$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa File: BBBC061A122711EB952CAB3FC4F9AE02.roa (raw, json) Hash identifier: Ej4Olhx/k6YWemdl2TV8Frzo1JOOuwGbcCqfJq8lBxg= Subject key identifier: 99:21:BC:3C:A9:CC:AC:08:BF:23:45:EF:28:86:2F:AF:ED:38:C1:8C Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 079D Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa Signing time: Tue 10 Dec 2024 21:50:50 +0000 ROA not before: Tue 10 Dec 2024 21:50:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 18250 IP address blocks: 103.157.110.0/23 maxlen: 24 2406:9dc0::/44 maxlen: 48 2406:9dc0:60::/44 maxlen: 48 2406:9dc0:100::/44 maxlen: 48 2406:9dc0:1010::/44 maxlen: 48 2406:9dc0:6661::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F Validity Not Before: Dec 10 21:50:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758b7b9-ee96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:86:2e:5e:54:bf:0c:bc:48:86:e8:58:49:f2: 4c:d6:97:eb:a5:22:c2:1d:97:33:34:09:dd:46:ae: 1e:c8:92:8a:17:52:34:48:6a:14:bd:13:12:9d:ad: ef:d5:10:47:43:7f:3f:a2:f8:ce:d7:5b:b8:eb:33: b2:f5:e2:b3:25:4a:e5:4f:e1:c6:47:73:39:88:ad: ba:a7:22:80:d9:e0:ac:e8:f5:51:38:54:87:94:4e: fa:0e:60:1d:0d:e9:b8:e7:e1:89:a4:15:09:46:e8: 55:e8:ae:61:fa:47:b6:28:64:4e:dd:cb:42:1f:eb: 8d:a7:19:61:80:d4:ad:02:08:ca:69:d7:a5:2b:e1: b7:ec:ca:b6:5f:60:f6:67:ef:c9:d7:2b:72:03:6b: a9:69:f8:b0:19:f4:fb:3a:d5:17:b5:fd:4f:6a:03: 21:3c:36:27:f8:e9:54:95:2b:47:a7:ca:23:30:69: 3f:d1:69:e5:8d:23:3f:9a:1f:7a:94:c1:df:01:26: ba:70:e7:48:46:41:e4:f3:66:0f:1a:82:66:d1:1d: 5b:12:a6:41:e1:eb:0b:9e:f5:fc:70:28:fd:e0:4b: d2:0d:fe:85:0e:25:ed:88:47:c2:85:ce:fd:79:24: 32:a7:46:e6:e1:db:d8:da:e5:4c:fc:b2:e4:8f:b4: 1c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:21:BC:3C:A9:CC:AC:08:BF:23:45:EF:28:86:2F:AF:ED:38:C1:8C X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.110.0/23 IPv6: 2406:9dc0::/44 2406:9dc0:60::/44 2406:9dc0:100::/44 2406:9dc0:1010::/44 2406:9dc0:6661::/48 Signature Algorithm: sha256WithRSAEncryption 5c:4a:da:70:95:5e:91:a7:ba:c3:ba:ca:c8:9b:96:de:8c:a1: 25:6c:61:fb:3f:8f:bd:19:50:f7:dc:5a:68:29:5a:11:67:e7: 08:65:4a:4f:23:57:54:d2:ed:93:62:3e:c0:83:c3:f8:fb:60: 78:57:6f:6f:8e:56:18:63:6f:7c:e9:a4:d7:55:f9:a6:af:e6: a6:42:2f:46:44:14:29:3c:35:7b:9a:da:48:4c:ca:4a:aa:97: 92:f8:56:41:ed:88:6f:b2:57:0f:42:ee:94:4f:99:c2:c8:08: 1e:7f:0d:73:e2:77:f8:74:29:b4:cf:4d:e4:62:53:f8:94:31: 26:8f:74:56:5e:7d:16:87:6f:0f:46:f1:b9:a5:8f:4e:98:13: f0:14:74:2b:cb:73:69:0b:61:02:56:9d:8f:e1:6d:d3:16:a0: 7f:a2:39:36:68:cd:0f:6e:fb:d3:19:1d:3f:f0:f7:89:19:d4: db:72:8a:51:3f:1e:f7:36:79:b8:09:7c:ae:a2:cd:90:08:20: 2a:ae:7f:c8:72:3b:49:43:73:b6:fc:ca:7d:95:a6:a4:d0:46: 11:15:ba:fd:e7:52:8a:4d:eb:38:f5:45:dd:2d:46:4c:20:60: 2e:6e:ff:66:72:57:8f:e5:66:a5:f5:a2:1c:cd:56:0c:80:a3: 20:5a:22:b0 -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjQxMjEwMjE1MDUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YjdiOS1lZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIYuXlS/DLxIhuhYSfJM1pfrpSLCHZczNAndRq4eyJKKF1I0SGoUvRMSna3v 1RBHQ38/ovjO11u46zOy9eKzJUrlT+HGR3M5iK26pyKA2eCs6PVROFSHlE76DmAd Dem45+GJpBUJRuhV6K5h+ke2KGRO3ctCH+uNpxlhgNStAgjKadelK+G37Mq2X2D2 Z+/J1ytyA2upafiwGfT7OtUXtf1PagMhPDYn+OlUlStHp8ojMGk/0WnljSM/mh96 lMHfASa6cOdIRkHk82YPGoJm0R1bEqZB4esLnvX8cCj94EvSDf6FDiXtiEfChc79 eSQyp0bm4dvY2uVM/LLkj7QcVQIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFJkhvDyp zKwIvyNF7yiGL6/tOMGMMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvQkJCQzA2MUEx MjI3MTFFQjk1MkNBQjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMAwEAgABMAYDBAFnnW4wMwQCAAIwLQMHBCQGncAAAAMHBCQGncAAYAMHBCQG ncABAAMHBCQGncAQEAMHACQGncBmYTANBgkqhkiG9w0BAQsFAAOCAQEAXEracJVe kae6w7rKyJuW3oyhJWxh+z+PvRlQ99xaaClaEWfnCGVKTyNXVNLtk2I+wIPD+Ptg eFdvb45WGGNvfOmk11X5pq/mpkIvRkQUKTw1e5raSEzKSqqXkvhWQe2Ib7JXD0Lu lE+ZwsgIHn8Nc+J3+HQptM9N5GJT+JQxJo90Vl59FodvD0bxuaWPTpgT8BR0K8tz aQthAladj+Ft0xagf6I5NmjND2770xkdP/D3iRnU23KKUT8e9zZ5uAl8rqLNkAgg Kq5/yHI7SUNztvzKfZWmpNBGERW6/edSik3rOPVF3S1GTCBgLm7/ZnJXj+VmpfWi HM1WDICjIFoisA== -----END CERTIFICATE-----Generated at Sat Apr 5 00:50:32 2025 by rpki-client