$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa File: BBE72E68FE9B11EDB3E19575C4F9AE02.roa (raw, json) Hash identifier: +dZTiXWorrjdT2gRx6uOEX2dN6ok3tqNs9mGtEOTbCs= Subject key identifier: 65:EA:EF:0E:C2:7F:F4:C2:44:32:9F:68:75:50:E1:25:7C:90:64:D8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E46 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:40:51 +0000 ROA not before: Tue 12 Sep 2023 02:40:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131375 IP address blocks: 103.16.0.0/22 maxlen: 24 2001:df5:bb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15942 (0x3e46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:40:51 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfb3-cd45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fd:8a:40:35:1c:b5:47:4c:37:98:ed:f4:79: 79:1d:6a:96:03:c1:9f:e6:47:40:9c:b5:4c:3e:b4: ec:89:36:29:0b:19:5d:ec:f0:b6:eb:cf:e3:93:c3: 53:d4:e4:95:13:84:1f:ca:6a:5e:7e:df:4f:9a:69: 02:8d:f8:4a:70:8b:7d:07:b1:6a:f3:b2:63:cf:16: 19:47:7d:d2:15:ea:96:dc:82:86:af:10:12:91:5f: bb:9f:d4:7f:1d:0f:ed:10:3d:05:9c:c6:ef:e2:f6: bb:27:3c:f8:0a:af:b6:ad:ba:35:c7:38:79:a5:51: f0:15:4f:21:a4:9f:c6:3c:1f:6d:55:1b:01:2d:e0: 7f:89:51:a9:d3:b5:2f:20:4f:8e:10:ef:2e:40:02: 6d:46:89:ff:9a:1f:42:f6:94:1c:6b:8d:38:b5:00: 43:29:39:48:37:db:32:90:ce:df:dd:f7:4e:49:4b: fc:9d:fb:a9:74:81:2b:08:a6:85:4c:f9:ef:1b:e0: 4e:61:a4:fb:ff:1e:bb:da:c6:5e:f3:e4:f7:8f:76: 5c:81:03:75:b3:92:9b:73:54:1c:92:64:76:b5:3f: 69:21:54:00:fa:fb:c6:17:a0:03:a0:58:2c:91:b3: 6c:84:84:1d:01:16:5f:ee:fe:70:ca:be:57:3a:8e: b9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:EA:EF:0E:C2:7F:F4:C2:44:32:9F:68:75:50:E1:25:7C:90:64:D8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.0.0/22 IPv6: 2001:df5:bb00::/48 Signature Algorithm: sha256WithRSAEncryption 3e:a9:5f:d7:b0:59:2b:15:e7:e4:f2:1e:1a:fd:57:95:85:b7: 49:15:c7:a5:70:69:e7:29:26:d6:33:35:90:e1:b0:af:62:17: ff:e1:2f:5f:2f:f4:98:5f:0b:48:1a:f9:c2:48:a0:a6:bf:0a: f8:c6:78:62:d3:1a:e7:41:d0:12:55:4a:54:dc:7e:a5:09:05: 24:a9:03:26:62:7f:59:5c:69:4f:91:16:51:06:5d:6f:61:78: 4b:87:2d:4c:64:3c:8c:79:3b:f2:38:ec:6b:24:7d:53:93:ca: 12:d5:a1:30:55:bc:c0:15:8a:5b:7b:99:81:30:15:ca:28:6d: 80:28:07:6f:ed:45:01:5c:cd:da:41:c0:0d:8d:d8:36:ee:7d: 4f:55:18:7d:ff:ee:13:79:05:51:c9:99:d3:10:64:62:51:06: d7:96:84:cf:b3:86:d7:f8:3c:fc:7a:82:9a:97:76:a0:45:00: 6b:66:b9:e7:51:e1:78:2e:7b:03:d2:98:14:92:39:17:0c:09: 68:76:ad:6c:72:5e:00:1c:01:fe:f3:46:0f:2d:92:c6:ed:9f: 61:80:83:7c:04:82:84:8a:9b:50:12:f5:d5:7e:ff:3d:b0:9a: ca:f4:e4:2d:0f:e7:5c:fc:b5:40:a2:f3:20:61:d8:f9:e5:99: d6:50:9d:0e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MDUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZiMy1jZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP2KQDUctUdMN5jt9Hl5HWqWA8Gf5kdAnLVMPrTsiTYpCxld7PC268/jk8NT 1OSVE4Qfympeft9PmmkCjfhKcIt9B7Fq87JjzxYZR33SFeqW3IKGrxASkV+7n9R/ HQ/tED0FnMbv4va7Jzz4Cq+2rbo1xzh5pVHwFU8hpJ/GPB9tVRsBLeB/iVGp07Uv IE+OEO8uQAJtRon/mh9C9pQca404tQBDKTlIN9sykM7f3fdOSUv8nfupdIErCKaF TPnvG+BOYaT7/x672sZe8+T3j3ZcgQN1s5Kbc1QckmR2tT9pIVQA+vvGF6ADoFgs kbNshIQdARZf7v5wyr5XOo65VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGXq7w7C f/TCRDKfaHVQ4SV8kGTYMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkJFNzJFNjhG RTlCMTFFREIzRTE5NTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnEAAwDwQCAAIwCQMHACABDfW7ADANBgkqhkiG9w0BAQsF AAOCAQEAPqlf17BZKxXn5PIeGv1XlYW3SRXHpXBp5ykm1jM1kOGwr2IX/+EvXy/0 mF8LSBr5wkigpr8K+MZ4YtMa50HQElVKVNx+pQkFJKkDJmJ/WVxpT5EWUQZdb2F4 S4ctTGQ8jHk78jjsayR9U5PKEtWhMFW8wBWKW3uZgTAVyihtgCgHb+1FAVzN2kHA DY3YNu59T1UYff/uE3kFUcmZ0xBkYlEG15aEz7OG1/g8/HqCmpd2oEUAa2a551Hh eC57A9KYFJI5FwwJaHatbHJeABwB/vNGDy2Sxu2fYYCDfASChIqbUBL11X7/PbCa yvTkLQ/nXPy1QKLzIGHY+eWZ1lCdDg== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org