$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa File: 35341F3E4EAE11EF811DC17BC4F9AE02.roa (raw, json) Hash identifier: 1g7V3yJi0/XsTFsCpcEg/UcPiKQqpqW1UWTVYTWMIZE= Subject key identifier: B5:33:17:C4:35:31:7D:33:C1:52:B6:F1:E5:88:1C:BD:9E:56:C0:84 Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Certificate serial: 0672 Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:51 +0000 ROA not before: Wed 30 Apr 2025 22:33:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 194.193.16.0/24 maxlen: 24 194.193.17.0/24 maxlen: 24 194.193.18.0/24 maxlen: 24 194.193.19.0/24 maxlen: 24 194.193.28.0/24 maxlen: 24 194.193.29.0/24 maxlen: 24 194.193.30.0/24 maxlen: 24 194.193.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Validity Not Before: Apr 30 22:33:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a54f-e7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e3:1f:6f:ec:53:03:bd:a5:9b:34:4f:0c:31: e8:1a:5f:14:74:c2:2d:b0:dc:9e:1c:74:f0:5d:51: 5e:a6:c9:f7:3d:25:a6:e7:55:05:e5:e1:7c:65:fc: 15:94:0a:b8:c5:a2:54:38:06:c0:08:c9:e4:30:e4: 73:06:f3:7b:7e:30:ad:0c:f0:5d:4a:8f:24:6f:d7: d3:10:d4:75:95:83:47:08:bd:f1:17:c2:b1:7d:6b: 7a:82:2b:43:28:2e:37:bb:e3:cc:63:86:49:4d:42: 3b:c4:02:06:35:71:45:d2:ab:87:14:8b:1f:6f:66: 58:6c:f6:3c:14:ab:6f:ab:be:5a:d4:8b:2f:37:ae: db:61:73:5f:98:23:9a:4a:5d:e1:9d:d0:43:25:d6: 9f:ba:73:c1:2e:ac:d1:17:5c:7a:62:00:72:a1:6b: 8d:b5:88:ec:66:58:90:34:98:6a:2b:57:ab:4e:c8: d9:54:ba:e2:c8:15:bb:bb:92:2a:a8:4b:7e:44:e3: b4:ff:58:be:3f:ac:9a:e1:6c:79:5b:b7:7c:14:15: 7e:c0:7f:01:1b:16:6c:d1:d9:3a:71:8a:f6:47:f3: fb:8f:66:1e:4e:0e:d9:e7:05:f3:d6:be:82:6f:3c: d7:21:f2:4b:e3:93:e0:89:74:97:f5:96:d6:50:cd: b5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:33:17:C4:35:31:7D:33:C1:52:B6:F1:E5:88:1C:BD:9E:56:C0:84 X509v3 Authority Key Identifier: keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.193.16.0/22 194.193.28.0/22 Signature Algorithm: sha256WithRSAEncryption a8:86:55:9b:69:63:0a:e5:b4:3c:e2:f8:a3:62:44:7c:4b:71: 72:1e:6d:b2:22:6e:b2:49:23:9c:bf:0e:a5:90:85:13:53:22: 4e:d8:1a:e6:d0:66:ef:4a:c1:af:9d:d2:86:29:30:e6:bc:04: f0:e1:41:9b:45:27:f7:15:ed:7f:63:9a:9b:03:49:57:14:66: fb:be:cd:03:08:b9:2a:6c:dd:9e:e2:22:79:3c:83:e2:8a:b7: c9:70:f3:4b:37:ee:60:a8:d0:85:7f:23:7f:4b:29:80:bd:e5: c7:e1:59:d8:8e:35:e3:47:f5:28:15:79:59:1c:35:a5:78:bf: 0a:70:c4:28:f8:f5:82:89:c5:98:44:5f:30:94:27:f0:bb:81: 96:12:9f:08:54:1f:b3:d4:f3:8f:4b:14:c7:b2:d7:fc:fb:4e: c0:8b:54:f0:ca:23:56:1b:09:c5:93:71:18:cf:ba:55:e8:fd: 7d:a9:05:8c:db:22:cf:3a:38:90:b1:12:50:c1:9c:26:76:5f: 41:a1:b1:c4:94:4c:38:0d:84:6b:1a:48:70:2e:31:89:f2:17: 3c:a0:6d:28:b5:3d:3b:aa:a1:75:ca:28:89:a7:cb:c9:f2:f1: a9:5a:98:73:f6:24:e2:fc:3a:92:01:13:ab:d2:62:5d:82:ce: bf:66:03:28 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEI2RkQ2RjRCNEZCN0MzMjQ3QzU5OTI5OUIyRThCQUZC NUE4QkJBNzIwHhcNMjUwNDMwMjIzMzUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU0Zi1lN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OMfb+xTA72lmzRPDDHoGl8UdMItsNyeHHTwXVFepsn3PSWm51UF5eF8ZfwV lAq4xaJUOAbACMnkMORzBvN7fjCtDPBdSo8kb9fTENR1lYNHCL3xF8KxfWt6gitD KC43u+PMY4ZJTUI7xAIGNXFF0quHFIsfb2ZYbPY8FKtvq75a1IsvN67bYXNfmCOa Sl3hndBDJdafunPBLqzRF1x6YgByoWuNtYjsZliQNJhqK1erTsjZVLriyBW7u5Iq qEt+ROO0/1i+P6ya4Wx5W7d8FBV+wH8BGxZs0dk6cYr2R/P7j2YeTg7Z5wXz1r6C bzzXIfJL45PgiXSX9ZbWUM21CQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLUzF8Q1 MX0zwVK28eWIHL2eVsCEMB8GA1UdIwQYMBaAFLb9b0tPt8MkfFmSmbLouvtai7py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC82REQ5RjMzNDdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi90djF2UzAtM3d5UjhXWktac3VpNi0xcUx1 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3R2MXZTMC0zd3lSOFdaS1pzdWk2LTFxTHVuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNkREOUYzMzQ3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvMzUzNDFGM0U0 RUFFMTFFRjgxMURDMTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALCwRADBALCwRwwDQYJKoZIhvcNAQELBQADggEBAKiGVZtp YwrltDzi+KNiRHxLcXIebbIibrJJI5y/DqWQhRNTIk7YGubQZu9Kwa+d0oYpMOa8 BPDhQZtFJ/cV7X9jmpsDSVcUZvu+zQMIuSps3Z7iInk8g+KKt8lw80s37mCo0IV/ I39LKYC95cfhWdiONeNH9SgVeVkcNaV4vwpwxCj49YKJxZhEXzCUJ/C7gZYSnwhU H7PU849LFMey1/z7TsCLVPDKI1YbCcWTcRjPulXo/X2pBYzbIs86OJCxElDBnCZ2 X0GhscSUTDgNhGsaSHAuMYnyFzygbSi1PTuqoXXKKImny8ny8alamHP2JOL8OpIB E6vSYl2Czr9mAyg= -----END CERTIFICATE-----Generated at Thu Jun 5 18:48:36 2025 by rpki-client