:cd:ed:fe:78:31:1a:aa:6b:33:78:11:df:29:32: d6:57:4d:8e:a3:3a:d2:a8:35:d2:a6:96:51:48:62:d1:37:d4: 4e:4e:f8:8f:55:b1:fe:74:31:05:be:10:16:11:79:1a:c0:28: 70:31:3f:4e:ce:a2:50:04:fb:67:f9:5f:e8:f5:a2:6b:ce:0c: d4:e3:bc:b6:df:dc:ac:ae:e5:e8:9d:b3:fa:8e:81:86:3f:40: ea:be:2f:9e:ea:b1:f7:bf:90:23:c1:a3:4b:43:45:f1:79:97: 8a:f4:19:f3:61:da:29:81:a2:90:95:81:7d:b7:9e:32:77:ec: 71:c8:c1:c7:dd:40:56:9b:cc:67:c0:c3:6d:7a:21:fe:8e:87: 60:f1:29:5c:37:81:14:41:91:c2:88:5c:f5:32:c9:c2:71:18: 7c:18:7d:1e:61:99:2d:cc:1c:86:f2:ee:64:77:75:09:e5:16: 7e:cb:5d:46:c9:fd:34:b1:31:dd:d5:65:32:3e:f0:f2:7f:71: 19:3e:e2:7f:9e:15:a7:14:67:9e:a9:3a:c1:9b:36:12:65:c1: e7:ea:42:cb -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjMwODA2MTYxMjM2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzY3My0zMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XSrgfzFi0dIMBIBUHCmxN0s/odo3yA0IG4lfSKwsBlATs+nTPrYrSpskR5q Rrj9LvfeIKSsKLD/R5NN2ZuDBLBOpd9bcN9KaVcJyniMr5fUOXEe7MIyxISw67eb /u8ghqdQKO3RwQ1+voQlm0tFJsqArEpkru8MHxrDvYRc8MMnImJZ9hjGRdR7Yyi5 LDr4fkoo1JpuZiXDPyt//oxgwpQzsy+A5iu8Pp/B0kFz3xZm3EsS9mgZM8WcOZ+w tLmDltJgplkzOqOs3ltOj/O5ENRPR8ZPcnaAQT3D+1PXUM5hV0V84NOcdFzbrueg ypBmJ90fggNan+Q7Q0PKEjadZQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPm76Ukx E0H9VTDL1bw90sLpHk+vMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRENDOTk2ODY0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAp6AACAwDQYJKoZIhvcNAQELBQADggEBABMZgWRyP8vK ToAXCI+IiqhUi/2ekxgM3prYo1+lrYft7PryQUkfJYnN7f54MRqqazN4Ed8pMtZX TY6jOtKoNdKmllFIYtE31E5O+I9Vsf50MQW+EBYReRrAKHAxP07OolAE+2f5X+j1 omvODNTjvLbf3Kyu5eids/qOgYY/QOq+L57qsfe/kCPBo0tDRfF5l4r0GfNh2imB opCVgX23njJ37HHIwcfdQFabzGfAw216If6Oh2DxKVw3gRRBkcKIXPUyycJxGHwY fR5hmS3MHIby7mR3dQnlFn7LXUbJ/TSxMd3VZTI+8PJ/cRk+4n+eFacUZ56pOsGb NhJlwefqQss= -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org