$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/BB8F87B4D4B011ECAA427351C4F9AE02.roa File: BB8F87B4D4B011ECAA427351C4F9AE02.roa (raw, json) Hash identifier: KmBdkHIjhU2Nm1oHzHefyN2rINFdSPmr51k5cRUbE8s= Subject key identifier: F9:56:61:61:31:D8:65:0C:21:A0:74:4E:2E:A2:F6:D0:60:ED:D4:1B Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 3399 Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/BB8F87B4D4B011ECAA427351C4F9AE02.roa Signing time: Fri 24 Nov 2023 14:20:06 +0000 ROA not before: Fri 24 Nov 2023 14:20:06 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 1299 IP address blocks: 27.123.212.0/24 maxlen: 24 27.123.213.0/24 maxlen: 24 27.123.214.0/24 maxlen: 24 27.123.215.0/24 maxlen: 24 103.29.144.0/24 maxlen: 24 103.29.145.0/24 maxlen: 24 103.29.146.0/24 maxlen: 24 103.29.147.0/24 maxlen: 24 202.126.88.0/24 maxlen: 24 202.126.89.0/24 maxlen: 24 202.126.90.0/24 maxlen: 24 202.126.91.0/24 maxlen: 24 2405:600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 14:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13209 (0x3399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: Nov 24 14:20:06 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6560b116-8568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:dd:5a:b5:f3:6b:a8:10:f2:9b:6d:f3:07: af:d9:67:a7:2a:1d:96:75:04:b6:2b:d2:53:62:ef: 87:be:c1:0e:16:c4:f6:4f:a1:92:35:ad:9a:77:4c: 18:dc:88:b2:e5:d2:9f:0b:85:6b:d8:08:38:4c:59: 66:a0:d6:de:01:f4:39:3d:da:22:f9:7b:a7:db:14: 9b:69:ca:7c:66:53:b6:ea:42:94:f3:b7:77:0e:3c: d8:5b:48:3c:fe:39:9c:de:b7:48:98:8a:a3:32:f4: c8:87:71:1c:33:ba:10:56:2d:3a:22:da:72:2d:37: 2d:58:33:83:a5:8d:1f:79:8e:3e:e1:9c:56:26:7b: 8a:ff:d6:5d:5b:68:22:8f:68:e2:b6:ea:0b:9b:39: 08:57:6c:0d:e2:99:2f:91:e1:1f:2a:1d:02:84:4c: 4f:2a:c3:28:17:f5:c9:41:a2:b5:26:89:33:e5:b6: fa:60:2b:ad:30:ba:44:27:d3:de:ca:1b:a8:36:e0: 81:f6:6c:f5:c3:9f:b7:ea:7d:8a:a0:f5:ec:98:1e: c8:19:c5:de:d6:8a:cf:1e:f7:c7:87:32:24:28:b2: 86:4c:97:d0:6b:33:9d:e9:03:cd:eb:2b:0c:4d:92: e7:5b:3e:54:3f:76:24:e6:8e:82:87:17:f1:33:03: 36:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:56:61:61:31:D8:65:0C:21:A0:74:4E:2E:A2:F6:D0:60:ED:D4:1B X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/BB8F87B4D4B011ECAA427351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.212.0/22 103.29.144.0/22 202.126.88.0/22 IPv6: 2405:600::/32 Signature Algorithm: sha256WithRSAEncryption 43:08:12:14:48:c6:a1:5a:33:fc:e7:f4:85:99:0f:96:9d:a2: 83:4d:89:19:f7:44:dd:32:e5:8e:7e:1e:2f:c4:1f:11:20:1b: 3c:c9:14:8f:70:28:fe:93:3b:ec:6f:69:c9:39:29:44:22:9a: d7:99:d4:51:8e:a1:71:41:d9:9d:04:4f:9b:91:e9:58:f4:98: 74:c3:65:e1:35:75:01:6f:11:22:72:ca:41:1d:2f:d4:a7:84: dc:5a:30:9f:5b:7b:f9:8b:7f:43:62:4b:30:8d:7c:83:c4:4d: 75:77:ed:47:23:57:0e:8c:08:e8:a5:f0:5c:1c:dd:da:c3:f1: b5:9c:83:ec:23:49:ab:e7:ee:34:80:ba:26:eb:71:75:c8:40: 36:00:b3:54:5a:02:a7:8e:48:a1:77:04:00:38:97:37:d9:a5: f4:45:a9:37:2c:1b:77:a1:41:ab:5e:2e:36:8d:16:b8:68:67: 21:a8:79:bf:c0:52:d9:e7:db:6c:08:d0:36:c9:c0:96:34:b2: 15:c3:94:32:92:ae:5e:fc:61:f8:cb:ba:f7:7d:85:b0:f9:77: 43:0a:dc:cd:25:e2:10:10:9c:9d:8d:ae:21:fb:ba:a6:0d:27: 54:ee:0c:4f:c8:5a:15:16:91:20:3b:c2:44:ee:51:1d:9f:a3: 20:bd:fd:4d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICM5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjMxMTI0MTQyMDA2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwYjExNi04NTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN3dWrXza6gQ8ptt8wev2WenKh2WdQS2K9JTYu+HvsEOFsT2T6GSNa2ad0wY 3Iiy5dKfC4Vr2Ag4TFlmoNbeAfQ5Pdoi+Xun2xSbacp8ZlO26kKU87d3DjzYW0g8 /jmc3rdImIqjMvTIh3EcM7oQVi06ItpyLTctWDODpY0feY4+4ZxWJnuK/9ZdW2gi j2jituoLmzkIV2wN4pkvkeEfKh0ChExPKsMoF/XJQaK1Jokz5bb6YCutMLpEJ9Pe yhuoNuCB9mz1w5+36n2KoPXsmB7IGcXe1orPHvfHhzIkKLKGTJfQazOd6QPN6ysM TZLnWz5UP3Yk5o6ChxfxMwM2IQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFPlWYWEx 2GUMIaB0Ti6i9tBg7dQbMB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE2MjEvOTlENjhEQ0UxRDY5MTFFMkE0NjQwREE3MDhCMDJDRDIvQkI4Rjg3QjRE NEIwMTFFQ0FBNDI3MzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIbe9QDBAJnHZADBALKflgwDQQCAAIwBwMFACQFBgAwDQYJ KoZIhvcNAQELBQADggEBAEMIEhRIxqFaM/zn9IWZD5adooNNiRn3RN0y5Y5+Hi/E HxEgGzzJFI9wKP6TO+xvack5KUQimteZ1FGOoXFB2Z0ET5uR6Vj0mHTDZeE1dQFv ESJyykEdL9SnhNxaMJ9be/mLf0NiSzCNfIPETXV37UcjVw6MCOil8Fwc3drD8bWc g+wjSavn7jSAuibrcXXIQDYAs1RaAqeOSKF3BAA4lzfZpfRFqTcsG3ehQateLjaN FrhoZyGoeb/AUtnn22wI0DbJwJY0shXDlDKSrl78YfjLuvd9hbD5d0MK3M0l4hAQ nJ2NriH7uqYNJ1TuDE/IWhUWkSA7wkTuUR2foyC9/U0= -----END CERTIFICATE-----Generated at Tue May 14 16:25:26 2024 by rpki-client on console-ams.rpki-client.org