$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa File: 348854286B8F11ED9B07DD15C4F9AE02.roa (raw, json) Hash identifier: Ocok0YaJANXTvMflX7rHaTlDxzxA5eYlN+U42YstUOc= Subject key identifier: A1:A5:85:35:15:9E:50:CA:47:F1:89:F0:34:DF:FE:B7:E8:49:04:64 Certificate issuer: /CN=A91604AC/serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Certificate serial: 0126 Authority key identifier: A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa Signing time: Wed 03 Apr 2024 01:02:44 +0000 ROA not before: Wed 03 Apr 2024 01:02:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137455 IP address blocks: 185.61.140.0/23 maxlen: 23 185.61.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC/serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Validity Not Before: Apr 3 01:02:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660caab3-d25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4c:7c:56:f2:81:a9:20:56:41:6d:2d:15:60: 6b:7b:b9:7b:71:e9:e3:f4:e4:dd:8a:6d:06:57:9b: d7:84:a0:42:1d:6a:aa:1d:c2:2b:25:58:98:41:51: c2:c7:27:cc:b6:47:51:df:13:5f:71:8a:99:05:31: 1f:9b:d1:91:b3:df:f3:dc:10:05:50:b4:b7:f5:95: e4:61:44:75:58:6b:9c:46:50:c0:2f:c4:54:72:74: e6:40:e3:1f:95:6b:c1:0f:9e:25:fb:4e:f1:93:5f: a1:e7:67:3a:d3:39:f2:4d:96:70:5a:42:f8:b5:d2: f6:80:95:04:e5:7b:d9:ac:ff:79:37:7c:ab:04:f3: e1:9a:44:4d:ad:6b:98:ba:b7:3c:ff:db:55:4b:a2: 33:0b:43:f4:4d:23:24:2c:e2:cc:fc:c6:4f:26:98: c7:04:03:01:06:aa:2e:68:67:21:cf:59:02:e2:1f: b2:3a:5e:68:0f:2d:ac:9c:bb:fc:e0:be:2a:48:d3: 86:75:6d:74:18:e3:66:00:10:b5:b3:bb:fc:ad:89: 07:a4:a7:20:34:5a:0d:52:fe:d9:5d:78:2b:00:92: 32:8b:08:71:7b:45:85:64:e0:83:70:28:2c:3f:4b: c9:6f:f1:45:b0:cc:f6:1a:d1:bc:d1:7c:77:e5:6e: c7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A5:85:35:15:9E:50:CA:47:F1:89:F0:34:DF:FE:B7:E8:49:04:64 X509v3 Authority Key Identifier: keyid:A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.61.140.0/22 Signature Algorithm: sha256WithRSAEncryption 25:97:3c:0f:36:f3:77:56:8b:f8:1b:da:45:2a:ac:89:e1:9f: 0f:8c:af:f3:66:11:30:96:2d:c2:e6:2f:3d:c5:27:7d:ce:f1: a4:96:48:9c:18:53:d5:cf:9c:27:ff:c6:c7:c7:aa:f0:fd:9f: 63:92:a0:1d:67:5e:16:98:19:fb:bc:1e:47:23:58:07:6f:62: c0:fd:8f:d6:5d:7d:19:a4:b4:7a:0e:b1:e3:ae:cb:f6:64:a0: dd:7d:57:bf:22:48:e1:2d:29:fd:3e:0b:28:dc:ac:73:58:fc: 53:5e:47:b5:eb:bd:09:53:b1:f4:40:26:53:5e:ed:b0:8d:ed: ca:a5:7c:73:7b:4b:4b:b2:5d:e2:66:04:b9:11:e7:5d:50:75: 91:11:81:a1:63:30:fe:a7:4c:ce:0b:42:47:59:1a:82:9b:1e: 71:1b:24:a9:28:a4:68:6d:47:e1:06:04:d9:68:61:2b:ce:c0: 1a:28:c9:d9:80:01:d3:41:05:9b:f0:05:bf:c1:21:4b:2b:7b: 32:f1:b9:9f:65:4c:b8:f3:45:0b:e6:1b:ca:cc:d1:8f:9d:92: c4:15:6b:46:1d:20:5e:2f:18:9d:e1:d8:4b:a7:6b:b9:b3:fe: 1b:f3:17:d0:25:29:91:5b:9b:19:8c:6f:ef:36:01:86:73:bc: fc:35:39:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKEE4NEU3ODM2NjlDMkY5OTc4NEYzNDRGQ0QzMjNGQ0Y5 OTFDQzQwRkIwHhcNMjQwNDAzMDEwMjQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYWFiMy1kMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEx8VvKBqSBWQW0tFWBre7l7cenj9OTdim0GV5vXhKBCHWqqHcIrJViYQVHC xyfMtkdR3xNfcYqZBTEfm9GRs9/z3BAFULS39ZXkYUR1WGucRlDAL8RUcnTmQOMf lWvBD54l+07xk1+h52c60znyTZZwWkL4tdL2gJUE5XvZrP95N3yrBPPhmkRNrWuY urc8/9tVS6IzC0P0TSMkLOLM/MZPJpjHBAMBBqouaGchz1kC4h+yOl5oDy2snLv8 4L4qSNOGdW10GONmABC1s7v8rYkHpKcgNFoNUv7ZXXgrAJIyiwhxe0WFZOCDcCgs P0vJb/FFsMz2GtG80Xx35W7HaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGlhTUV nlDKR/GJ8DTf/rfoSQRkMB8GA1UdIwQYMBaAFKhOeDZpwvmXhPNE/NMj/PmRzED7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy8zNEJFQzVGNDQ0 NEMxMUVEQkRBOTEyN0NDNEY5QUUwMi9xRTU0Tm1uQy1aZUU4MFQ4MHlQOC1aSE1R UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3FFNTRObW5DLVplRTgwVDgweVA4LVpITVFQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvMzRCRUM1RjQ0NDRDMTFFREJEQTkxMjdDQzRGOUFFMDIvMzQ4ODU0Mjg2 QjhGMTFFRDlCMDdERDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5PYwwDQYJKoZIhvcNAQELBQADggEBACWXPA8283dWi/gb 2kUqrInhnw+Mr/NmETCWLcLmLz3FJ33O8aSWSJwYU9XPnCf/xsfHqvD9n2OSoB1n XhaYGfu8HkcjWAdvYsD9j9ZdfRmktHoOseOuy/ZkoN19V78iSOEtKf0+CyjcrHNY /FNeR7XrvQlTsfRAJlNe7bCN7cqlfHN7S0uyXeJmBLkR511QdZERgaFjMP6nTM4L QkdZGoKbHnEbJKkopGhtR+EGBNloYSvOwBooydmAAdNBBZvwBb/BIUsrezLxuZ9l TLjzRQvmG8rM0Y+dksQVa0YdIF4vGJ3h2Euna7mz/hvzF9AlKZFbmxmMb+82AYZz vPw1OVM= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:16 2024 by rpki-client on console-fra.rpki-client.org