$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: otDlvTK8e4oHooljrcE7nPqOh5c2rNe9R+0jjH853Jc= Subject key identifier: A6:89:53:12:D4:53:BA:88:9F:51:CE:CB:6D:6A:59:02:4E:D3:0F:55 Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 05D5 Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Wed 01 May 2024 00:33:15 +0000 ROA not before: Wed 01 May 2024 00:33:15 +0000 ROA not after: Thu 29 Aug 2024 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: May 1 00:33:15 2024 GMT Not After : Aug 29 00:00:00 2024 GMT Subject: CN=66318dca-d23e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dd:f5:f6:c6:80:80:19:43:b7:b6:9d:33:81: 90:4b:97:0c:b8:f3:b0:4c:86:4b:98:bc:a1:3f:78: 4a:3d:c8:d0:66:5a:6e:4b:ee:78:46:33:8e:a6:bb: 19:b4:a3:7f:0c:bc:3a:c3:16:47:e3:f2:50:c5:53: 00:09:71:a3:50:3b:32:0c:5c:c4:e1:8c:c8:69:02: 7c:0c:4a:83:70:49:e1:74:b7:61:64:f8:a1:5e:fc: af:b5:57:47:30:76:7d:c3:59:a5:ed:79:0e:f2:9f: b0:08:6a:e1:b3:17:70:27:14:d2:07:8a:0c:68:8f: e7:78:7b:ea:33:b1:49:1f:fa:53:16:d3:1c:5b:ad: 30:87:10:c7:01:71:60:ba:47:57:09:94:6a:20:84: 3c:72:f2:b5:be:1d:f6:61:0a:0d:0d:e4:b1:21:02: e9:e0:0f:71:d8:31:6e:ac:91:b7:4d:81:49:5f:08: 8d:cd:9d:99:96:9a:77:51:c8:e4:8d:dc:80:4a:f0: e2:06:38:a1:fe:8c:28:20:b1:ab:18:29:c1:bd:90: fb:8e:42:04:ba:be:01:d4:ee:29:42:20:3b:0d:a5: 58:e7:7e:8d:73:83:a8:3a:94:30:f7:e8:c5:d2:4c: 04:22:a5:96:52:1f:e5:ea:15:f5:40:9e:6f:4d:ff: 4e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:89:53:12:D4:53:BA:88:9F:51:CE:CB:6D:6A:59:02:4E:D3:0F:55 X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 61:16:68:9b:5c:da:55:2f:1d:bd:dc:91:99:5b:67:fb:61:9e: 69:fd:f4:05:40:e5:7f:68:ad:44:70:7b:e9:f6:65:ee:53:51: a4:fc:ae:92:82:ec:2f:cb:8d:33:08:1a:f4:3a:bb:fb:6f:47: 33:7e:8c:dd:ec:af:96:f3:29:8d:d0:14:69:53:69:50:71:97: 8c:60:37:09:9f:a1:ba:ac:04:9c:a9:0b:36:d0:72:0f:cb:dd: 56:af:58:80:a4:fe:5b:bf:27:e6:32:33:3e:93:c9:07:4d:79: 3d:aa:95:99:67:15:4e:f6:b2:22:cd:0a:00:42:36:e5:62:41: 1f:3d:74:b5:9f:6d:45:06:03:fc:b7:84:30:ab:3e:48:1f:92: 80:50:03:41:07:41:a8:34:c3:13:87:b5:62:70:6a:06:7d:2b: 99:7f:c9:06:79:25:4e:3d:ed:40:17:f4:46:ca:02:22:23:6f: 89:ca:22:fc:e9:28:b5:e5:71:7a:c0:2b:d1:9a:0a:38:df:f7: c2:25:a9:b1:0f:0b:30:c8:2c:ee:59:9e:5c:40:6d:14:a0:98: ab:f0:f0:40:c4:46:6c:5e:cf:63:7f:6a:54:10:f3:6b:3e:a9: 19:18:9f:8e:1b:19:a5:15:7a:c9:61:98:1a:4e:a0:e6:bf:7b: 03:86:4e:6c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjQwNTAxMDAzMzE1WhcNMjQwODI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxOGRjYS1kMjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2d319saAgBlDt7adM4GQS5cMuPOwTIZLmLyhP3hKPcjQZlpuS+54RjOOprsZ tKN/DLw6wxZH4/JQxVMACXGjUDsyDFzE4YzIaQJ8DEqDcEnhdLdhZPihXvyvtVdH MHZ9w1ml7XkO8p+wCGrhsxdwJxTSB4oMaI/neHvqM7FJH/pTFtMcW60whxDHAXFg ukdXCZRqIIQ8cvK1vh32YQoNDeSxIQLp4A9x2DFurJG3TYFJXwiNzZ2Zlpp3Ucjk jdyASvDiBjih/owoILGrGCnBvZD7jkIEur4B1O4pQiA7DaVY536Nc4OoOpQw9+jF 0kwEIqWWUh/l6hX1QJ5vTf9O3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKaJUxLU U7qIn1HOy21qWQJO0w9VMB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnotAwDwQCAAIwCQMHACABDfX8gDANBgkqhkiG9w0BAQsF AAOCAQEAYRZom1zaVS8dvdyRmVtn+2Geaf30BUDlf2itRHB76fZl7lNRpPyukoLs L8uNMwga9Dq7+29HM36M3eyvlvMpjdAUaVNpUHGXjGA3CZ+huqwEnKkLNtByD8vd Vq9YgKT+W78n5jIzPpPJB015PaqVmWcVTvayIs0KAEI25WJBHz10tZ9tRQYD/LeE MKs+SB+SgFADQQdBqDTDE4e1YnBqBn0rmX/JBnklTj3tQBf0RsoCIiNvicoi/Oko teVxesAr0ZoKON/3wiWpsQ8LMMgs7lmeXEBtFKCYq/DwQMRGbF7PY39qVBDzaz6p GRifjhsZpRV6yWGYGk6g5r97A4ZObA== -----END CERTIFICATE-----Generated at Tue May 7 00:53:21 2024 by rpki-client on console-ams.rpki-client.org