$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa File: DD8ACB8041C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: EGrfhW/ypHvn7XWgRXxAc/1H7mG2Fbl9fbwfth7QklM= Subject key identifier: 4D:D6:9F:1A:F9:9D:AD:99:96:4A:8A:2F:95:69:F4:56:A7:6A:47:82 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2746 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:45 +0000 ROA not before: Tue 30 Jul 2024 16:03:45 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133846 IP address blocks: 2402:9e80:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10054 (0x2746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:45 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ee1-ed61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:37:de:25:dd:26:60:c3:09:ff:57:b3:53: b0:4d:52:e5:09:2a:da:8b:93:e7:3e:19:7a:5f:db: a7:85:f9:7c:3b:d0:d7:18:9b:bc:dc:2e:b0:ca:a9: fd:7d:f6:2d:90:b7:e8:e8:74:b7:cc:33:61:65:2a: c1:2e:27:4d:3b:69:7c:59:71:ba:06:c5:bb:f6:d1: 7b:66:52:37:12:49:bc:1c:f5:fb:da:62:35:9f:8c: 55:7d:c8:99:04:fd:ac:7d:49:3e:bc:9a:56:37:ae: ef:c7:e3:85:f4:74:57:b4:fa:0a:0d:00:34:12:d6: 6a:dc:1d:92:e1:d4:68:97:1e:12:86:a7:7c:e7:ab: 1c:40:53:f2:64:81:6c:bb:c6:78:f9:5d:38:56:d8: ab:00:90:a6:f5:98:2a:55:76:c1:9f:22:57:1f:f2: 66:59:8a:17:28:b8:b2:7e:53:49:68:70:e3:4d:65: ff:a9:f9:ad:8c:eb:42:a7:b6:0d:d6:fb:64:6d:fb: db:69:d1:d8:4e:0a:0b:bc:73:44:11:19:58:99:6f: d5:9f:5f:9a:cd:e9:23:00:c8:50:06:16:7c:89:e1: 93:7e:dc:47:73:20:f6:7b:d9:1f:1f:68:9c:53:7d: 8c:51:a3:2f:b8:b2:c1:7b:c4:6e:f0:92:91:0c:24: 72:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D6:9F:1A:F9:9D:AD:99:96:4A:8A:2F:95:69:F4:56:A7:6A:47:82 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:18::/48 Signature Algorithm: sha256WithRSAEncryption 40:da:a6:b3:95:69:0b:d1:3d:fd:2e:c0:c3:29:a4:9d:ad:96: d8:2a:88:dc:93:d8:ea:62:4c:90:a2:80:73:4c:b3:72:fc:d9: af:23:ba:c0:a4:5b:09:d6:a6:41:5f:72:ec:34:d6:20:b1:a7: af:ff:24:79:70:c0:48:22:96:ff:7c:66:c6:22:9c:c9:71:b3: 38:78:00:f9:a3:cd:2d:f5:dc:aa:d4:7a:b0:6a:d4:eb:06:78: df:8e:32:16:c5:d8:8d:07:4e:e1:6b:64:5a:77:05:fb:f3:5c: 52:2b:e3:c2:0d:90:12:b0:5d:a3:ba:fc:dc:25:b4:83:15:bb: d9:b9:34:c3:28:8f:b1:45:86:59:d8:f5:95:81:e5:98:bf:db: f3:fe:a3:0a:f6:37:06:f3:08:98:85:98:fe:17:4e:89:a1:ac: a9:21:42:27:72:75:6b:43:d0:28:fb:3d:2e:05:2d:46:4f:c5: 18:9f:2f:7f:dd:09:c6:8d:3d:18:cb:ab:c2:98:9e:f4:76:9d: 4e:21:12:24:fc:00:a4:0a:0e:d7:2d:c2:6b:e0:ab:f1:e4:57: 2c:56:00:c0:9f:8e:a9:73:d6:64:40:9a:a6:7a:cb:75:05:fa: b5:ac:5c:86:b4:ae:9c:a0:80:6c:5e:85:30:c7:db:ee:25:cb: f3:01:d0:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzQ1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlMS1lZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1g33iXdJmDDCf9Xs1OwTVLlCSrai5PnPhl6X9unhfl8O9DXGJu83C6wyqn9 ffYtkLfo6HS3zDNhZSrBLidNO2l8WXG6BsW79tF7ZlI3Ekm8HPX72mI1n4xVfciZ BP2sfUk+vJpWN67vx+OF9HRXtPoKDQA0EtZq3B2S4dRolx4Shqd856scQFPyZIFs u8Z4+V04VtirAJCm9ZgqVXbBnyJXH/JmWYoXKLiyflNJaHDjTWX/qfmtjOtCp7YN 1vtkbfvbadHYTgoLvHNEERlYmW/Vn1+azekjAMhQBhZ8ieGTftxHcyD2e9kfH2ic U32MUaMvuLLBe8Ru8JKRDCRyAQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFE3Wnxr5 na2ZlkqKL5Vp9FanakeCMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvREQ4QUNCODA0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AABgwDQYJKoZIhvcNAQELBQADggEBAEDaprOVaQvR Pf0uwMMppJ2tltgqiNyT2OpiTJCigHNMs3L82a8jusCkWwnWpkFfcuw01iCxp6// JHlwwEgilv98ZsYinMlxszh4APmjzS313KrUerBq1OsGeN+OMhbF2I0HTuFrZFp3 BfvzXFIr48INkBKwXaO6/NwltIMVu9m5NMMoj7FFhlnY9ZWB5Zi/2/P+owr2Nwbz CJiFmP4XTomhrKkhQidydWtD0Cj7PS4FLUZPxRifL3/dCcaNPRjLq8KYnvR2nU4h EiT8AKQKDtctwmvgq/HkVyxWAMCfjqlz1mRAmqZ6y3UF+rWsXIa0rpyggGxehTDH 2+4ly/MB0IU= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org