$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/BB9C14F6AA5511EB86F34077C4F9AE02.roa File: BB9C14F6AA5511EB86F34077C4F9AE02.roa (raw, json) Hash identifier: nSUJ0/HqxNNnf+C4gJtmDgzN3iO6kzt2II7TMDE2rgA= Subject key identifier: FB:C8:2B:81:A2:2A:87:DC:21:C4:96:55:10:29:56:6A:C3:49:93:8B Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 067A Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/BB9C14F6AA5511EB86F34077C4F9AE02.roa Signing time: Fri 06 Sep 2024 07:43:10 +0000 ROA not before: Fri 06 Sep 2024 07:43:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24112 IP address blocks: 166.81.6.0/24 maxlen: 24 166.81.62.0/24 maxlen: 24 166.81.63.0/24 maxlen: 24 166.81.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Validity Not Before: Sep 6 07:43:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66dab28e-35de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:50:b8:ae:3c:f7:c9:79:43:45:20:ca:12:84: c6:26:24:e7:50:5f:fa:8f:06:b7:22:ea:55:69:ff: 14:fd:55:ca:de:8f:32:4c:23:a6:a6:13:3a:08:c1: 25:47:a2:3f:53:42:79:50:d9:79:76:59:58:d5:cb: f4:23:29:de:37:c8:73:47:da:1c:a6:2d:f0:ab:3c: 76:de:08:de:a6:98:7b:23:8c:06:e4:37:a9:f5:f8: 7b:94:c9:73:d5:c6:5d:3b:00:e8:05:fa:d2:1e:76: 9a:ee:ab:0a:b7:12:c3:d9:d9:ef:53:d8:2c:c9:03: a6:7d:4b:c7:d7:fb:b6:53:79:75:aa:59:fa:1d:11: c2:eb:5e:ad:66:17:90:a9:d5:21:78:95:94:2b:d1: 85:e0:27:60:fb:11:07:8e:15:f9:0f:2b:2d:09:e3: 82:d1:83:44:bc:73:a9:50:ea:70:c8:aa:3d:27:07: 9f:26:3a:99:9c:5b:3c:2c:1d:5b:90:ae:cc:81:cc: b6:6e:bf:5c:5c:52:1a:57:db:b8:e3:1d:78:1f:c5: f6:4c:c0:1d:ec:c6:42:2a:7b:91:2b:de:48:ef:61: b6:ad:27:92:04:6c:a4:6b:04:66:47:67:1b:44:bc: 8f:3c:3d:cd:78:85:0a:c0:fd:11:6b:77:af:3b:cb: 77:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C8:2B:81:A2:2A:87:DC:21:C4:96:55:10:29:56:6A:C3:49:93:8B X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/BB9C14F6AA5511EB86F34077C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.81.6.0/24 166.81.62.0/23 166.81.83.0/24 Signature Algorithm: sha256WithRSAEncryption 18:f6:75:a7:3d:50:40:e0:b1:0f:2d:32:7d:ae:d8:69:7b:26: 4f:ff:81:cf:39:28:e6:9c:fa:23:aa:2c:e6:27:de:9c:10:c4: e4:21:c2:d3:df:11:54:5b:1d:86:73:be:32:f9:d5:65:18:a0: 3c:3e:cc:f9:06:f0:d4:77:aa:c2:c1:26:e2:62:61:6e:ad:8e: a9:c7:fd:0f:2d:c3:9d:87:34:9e:31:f0:c2:2f:94:df:5a:72: 32:5f:30:82:3b:a5:94:d0:99:b1:f4:a8:93:bc:96:1a:eb:18: 65:58:b9:16:d4:d8:91:f2:ee:c5:09:e4:64:91:1c:11:df:b4: 17:36:ad:3d:e9:c3:c1:a6:08:31:c2:15:fc:05:82:48:8a:c2: fa:d5:84:fd:e4:0b:ef:d1:55:dd:3d:5d:8b:19:02:f5:e3:cf: ec:20:8e:44:d5:c4:ef:a0:96:4a:64:09:d1:94:5a:2f:99:92: 45:9d:ca:f7:20:b8:9b:a7:67:8e:f0:23:58:a6:44:4d:42:f5: 42:5a:05:a7:8b:89:3c:05:5a:b9:8a:25:4c:18:c1:47:a2:06: 3a:8d:6b:55:ee:ba:50:8a:88:3d:bc:cc:05:af:2a:04:e1:09: a4:e2:27:8d:ad:29:0a:b9:31:61:61:72:e3:aa:c8:8a:74:fe: 18:9f:76:0f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjQwOTA2MDc0MzEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRhYjI4ZS0zNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1C4rjz3yXlDRSDKEoTGJiTnUF/6jwa3IupVaf8U/VXK3o8yTCOmphM6CMEl R6I/U0J5UNl5dllY1cv0IyneN8hzR9ocpi3wqzx23gjepph7I4wG5Dep9fh7lMlz 1cZdOwDoBfrSHnaa7qsKtxLD2dnvU9gsyQOmfUvH1/u2U3l1qln6HRHC616tZheQ qdUheJWUK9GF4Cdg+xEHjhX5DystCeOC0YNEvHOpUOpwyKo9JwefJjqZnFs8LB1b kK7Mgcy2br9cXFIaV9u44x14H8X2TMAd7MZCKnuRK95I72G2rSeSBGykawRmR2cb RLyPPD3NeIUKwP0Ra3evO8t3TQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPvIK4Gi KofcIcSWVRApVmrDSZOLMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvQkI5QzE0RjZB QTU1MTFFQjg2RjM0MDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACmUQYDBAGmUT4DBACmUVMwDQYJKoZIhvcNAQELBQADggEB ABj2dac9UEDgsQ8tMn2u2Gl7Jk//gc85KOac+iOqLOYn3pwQxOQhwtPfEVRbHYZz vjL51WUYoDw+zPkG8NR3qsLBJuJiYW6tjqnH/Q8tw52HNJ4x8MIvlN9acjJfMII7 pZTQmbH0qJO8lhrrGGVYuRbU2JHy7sUJ5GSRHBHftBc2rT3pw8GmCDHCFfwFgkiK wvrVhP3kC+/RVd09XYsZAvXjz+wgjkTVxO+glkpkCdGUWi+ZkkWdyvcguJunZ47w I1imRE1C9UJaBaeLiTwFWrmKJUwYwUeiBjqNa1XuulCKiD28zAWvKgThCaTiJ42t KQq5MWFhcuOqyIp0/hifdg8= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org