$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa File: BBBC061A122711EB952CAB3FC4F9AE02.roa (raw, json) Hash identifier: SZMVejSV/qkmCA3U87HUM5KR3riZ9cH0CDAR6HS87ns= Subject key identifier: 4F:24:BB:EF:B6:04:2F:F7:A4:54:1B:75:A6:C0:CC:CF:86:91:2F:77 Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 06CB Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa Signing time: Mon 20 Nov 2023 22:50:24 +0000 ROA not before: Mon 20 Nov 2023 22:50:24 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 18250 IP address blocks: 103.157.110.0/23 maxlen: 24 2406:9dc0::/44 maxlen: 48 2406:9dc0:60::/44 maxlen: 48 2406:9dc0:100::/44 maxlen: 48 2406:9dc0:1010::/44 maxlen: 48 2406:9dc0:6661::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Nov 20 22:50:24 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655be2af-eea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:08:6b:9a:72:5d:17:74:52:9f:29:95:95: 65:a3:c0:bb:3c:83:02:3d:61:99:d7:7b:9e:1a:68: 10:83:a0:f7:e4:b4:02:88:6a:48:f3:ed:ca:b6:d5: 01:c7:fc:50:a6:cd:3c:cc:16:c3:26:88:93:13:d5: 53:7c:85:1f:44:41:27:a8:90:41:9d:bb:94:ae:c9: 89:7c:c1:35:7c:64:cd:d0:bc:c6:1e:5d:6d:d0:cc: 49:ce:2e:04:9e:74:c8:d1:04:83:c1:b0:96:f4:71: 1d:17:b8:af:4e:b0:87:62:c6:68:44:cd:1c:8e:c0: f8:0d:94:c2:29:d9:b5:eb:b4:0b:54:4e:d6:3d:84: 17:b0:d7:cc:10:a2:50:bf:b7:cb:cb:37:cb:10:7a: 08:cc:c7:d5:e5:39:2e:9b:23:a8:bd:29:6c:fa:2b: 77:61:e0:9c:71:29:e7:77:b8:c6:31:30:9c:28:cb: b8:5e:5f:10:5c:23:5f:74:5e:19:bf:23:72:12:a9: 32:a5:bc:1e:56:32:e3:56:bc:dc:51:e5:57:3c:37: 7d:3f:c3:a5:30:dc:d2:0e:ac:44:cb:4e:70:15:b1: b1:02:9f:d0:d9:66:85:52:d5:4b:b6:6c:96:df:b6: 80:49:8a:cb:6b:6d:db:dd:37:61:75:6d:c4:71:62: ab:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:24:BB:EF:B6:04:2F:F7:A4:54:1B:75:A6:C0:CC:CF:86:91:2F:77 X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.110.0/23 IPv6: 2406:9dc0::/44 2406:9dc0:60::/44 2406:9dc0:100::/44 2406:9dc0:1010::/44 2406:9dc0:6661::/48 Signature Algorithm: sha256WithRSAEncryption ac:11:65:fd:80:1d:78:42:e6:70:8b:49:8d:a2:a0:95:7a:a2: 8a:12:ec:a6:15:23:df:79:0d:99:4a:13:a8:a0:af:fc:58:84: cb:10:34:22:47:2f:14:e3:66:a0:a2:e0:a1:53:1d:99:e5:3a: 85:10:f9:ed:97:bd:8b:96:04:5f:a5:af:0d:44:c8:d7:4b:53: 8f:4e:00:9e:db:4c:76:68:54:ca:42:ec:4d:cd:80:e0:6e:d5: 63:c4:52:f9:ec:c8:49:39:10:0a:b9:62:82:1a:f0:5e:40:9e: 0d:e0:5d:1c:93:77:63:6f:cb:89:5b:55:1c:cc:ea:24:94:f8: 23:3f:f1:f9:72:90:81:e8:85:6b:96:d4:14:5b:08:e9:e5:17: cf:60:b3:fb:0a:53:6d:75:2e:06:bd:6f:94:18:11:59:99:a1: f1:6b:a1:e5:5b:24:a6:73:18:4e:17:5d:87:e9:1d:68:c5:68: b5:97:d4:9f:3e:a9:45:13:d4:c3:d8:cd:02:cf:5c:d6:02:32: 45:44:16:3b:89:78:c7:51:61:af:fb:72:7a:75:62:2d:03:df: ba:68:f2:85:c8:ca:81:38:ac:4c:80:b3:2a:fe:4a:8d:f5:a9: 7f:89:10:8f:e4:e3:d2:29:09:b2:6c:fe:09:9c:93:0b:d3:c6: 72:9f:61:1b -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjMxMTIwMjI1MDI0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTViZTJhZi1lZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBwIa5pyXRd0Up8plZVlo8C7PIMCPWGZ13ueGmgQg6D35LQCiGpI8+3KttUB x/xQps08zBbDJoiTE9VTfIUfREEnqJBBnbuUrsmJfME1fGTN0LzGHl1t0MxJzi4E nnTI0QSDwbCW9HEdF7ivTrCHYsZoRM0cjsD4DZTCKdm167QLVE7WPYQXsNfMEKJQ v7fLyzfLEHoIzMfV5TkumyOovSls+it3YeCccSnnd7jGMTCcKMu4Xl8QXCNfdF4Z vyNyEqkypbweVjLjVrzcUeVXPDd9P8OlMNzSDqxEy05wFbGxAp/Q2WaFUtVLtmyW 37aASYrLa23b3TdhdW3EcWKreQIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFE8ku++2 BC/3pFQbdabAzM+GkS93MB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvQkJCQzA2MUEx MjI3MTFFQjk1MkNBQjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMAwEAgABMAYDBAFnnW4wMwQCAAIwLQMHBCQGncAAAAMHBCQGncAAYAMHBCQG ncABAAMHBCQGncAQEAMHACQGncBmYTANBgkqhkiG9w0BAQsFAAOCAQEArBFl/YAd eELmcItJjaKglXqiihLsphUj33kNmUoTqKCv/FiEyxA0IkcvFONmoKLgoVMdmeU6 hRD57Ze9i5YEX6WvDUTI10tTj04AnttMdmhUykLsTc2A4G7VY8RS+ezISTkQCrli ghrwXkCeDeBdHJN3Y2/LiVtVHMzqJJT4Iz/x+XKQgeiFa5bUFFsI6eUXz2Cz+wpT bXUuBr1vlBgRWZmh8Wuh5VskpnMYThddh+kdaMVotZfUnz6pRRPUw9jNAs9c1gIy RUQWO4l4x1Fhr/tyenViLQPfumjyhcjKgTisTICzKv5KjfWpf4kQj+Tj0ikJsmz+ CZyTC9PGcp9hGw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org