$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: vMJn+YbQa3spWEdKdumv1/Zcjyp8IRIPWtoejKXAgaw= Subject key identifier: 29:EF:8C:33:43:4A:C0:D0:E4:7E:E4:F1:3E:58:D6:87:26:AA:2A:04 Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 05DE Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Wed 15 May 2024 00:34:07 +0000 ROA not before: Wed 15 May 2024 00:34:07 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: May 15 00:34:07 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=664402ff-94df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ec:1a:ba:5c:7f:64:62:21:b4:50:3e:9f:99: 10:42:a1:5a:84:99:25:ae:81:4b:d6:b1:ca:40:58: 0e:79:3f:b1:04:37:10:42:d4:2b:a1:fa:98:51:21: 6b:09:f8:58:33:dc:ff:1b:ad:0c:9f:5d:a8:b8:ec: 78:d9:2a:41:ec:0b:a5:86:73:55:8e:cc:45:ce:05: a4:7b:6a:85:1b:6e:e8:a5:3a:3b:b3:6c:14:25:2b: 26:31:ea:45:d7:49:94:90:b6:77:53:9f:34:99:86: 11:3c:db:08:34:54:7b:6b:7a:ee:c6:84:05:94:3a: e7:a0:d1:27:ff:2a:c8:0e:45:e7:16:3e:e9:5f:8e: 36:8d:44:8a:1b:1c:c5:df:ea:d4:06:cc:ee:41:b2: 67:3f:c9:78:e3:d8:7d:2f:98:59:da:66:06:84:30: 03:84:3f:24:d4:ba:37:71:8f:b9:ef:6a:ac:c1:a4: 00:9b:64:eb:7a:27:fd:2c:f0:7f:72:1b:40:0c:52: 5e:b9:f3:37:52:62:79:d2:63:5f:9c:11:f0:c6:fe: 8e:b9:6c:b6:5a:42:db:22:87:74:01:72:28:19:0b: 78:50:9f:29:fa:17:6d:ca:dc:2f:67:b9:fa:33:0a: b2:51:10:61:d0:9d:3f:2e:9b:05:20:6a:3b:e0:cb: f3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:EF:8C:33:43:4A:C0:D0:E4:7E:E4:F1:3E:58:D6:87:26:AA:2A:04 X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 68:68:1c:11:16:ec:a6:26:4b:42:0c:b6:97:99:09:1a:b8:df: 83:6b:c1:35:80:81:42:ef:50:01:2f:79:9b:e1:fc:75:f0:78: 81:1c:77:07:89:a9:22:6f:15:f2:8f:38:6a:98:4c:43:d0:d9: fb:df:ae:e8:90:5a:aa:a8:05:4c:c8:15:0c:27:4d:a7:39:e2: 89:5b:3d:b2:35:3f:0c:4a:25:75:71:36:61:92:72:b8:50:17: b0:10:08:fe:04:c9:34:5f:ac:a1:97:47:a2:94:22:79:7e:fe: f9:8a:38:93:f9:5a:8c:65:04:27:a1:59:b5:ee:88:80:8f:21: d9:4f:c7:b7:df:a4:64:08:07:7c:cb:a5:b6:f7:cf:03:cf:cd: d7:33:77:2c:1c:82:17:af:67:ac:74:af:13:b7:e0:d7:79:8d: 26:75:ea:78:9c:f0:f9:68:77:45:1a:3f:ef:7c:9b:84:b6:23: da:54:be:18:54:d5:52:92:0e:af:8f:be:ed:bf:37:0c:01:de: 6b:bd:e8:14:11:d0:bf:ff:bb:7a:61:3c:52:9e:b2:09:4e:84: 0d:d4:a1:56:95:85:fd:92:88:cd:7c:8f:11:5a:b9:61:fa:4e: a2:06:d6:b2:b7:2e:24:98:1a:89:ed:79:c8:21:32:07:bd:12: ef:8d:49:49 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjQwNTE1MDAzNDA3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0MDJmZi05NGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuwaulx/ZGIhtFA+n5kQQqFahJklroFL1rHKQFgOeT+xBDcQQtQrofqYUSFr CfhYM9z/G60Mn12ouOx42SpB7AulhnNVjsxFzgWke2qFG27opTo7s2wUJSsmMepF 10mUkLZ3U580mYYRPNsINFR7a3ruxoQFlDrnoNEn/yrIDkXnFj7pX442jUSKGxzF 3+rUBszuQbJnP8l449h9L5hZ2mYGhDADhD8k1Lo3cY+572qswaQAm2Treif9LPB/ chtADFJeufM3UmJ50mNfnBHwxv6OuWy2WkLbIod0AXIoGQt4UJ8p+hdtytwvZ7n6 MwqyURBh0J0/LpsFIGo74MvzUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCnvjDND SsDQ5H7k8T5Y1ocmqioEMB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnotAwDwQCAAIwCQMHACABDfX8gDANBgkqhkiG9w0BAQsF AAOCAQEAaGgcERbspiZLQgy2l5kJGrjfg2vBNYCBQu9QAS95m+H8dfB4gRx3B4mp Im8V8o84aphMQ9DZ+9+u6JBaqqgFTMgVDCdNpzniiVs9sjU/DEoldXE2YZJyuFAX sBAI/gTJNF+soZdHopQieX7++Yo4k/lajGUEJ6FZte6IgI8h2U/Ht9+kZAgHfMul tvfPA8/N1zN3LByCF69nrHSvE7fg13mNJnXqeJzw+Wh3RRo/73ybhLYj2lS+GFTV UpIOr4++7b83DAHea73oFBHQv/+7emE8Up6yCU6EDdShVpWF/ZKIzXyPEVq5YfpO ogbWsrcuJJgaie15yCEyB70S741JSQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:46 2024 by rpki-client on console-ams.rpki-client.org