$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/05BE20062C5811EAA90F4B0EC4F9AE02.roa File: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (raw, json) Hash identifier: KZLdlP1OQSAqnUANoQynhHKfuaNstAKbyzLi1TUSbtw= Subject key identifier: 15:6A:C3:A9:20:E0:E1:5B:C6:9E:73:B1:35:38:66:25:77:5E:EB:AF Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0BC8 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/05BE20062C5811EAA90F4B0EC4F9AE02.roa Signing time: Wed 08 Jan 2025 17:04:50 +0000 ROA not before: Wed 08 Jan 2025 17:04:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 17804 IP address blocks: 185.19.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD Validity Not Before: Jan 8 17:04:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677eb031-bbd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:22:ee:06:18:de:8c:68:fc:f6:e8:15:3e:a2: ea:57:0f:da:a4:05:af:c6:4e:e4:48:ff:76:b2:42: 50:f4:3c:2a:60:f5:45:d5:99:ac:f1:42:92:1d:cf: 52:b1:dc:f4:fa:fd:25:b9:15:1c:ff:1c:e8:9e:02: 94:c2:82:fb:24:9f:04:43:ac:2d:17:43:47:18:5b: 9b:b2:07:44:9b:fb:17:6e:ad:ea:22:4f:91:08:48: 89:a2:8a:6d:62:3f:3e:ec:d9:fb:19:33:fe:b1:7a: 7e:15:7b:63:80:3c:8c:5d:91:a5:99:2f:49:9d:09: 10:60:fc:f0:3d:72:ac:a3:fc:81:ed:49:0d:70:14: 6d:ff:e9:58:39:ed:9c:80:92:32:86:ac:56:08:ee: 05:a4:81:0a:6d:02:4d:52:c1:e8:d8:a7:9e:52:55: df:ff:40:2e:de:1d:ab:2c:48:9a:b3:d4:83:a9:0d: a7:b6:d4:a4:ac:4e:1c:ba:56:e6:2d:03:ad:b1:b6: 2b:cb:c6:22:2b:ef:cc:1e:e8:54:88:51:58:1c:77: bc:d4:ac:f6:5e:23:42:31:96:0b:06:68:df:cd:1d: 67:e8:90:11:12:e0:0c:89:23:d1:d3:be:d7:03:44: 4d:24:ba:88:af:e9:3a:1a:fb:c8:59:e0:84:9f:07: 24:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6A:C3:A9:20:E0:E1:5B:C6:9E:73:B1:35:38:66:25:77:5E:EB:AF X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/05BE20062C5811EAA90F4B0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.19.104.0/22 Signature Algorithm: sha256WithRSAEncryption 66:8a:5f:5d:16:2e:55:1e:1c:f1:f6:ed:c8:69:92:34:3c:68: 38:2b:46:75:bb:54:ae:0e:7a:1f:d4:f2:af:05:85:c0:73:7e: 74:ac:41:06:d6:9c:6c:62:47:8b:57:81:f7:7f:d5:24:db:89: 37:56:b9:27:08:30:fa:d6:71:ce:1d:13:1a:29:5d:42:a1:83: 36:b0:8e:9f:95:35:b9:b1:c8:e8:07:3c:80:65:2e:64:f7:33: 5f:35:1e:e3:cb:08:98:f9:94:fa:bb:be:39:dc:9a:ba:ab:46: 46:e5:64:6c:19:75:2f:ec:a7:0d:37:af:d7:a1:76:66:70:43: 22:3a:ad:38:cb:32:c6:82:d0:c4:37:78:d6:e5:07:36:a6:a1: 37:28:e0:5f:4f:d9:f1:4f:ae:8d:31:3c:e6:9a:1a:68:e3:40: b8:b9:0b:63:1e:a6:6e:45:69:28:95:42:7c:1f:0f:79:97:e2: f5:99:ab:03:62:e2:ef:62:f5:80:48:f8:27:25:9a:d8:3d:25: 9a:c6:93:0e:95:85:a5:7a:43:c6:46:b7:95:e8:a8:97:32:35: 40:48:2e:67:f3:80:fa:b9:30:44:e2:3d:86:43:45:48:17:fb: fa:da:98:9c:01:c5:c8:8a:8f:7d:84:e4:16:62:01:f1:42:ab: c8:83:2b:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjUwMTA4MTcwNDUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlYjAzMS1iYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziLuBhjejGj89ugVPqLqVw/apAWvxk7kSP92skJQ9DwqYPVF1Zms8UKSHc9S sdz0+v0luRUc/xzongKUwoL7JJ8EQ6wtF0NHGFubsgdEm/sXbq3qIk+RCEiJoopt Yj8+7Nn7GTP+sXp+FXtjgDyMXZGlmS9JnQkQYPzwPXKso/yB7UkNcBRt/+lYOe2c gJIyhqxWCO4FpIEKbQJNUsHo2KeeUlXf/0Au3h2rLEias9SDqQ2nttSkrE4culbm LQOtsbYry8YiK+/MHuhUiFFYHHe81Kz2XiNCMZYLBmjfzR1n6JAREuAMiSPR077X A0RNJLqIr+k6GvvIWeCEnwckXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBVqw6kg 4OFbxp5zsTU4ZiV3XuuvMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyREQvREI0QTZDRkMxMEQzMTFFQTlCRDFBNTVEQzRGOUFFMDIvMDVCRTIwMDYy QzU4MTFFQUE5MEY0QjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5E2gwDQYJKoZIhvcNAQELBQADggEBAGaKX10WLlUeHPH2 7chpkjQ8aDgrRnW7VK4Oeh/U8q8FhcBzfnSsQQbWnGxiR4tXgfd/1STbiTdWuScI MPrWcc4dExopXUKhgzawjp+VNbmxyOgHPIBlLmT3M181HuPLCJj5lPq7vjncmrqr RkblZGwZdS/spw03r9ehdmZwQyI6rTjLMsaC0MQ3eNblBzamoTco4F9P2fFPro0x POaaGmjjQLi5C2Mepm5FaSiVQnwfD3mX4vWZqwNi4u9i9YBI+Cclmtg9JZrGkw6V haV6Q8ZGt5XoqJcyNUBILmfzgPq5METiPYZDRUgX+/ramJwBxciKj32E5BZiAfFC q8iDK78= -----END CERTIFICATE-----Generated at Sun Apr 6 02:56:48 2025 by rpki-client