$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: 7jePkEu9MxT/Kh6uZdTRYMEHv1IQky/RLYbneNqs4PY= Subject key identifier: 28:AF:B0:AC:75:18:45:50:C9:A5:C8:8E:17:FD:81:BD:23:74:33:D6 Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 0693 Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Mon 28 Apr 2025 23:02:51 +0000 ROA not before: Mon 28 Apr 2025 23:02:51 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B, serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: Apr 28 23:02:51 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=6810091a-c645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b1:76:47:ce:30:5e:86:33:64:62:14:51:8e: 63:fe:ee:4d:a6:7d:76:65:76:fa:db:92:c3:79:14: ac:cd:2b:09:2d:4d:d7:11:7f:91:96:d2:55:fa:55: 84:6c:0f:5b:f7:ad:0b:e1:90:a4:dd:be:ef:27:b7: c7:d5:95:4e:35:5c:ad:4c:10:70:9e:8e:b8:a0:02: ed:a3:5f:f7:13:4d:2d:9e:ad:04:47:69:19:72:7f: a9:de:c9:46:37:f6:8e:76:1c:99:fb:9d:30:87:00: 99:ed:08:cf:fe:49:94:a5:1b:a2:a4:2a:22:95:43: 5a:29:b5:42:83:79:80:0a:50:a3:76:35:ed:6f:9f: 7d:bb:9f:8a:55:54:b1:30:ce:1b:e9:bf:7a:b8:a2: 8d:93:c1:00:a2:93:f0:24:7c:2e:0b:1e:6c:3f:05: f0:34:62:be:ab:d8:d7:74:b8:45:ee:44:1c:0d:5a: 68:0f:c1:6e:08:3f:6f:b7:81:bd:b5:27:37:5d:fa: d2:77:d9:4e:d1:c9:77:1b:b9:56:1c:73:3d:d1:dd: af:f1:35:05:ae:d9:e5:47:78:65:f7:25:0a:20:77: 12:28:41:96:56:58:c9:93:c4:fe:fc:21:7b:79:eb: dd:95:f6:d2:ce:17:01:73:28:f7:f7:06:56:54:1d: 73:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AF:B0:AC:75:18:45:50:C9:A5:C8:8E:17:FD:81:BD:23:74:33:D6 X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 76:44:a6:39:c0:bc:7f:65:e4:b6:48:e9:36:a9:5c:e5:6d:7a: d2:84:b8:05:81:88:09:dd:45:db:da:2a:37:44:fd:e3:6c:08: 89:0a:69:a1:27:9b:37:f6:93:41:a3:1e:37:13:2b:b5:dd:5f: 22:0e:ec:c5:2a:6f:c3:f2:94:ff:29:c5:95:86:e8:74:4f:83: 09:b4:39:20:ae:24:f0:d2:df:6b:5e:35:02:97:87:dc:2f:01: ea:1b:b9:c5:73:88:4b:2f:92:c2:12:61:a4:a3:04:4c:21:eb: b1:8b:69:16:d5:cd:97:f5:dd:16:fe:b9:e8:96:55:67:19:d1: f9:19:d7:df:30:49:e6:f9:a4:8b:57:3a:7f:af:b0:4c:81:32: c4:21:d4:c1:e5:3d:eb:53:08:71:b1:49:89:79:0b:61:0f:b7: 90:c2:50:a3:d9:1c:9b:e5:0b:c2:81:7c:77:58:d4:20:df:ad: 29:11:2b:9a:1b:ae:40:03:62:a0:77:94:a5:5c:9f:d0:00:34: 86:d4:4a:63:cf:91:07:5b:68:4d:a4:c2:7e:ee:1c:73:b0:12: 6d:51:40:e0:4f:5c:7b:56:cc:13:bb:77:90:52:9f:fa:56:cc: de:e3:98:43:92:50:66:7e:6c:bc:e6:1e:dd:31:f4:1c:30:4f: 33:76:3a:ee -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjUwNDI4MjMwMjUxWhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMDkxYS1jNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LF2R84wXoYzZGIUUY5j/u5Npn12ZXb625LDeRSszSsJLU3XEX+RltJV+lWE bA9b960L4ZCk3b7vJ7fH1ZVONVytTBBwno64oALto1/3E00tnq0ER2kZcn+p3slG N/aOdhyZ+50whwCZ7QjP/kmUpRuipCoilUNaKbVCg3mAClCjdjXtb599u5+KVVSx MM4b6b96uKKNk8EAopPwJHwuCx5sPwXwNGK+q9jXdLhF7kQcDVpoD8FuCD9vt4G9 tSc3XfrSd9lO0cl3G7lWHHM90d2v8TUFrtnlR3hl9yUKIHcSKEGWVljJk8T+/CF7 eevdlfbSzhcBcyj39wZWVB1zFwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCivsKx1 GEVQyaXIjhf9gb0jdDPWMB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnotAwDwQCAAIwCQMHACABDfX8gDANBgkqhkiG9w0BAQsF AAOCAQEAdkSmOcC8f2XktkjpNqlc5W160oS4BYGICd1F29oqN0T942wIiQppoSeb N/aTQaMeNxMrtd1fIg7sxSpvw/KU/ynFlYbodE+DCbQ5IK4k8NLfa141ApeH3C8B 6hu5xXOISy+SwhJhpKMETCHrsYtpFtXNl/XdFv656JZVZxnR+RnX3zBJ5vmki1c6 f6+wTIEyxCHUweU961MIcbFJiXkLYQ+3kMJQo9kcm+ULwoF8d1jUIN+tKRErmhuu QANioHeUpVyf0AA0htRKY8+RB1toTaTCfu4cc7ASbVFA4E9ce1bME7t3kFKf+lbM 3uOYQ5JQZn5svOYe3TH0HDBPM3Y67g== -----END CERTIFICATE-----Generated at Tue May 13 19:36:45 2025 by rpki-client