$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E0CC264A41C511E8BEC06D36C4F9AE02.roa File: E0CC264A41C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: Q3kI8WbvmkHWw5DRT2fxzKvSMcybiP+tZ+WRit1qOp0= Subject key identifier: 40:75:BA:81:6A:5D:D9:CC:56:1C:2D:91:1B:EA:4B:11:18:97:3D:5D Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 274A Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E0CC264A41C511E8BEC06D36C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:03:49 +0000 ROA not before: Tue 30 Jul 2024 16:03:49 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135646 IP address blocks: 2402:e380:15::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10058 (0x274a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:03:49 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90ee4-3c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:ec:28:a7:bd:4d:8c:74:c4:c7:d0:ef:9e: 6a:21:b3:79:c7:e7:9d:8e:41:24:14:3b:cd:e6:48: b2:a1:9d:62:05:27:82:95:43:22:c2:a8:46:90:86: a3:90:ed:ba:0a:61:b2:17:7e:65:73:02:8c:91:b3: 93:47:6b:09:36:c7:88:d9:f7:08:46:ac:33:ca:6d: 43:57:67:33:cf:f1:31:db:02:70:66:37:89:06:11: 4e:48:24:14:2c:6b:1e:04:47:7c:cc:b1:4e:d8:b8: ca:dd:fc:85:93:3c:06:cf:8c:78:fe:30:10:51:14: 9a:23:b6:ec:28:0a:dd:6a:68:a3:3a:6c:ec:6e:db: c2:3f:9b:d0:d0:04:f0:7f:3d:52:7d:8e:e8:88:40: 26:9d:6b:3d:96:b3:1b:73:a2:bb:fb:24:13:5d:5c: 3a:5e:1f:e7:47:6d:bd:1c:7e:c7:7a:9a:cc:84:ac: c9:3f:6e:a7:26:77:46:83:b6:83:01:7d:e4:ee:b0: f7:c0:c2:2b:1c:6c:45:af:03:22:8b:e6:0c:1e:b0: 39:61:f7:9b:3b:97:1a:ef:ac:19:f0:35:82:f6:43: 8b:3d:ef:0a:c4:08:a3:5f:21:b5:aa:52:a4:c4:f2: 49:57:39:71:2b:19:77:7a:0d:ef:5f:2b:f0:73:d1: cc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:75:BA:81:6A:5D:D9:CC:56:1C:2D:91:1B:EA:4B:11:18:97:3D:5D X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E0CC264A41C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:15::/48 Signature Algorithm: sha256WithRSAEncryption 4a:eb:e7:a3:09:9b:1e:43:b2:03:9a:50:e6:d8:5d:38:4e:9f: 27:8b:e1:e0:6b:f4:09:d6:e3:54:a2:43:07:fb:f9:95:5c:96: 3f:af:94:fd:c6:95:aa:32:88:08:5b:81:3d:f1:19:77:e8:04: 47:9b:d8:0b:b8:5b:aa:ea:cb:ce:e1:f0:9e:81:a6:e0:76:69: a9:41:c0:86:44:bd:98:0f:e8:33:42:1a:b9:0f:88:e6:46:40: 6c:04:e2:bc:fe:b0:2b:cb:3c:7b:3a:a5:2a:39:e1:99:a2:3b: 01:fe:df:cd:9d:94:1b:34:e4:9d:f3:a2:e4:01:b2:66:62:d5: 59:46:32:88:eb:b9:21:b8:7e:54:9c:61:9b:25:82:c1:4c:f0: 85:7d:48:1e:ed:32:a4:2d:d3:9b:fd:47:c8:fc:25:05:66:45: 0d:bc:47:20:b0:67:06:ae:df:e9:29:f3:f1:48:e1:49:b8:96: 23:d5:52:39:cd:46:97:98:b9:29:d3:e4:c5:41:bd:7a:f4:b0: 0e:51:35:a8:1b:3b:d9:33:d8:5e:a8:e9:eb:bf:04:db:88:36: 68:5b:fe:73:26:bf:79:11:2c:85:e6:f0:dc:2a:52:91:9b:65: 93:e2:ca:84:db:ed:b6:7d:7f:ac:3e:ea:6e:5a:57:cd:49:92: b0:6a:58:d6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICJ0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwMzQ5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVlNC0zYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8DsKKe9TYx0xMfQ755qIbN5x+edjkEkFDvN5kiyoZ1iBSeClUMiwqhGkIaj kO26CmGyF35lcwKMkbOTR2sJNseI2fcIRqwzym1DV2czz/Ex2wJwZjeJBhFOSCQU LGseBEd8zLFO2LjK3fyFkzwGz4x4/jAQURSaI7bsKArdamijOmzsbtvCP5vQ0ATw fz1SfY7oiEAmnWs9lrMbc6K7+yQTXVw6Xh/nR229HH7HeprMhKzJP26nJndGg7aD AX3k7rD3wMIrHGxFrwMii+YMHrA5YfebO5ca76wZ8DWC9kOLPe8KxAijXyG1qlKk xPJJVzlxKxl3eg3vXyvwc9HMlwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEB1uoFq XdnMVhwtkRvqSxEYlz1dMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRTBDQzI2NEE0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAuOAABUwDQYJKoZIhvcNAQELBQADggEBAErr56MJmx5D sgOaUObYXThOnyeL4eBr9AnW41SiQwf7+ZVclj+vlP3GlaoyiAhbgT3xGXfoBEeb 2Au4W6rqy87h8J6BpuB2aalBwIZEvZgP6DNCGrkPiOZGQGwE4rz+sCvLPHs6pSo5 4ZmiOwH+382dlBs05J3zouQBsmZi1VlGMojruSG4flScYZslgsFM8IV9SB7tMqQt 05v9R8j8JQVmRQ28RyCwZwau3+kp8/FI4Um4liPVUjnNRpeYuSnT5MVBvXr0sA5R NagbO9kz2F6o6eu/BNuINmhb/nMmv3kRLIXm8NwqUpGbZZPiyoTb7bZ9f6w+6m5a V81JkrBqWNY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:14 2024 by rpki-client on console-ams.rpki-client.org