$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa File: DCC9968641C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: W30iKjI+iqsDik8HBCLCJKvO2ZtUPH1+IJj4lKt+vCo= Subject key identifier: 74:92:AC:6F:93:C0:B7:91:01:94:F5:A1:93:28:B6:3E:F6:EF:11:F2 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2745 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:44 +0000 ROA not before: Tue 30 Jul 2024 16:03:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132362 IP address blocks: 2402:9e80:20::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10053 (0x2745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ee0-8f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:27:3c:82:8a:67:78:57:33:7d:3b:3e:d5: 33:62:8b:2b:70:2f:60:69:37:cb:cc:a8:3c:eb:89: a9:00:42:36:53:a0:ca:35:d5:06:e3:0d:24:09:14: d1:10:c8:74:a5:e8:ef:21:9e:07:b0:c8:35:e4:df: 1f:9d:33:2e:dd:b9:80:98:55:c1:51:66:71:73:c0: 1f:72:ac:52:1c:9f:40:73:3d:a0:35:02:e6:1a:73: 64:0c:77:ea:67:64:b3:fd:a5:83:2f:1a:a9:93:21: b8:d8:30:28:33:b6:41:49:95:de:6d:17:cd:12:d1: c2:f9:1b:d6:41:e0:c7:24:c5:f8:ad:79:d1:71:2f: 45:cc:8c:6a:1b:af:ba:9d:fd:c8:2c:30:bf:14:8e: e7:ea:35:b1:f1:28:7e:ae:8b:71:d0:d4:a8:28:25: 99:e9:2d:01:07:72:81:11:ec:48:e2:da:ec:e6:9e: 85:5f:b1:2a:36:8b:cd:65:0f:f3:2d:f8:cb:1f:90: f9:58:5b:4c:b7:5e:1d:f5:5f:87:80:75:6f:51:46: a5:d1:2f:04:f7:cc:1f:89:6e:3b:e2:20:66:6e:ed: 5d:2a:c7:1c:34:f3:af:03:32:97:cf:6c:d9:19:a8: fe:da:57:9e:fe:6b:c2:86:80:0b:04:1c:62:cc:ed: 27:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:92:AC:6F:93:C0:B7:91:01:94:F5:A1:93:28:B6:3E:F6:EF:11:F2 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DCC9968641C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:20::/47 Signature Algorithm: sha256WithRSAEncryption 92:be:c6:37:69:d7:5d:10:fd:1e:7d:4d:c5:ee:b3:27:70:b5: ea:5a:41:df:f7:49:27:91:68:7c:9c:c6:97:a2:95:cd:70:1b: 6b:c8:6e:e7:7f:c9:c3:a4:62:1d:a5:75:7a:89:16:d7:f8:5a: 8b:a0:13:09:7f:37:8c:68:41:90:4d:22:d4:cf:2e:fb:20:17: a1:d0:c2:92:59:ee:17:bc:9d:84:89:b8:4c:76:f2:c0:f9:11: f6:c0:61:21:56:5f:4d:0f:e2:82:ef:46:fb:5a:9e:d2:c4:5e: 9d:c7:d9:b8:01:dc:51:88:ad:a9:5a:7b:b1:9a:3a:59:eb:fe: 77:99:ba:b6:1e:c0:a5:93:85:a6:f7:d7:73:96:d2:98:b0:e1: 38:93:4e:15:da:76:3d:0c:8f:21:f6:04:4a:85:de:26:fb:64: 8f:6c:ac:e8:08:d2:6f:cd:ba:1a:c0:18:1a:fe:bf:a6:81:6c: 8f:8c:91:27:40:ce:ea:f5:57:9d:18:6b:ca:99:a1:54:75:41: 24:6d:9c:b0:88:7b:9c:ba:c6:0c:b9:7f:d1:af:b7:a0:a0:6f: 90:ce:ae:7d:36:39:3a:1b:80:b6:c8:ad:01:d3:88:e0:8d:57: 39:62:68:6c:b7:7c:d1:f7:5a:26:b2:af:9b:07:99:e8:5a:16: 1e:e0:9f:f1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlMC04ZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CknPIKKZ3hXM307PtUzYosrcC9gaTfLzKg864mpAEI2U6DKNdUG4w0kCRTR EMh0pejvIZ4HsMg15N8fnTMu3bmAmFXBUWZxc8AfcqxSHJ9Acz2gNQLmGnNkDHfq Z2Sz/aWDLxqpkyG42DAoM7ZBSZXebRfNEtHC+RvWQeDHJMX4rXnRcS9FzIxqG6+6 nf3ILDC/FI7n6jWx8Sh+rotx0NSoKCWZ6S0BB3KBEexI4trs5p6FX7EqNovNZQ/z LfjLH5D5WFtMt14d9V+HgHVvUUal0S8E98wfiW474iBmbu1dKsccNPOvAzKXz2zZ Gaj+2lee/mvChoALBBxizO0nPQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHSSrG+T wLeRAZT1oZMotj727xHyMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRENDOTk2ODY0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAp6AACAwDQYJKoZIhvcNAQELBQADggEBAJK+xjdp110Q /R59TcXusydwtepaQd/3SSeRaHycxpeilc1wG2vIbud/ycOkYh2ldXqJFtf4Woug Ewl/N4xoQZBNItTPLvsgF6HQwpJZ7he8nYSJuEx28sD5EfbAYSFWX00P4oLvRvta ntLEXp3H2bgB3FGIralae7GaOlnr/neZurYewKWThab313OW0piw4TiTThXadj0M jyH2BEqF3ib7ZI9srOgI0m/NuhrAGBr+v6aBbI+MkSdAzur1V50Ya8qZoVR1QSRt nLCIe5y6xgy5f9Gvt6Cgb5DOrn02OTobgLbIrQHTiOCNVzliaGy3fNH3Wiayr5sH mehaFh7gn/E= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org