$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa File: BBE72E68FE9B11EDB3E19575C4F9AE02.roa (raw, json) Hash identifier: IGQxtV8I87SMEbrOr3kSw2n/Ok5YUNxYl9W7ztzi9s4= Subject key identifier: 3C:76:8E:2F:38:7B:7B:BF:18:ED:6E:6F:58:5E:96:6C:43:8F:EE:C2 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4537 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:50 +0000 ROA not before: Thu 05 Sep 2024 03:31:50 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131375 IP address blocks: 103.16.0.0/22 maxlen: 24 2001:df5:bb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17719 (0x4537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:50 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92626-0d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:27:d6:d8:63:d6:b2:6d:a7:71:31:7d:ff: 1a:3e:a6:d2:18:7c:4a:fa:28:a4:ef:f3:75:1f:dc: 0c:17:34:05:01:bf:6a:03:ca:57:85:51:4a:5f:77: 4b:3a:66:23:b3:e7:e7:07:0e:1a:f1:d7:58:63:52: 79:58:72:f1:5e:ad:c5:71:22:24:ea:ed:89:06:11: 24:d6:6f:1f:7b:e2:35:ee:5c:95:7a:5d:fe:7c:6e: 56:16:e5:66:09:c6:d9:1c:ba:a5:ab:d6:c3:4e:0d: db:69:fb:59:58:b4:d6:5a:87:5a:3a:91:be:52:a5: 37:0a:ce:2f:62:04:2e:82:1b:2f:c2:02:2f:8c:ca: 9f:9b:64:1e:55:f9:f0:0c:80:40:a5:0e:88:dc:d5: 99:55:20:3e:9e:1c:87:da:a9:8a:c6:f2:f8:bd:05: 1d:be:d9:23:a3:4b:d2:ed:3c:6b:a5:c1:01:6d:e2: c9:16:39:f0:1b:02:c3:65:54:6b:b2:96:30:d3:33: bd:16:0d:68:97:c3:20:65:98:dc:7a:01:49:fc:0e: 1b:8a:b6:d4:43:ae:da:43:78:c1:4a:11:f7:ae:15: 23:91:12:db:0c:9f:a2:f7:60:75:65:4f:a1:c9:b4: 49:52:4b:2b:c7:e6:f5:bd:2a:42:c8:88:6c:e2:3c: 45:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:76:8E:2F:38:7B:7B:BF:18:ED:6E:6F:58:5E:96:6C:43:8F:EE:C2 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBE72E68FE9B11EDB3E19575C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.0.0/22 IPv6: 2001:df5:bb00::/48 Signature Algorithm: sha256WithRSAEncryption 22:cf:30:75:d8:64:89:b2:84:9c:be:41:72:59:c0:30:d9:88: 14:98:b2:9a:48:3d:51:90:a5:29:88:22:eb:5c:51:6b:07:92: 21:33:ae:99:dc:fe:16:cf:c7:e6:47:be:cc:5a:25:6f:38:44: f7:3a:29:65:a1:48:24:19:96:57:74:28:ca:3c:1e:a3:65:2d: 50:fa:4d:5b:b9:ed:73:29:c4:c3:ce:92:56:5b:cf:34:78:b0: 18:4c:dc:45:9f:7d:dd:f2:f6:08:8e:73:0b:0c:e8:dd:8a:f9: 1f:f6:bf:3f:25:98:6d:aa:f8:5a:b1:eb:2d:fa:c8:d3:0f:5b: 86:75:e4:f9:37:23:9e:62:a7:45:a5:c4:b5:f2:d0:50:a8:02: 5e:b0:7b:63:19:30:7b:1e:e4:6c:33:23:ac:c8:d1:81:0d:23: d2:fc:a0:44:f0:c5:9e:c2:47:aa:19:60:87:86:29:7b:da:bb: 73:be:20:f4:21:a8:33:8c:67:62:f7:b2:e5:45:a4:34:c1:ab: 7c:24:a8:d3:9a:95:04:65:8d:20:a5:1e:3c:fe:eb:c9:d9:69: 5e:ab:39:f3:ab:d7:57:d8:6e:e6:18:94:e0:9b:6e:26:af:64: 7f:41:c2:47:a4:d5:9e:45:bf:ab:e5:33:c1:bc:e2:a1:29:1e: 50:55:45:cc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTUwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyNi0wZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05wn1thj1rJtp3Exff8aPqbSGHxK+iik7/N1H9wMFzQFAb9qA8pXhVFKX3dL OmYjs+fnBw4a8ddYY1J5WHLxXq3FcSIk6u2JBhEk1m8fe+I17lyVel3+fG5WFuVm CcbZHLqlq9bDTg3baftZWLTWWodaOpG+UqU3Cs4vYgQughsvwgIvjMqfm2QeVfnw DIBApQ6I3NWZVSA+nhyH2qmKxvL4vQUdvtkjo0vS7TxrpcEBbeLJFjnwGwLDZVRr spYw0zO9Fg1ol8MgZZjcegFJ/A4birbUQ67aQ3jBShH3rhUjkRLbDJ+i92B1ZU+h ybRJUksrx+b1vSpCyIhs4jxFDwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDx2ji84 e3u/GO1ub1helmxDj+7CMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkJFNzJFNjhG RTlCMTFFREIzRTE5NTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnEAAwDwQCAAIwCQMHACABDfW7ADANBgkqhkiG9w0BAQsF AAOCAQEAIs8wddhkibKEnL5BclnAMNmIFJiymkg9UZClKYgi61xRaweSITOumdz+ Fs/H5ke+zFolbzhE9zopZaFIJBmWV3Qoyjweo2UtUPpNW7ntcynEw86SVlvPNHiw GEzcRZ993fL2CI5zCwzo3Yr5H/a/PyWYbar4WrHrLfrI0w9bhnXk+TcjnmKnRaXE tfLQUKgCXrB7Yxkwex7kbDMjrMjRgQ0j0vygRPDFnsJHqhlgh4Ype9q7c74g9CGo M4xnYvey5UWkNMGrfCSo05qVBGWNIKUePP7rydlpXqs586vXV9hu5hiU4JtuJq9k f0HCR6TVnkW/q+UzwbzioSkeUFVFzA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org