$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E03999C441C511E8BEC06D36C4F9AE02.roa File: E03999C441C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: KyZfO2Rv8xr1eq0Z6LB6KMQ4937ZuffjM61C4GSQ2vY= Subject key identifier: D5:9B:E9:C8:7C:53:99:A8:5D:C9:0F:C6:C5:BF:73:CF:3E:6F:9B:D0 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2749 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E03999C441C511E8BEC06D36C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:48 +0000 ROA not before: Tue 30 Jul 2024 16:03:48 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135605 IP address blocks: 2402:9e80:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10057 (0x2749) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:48 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ee3-dfc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:f0:e8:78:ee:7a:4a:36:dc:c0:aa:14:7c: 38:6b:40:a0:91:5a:d0:34:02:14:c5:f1:08:3c:e2: 2a:ce:66:74:cf:7c:5a:7d:ae:74:23:cc:6f:28:88: 99:e9:69:27:63:bc:da:9d:46:77:56:43:47:72:9e: 0b:77:a6:4a:c6:2c:e3:21:57:48:5f:de:2a:df:bd: 8f:a7:14:33:eb:86:b4:8e:c1:c3:fd:5c:22:c5:69: cd:7d:56:6d:6d:64:81:f0:ae:1d:f1:57:15:2e:a4: ab:cd:68:43:18:ba:f6:a0:7e:29:3a:1e:a9:eb:a1: fb:35:db:5e:08:aa:2a:70:35:15:d4:17:a6:35:4d: 93:23:b9:73:a7:56:48:35:42:02:c7:3e:db:d1:aa: 1b:49:f5:f9:95:54:b4:51:da:7b:94:ee:47:a7:8c: bd:be:e6:51:db:f6:81:4b:3f:83:41:59:3d:56:48: 23:1c:2f:b1:47:21:d6:de:14:d8:5b:cb:36:db:f3: ac:5f:16:50:24:74:5f:ec:18:56:8e:51:50:c8:8e: ce:4b:35:b1:27:a7:de:f7:a6:e1:91:fa:3d:53:47: 26:6d:ad:7c:40:86:89:50:06:08:dd:f1:c5:95:f6: 62:a7:64:03:66:6f:78:8b:bf:08:26:5c:ae:bf:7b: 54:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9B:E9:C8:7C:53:99:A8:5D:C9:0F:C6:C5:BF:73:CF:3E:6F:9B:D0 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E03999C441C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:19::/48 Signature Algorithm: sha256WithRSAEncryption 1c:ae:6b:cc:2b:52:37:d6:55:4c:f3:e2:a7:57:3b:83:7f:c6: b4:94:9c:55:0b:85:81:c2:ea:48:ab:8a:4d:c5:65:5a:22:1d: e2:ec:70:c4:8d:6b:a7:a8:7f:09:87:c6:ed:78:91:b6:24:69: f0:92:bf:48:a5:3c:7e:8c:eb:0b:45:8a:c9:f9:d2:21:08:c4: 58:df:76:db:cb:c5:39:93:12:a5:6b:ea:ff:3c:66:cd:a1:0b: 74:f8:18:f3:13:71:18:1f:d2:6c:5d:32:f8:b9:1a:c7:eb:34: b6:e8:62:4b:2a:13:4f:42:6c:89:c1:19:52:c0:f8:9f:20:e3: 80:39:aa:31:21:54:b5:78:b1:5a:37:b4:03:38:9f:7d:f6:01: 5e:94:f8:83:99:da:68:c5:76:48:54:a4:46:23:48:5e:a4:ab: a0:cc:c6:7f:90:17:52:e1:2b:89:c4:54:2a:00:6a:7c:f3:f5: ab:d9:d6:a6:da:01:62:80:ca:b7:08:75:5a:0b:05:34:4c:6c: ff:3d:bd:45:22:1a:21:99:16:f8:32:7b:ec:25:12:00:16:ee: 44:78:1c:b9:44:11:2c:0d:58:9a:55:d2:b8:fa:5b:65:2f:92: 8b:54:51:8c:fe:54:2a:5f:b6:f8:a3:66:a9:db:e5:a0:59:02: 76:ef:26:09 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzQ4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlMy1kZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F/w6Hjueko23MCqFHw4a0CgkVrQNAIUxfEIPOIqzmZ0z3xafa50I8xvKIiZ 6WknY7zanUZ3VkNHcp4Ld6ZKxizjIVdIX94q372PpxQz64a0jsHD/VwixWnNfVZt bWSB8K4d8VcVLqSrzWhDGLr2oH4pOh6p66H7NdteCKoqcDUV1BemNU2TI7lzp1ZI NUICxz7b0aobSfX5lVS0Udp7lO5Hp4y9vuZR2/aBSz+DQVk9VkgjHC+xRyHW3hTY W8s22/OsXxZQJHRf7BhWjlFQyI7OSzWxJ6fe96bhkfo9U0cmba18QIaJUAYI3fHF lfZip2QDZm94i78IJlyuv3tU4QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNWb6ch8 U5moXckPxsW/c88+b5vQMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRTAzOTk5QzQ0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AABkwDQYJKoZIhvcNAQELBQADggEBAByua8wrUjfW VUzz4qdXO4N/xrSUnFULhYHC6kirik3FZVoiHeLscMSNa6eofwmHxu14kbYkafCS v0ilPH6M6wtFisn50iEIxFjfdtvLxTmTEqVr6v88Zs2hC3T4GPMTcRgf0mxdMvi5 GsfrNLboYksqE09CbInBGVLA+J8g44A5qjEhVLV4sVo3tAM4n332AV6U+IOZ2mjF dkhUpEYjSF6kq6DMxn+QF1LhK4nEVCoAanzz9avZ1qbaAWKAyrcIdVoLBTRMbP89 vUUiGiGZFvgye+wlEgAW7kR4HLlEESwNWJpV0rj6W2UvkotUUYz+VCpftvijZqnb 5aBZAnbvJgk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:14 2024 by rpki-client on console-ams.rpki-client.org