$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa File: 35341F3E4EAE11EF811DC17BC4F9AE02.roa (raw, json) Hash identifier: enNVOzFUB83x7iJjfLJWQJYDSM1EIlchFYs8Y1Lu3uk= Subject key identifier: E3:6A:B9:ED:F0:10:66:F1:DF:ED:F7:30:3F:E7:ED:59:A6:27:B3:47 Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Certificate serial: 05E1 Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa Signing time: Thu 01 Aug 2024 09:45:08 +0000 ROA not before: Thu 01 Aug 2024 09:45:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198949 IP address blocks: 194.193.16.0/24 maxlen: 24 194.193.17.0/24 maxlen: 24 194.193.18.0/24 maxlen: 24 194.193.19.0/24 maxlen: 24 194.193.28.0/24 maxlen: 24 194.193.29.0/24 maxlen: 24 194.193.30.0/24 maxlen: 24 194.193.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1505 (0x5e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4 Validity Not Before: Aug 1 09:45:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66ab5924-e959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:27:db:29:d3:32:ae:71:42:51:f9:07:af: 95:9d:09:cf:91:e6:11:3b:79:25:41:6a:f2:98:36: 14:3d:fe:93:1b:cd:32:5c:40:99:2a:42:84:2f:8c: 95:c8:24:a9:62:04:b9:a1:d5:01:c5:02:52:52:83: 2f:cc:23:3b:77:5e:bc:0b:1e:b1:ba:f0:e7:62:ed: f8:17:23:c9:07:16:a0:d7:6a:c6:9a:f7:f5:92:4d: dd:1b:8a:6e:9d:da:37:12:c9:aa:2b:3d:30:bf:8f: ae:73:1c:e6:d0:88:fa:ba:4c:fc:c3:79:c4:7d:d2: db:fa:11:28:9e:bf:50:e2:8a:a3:cc:99:4c:ba:1f: 84:6f:67:7b:ed:e3:b4:d1:75:39:bd:3a:5a:26:9e: 2b:c8:99:b3:81:e3:78:68:67:78:18:b6:67:87:06: 75:a1:f1:40:c2:1c:db:37:82:a8:ee:86:7c:9e:67: 95:f6:45:21:44:0a:96:44:b3:b4:04:bc:fc:e8:7c: 2c:22:4a:70:57:35:d2:64:d5:39:a2:9e:9e:ff:b6: 53:d0:4f:ed:22:6a:e5:d1:37:9a:ae:6b:cf:6c:e2: 60:d6:2e:43:3a:1b:41:84:99:b4:d9:ab:f7:65:50: 90:b0:28:d4:04:b7:84:f4:3c:58:fe:ac:43:b6:76: bd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:6A:B9:ED:F0:10:66:F1:DF:ED:F7:30:3F:E7:ED:59:A6:27:B3:47 X509v3 Authority Key Identifier: keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.193.16.0/22 194.193.28.0/22 Signature Algorithm: sha256WithRSAEncryption 48:d5:d0:e5:15:cf:df:98:53:76:36:1b:46:59:d7:12:62:81: d3:54:23:db:25:46:18:c2:d9:c2:e2:c8:e2:6e:8d:77:dd:73: 1b:8d:94:c6:b8:be:5d:d6:20:c1:1f:7e:db:68:90:1e:4f:b6: 5b:8b:ff:62:92:b0:8f:32:3c:05:c6:04:3f:f5:00:b5:04:6f: fd:eb:c4:57:ca:f3:30:4b:38:88:8a:d0:80:24:56:a3:dd:85: 7d:d3:09:56:6d:e2:3c:1e:00:b2:53:fc:51:a9:2e:05:be:14: 3b:c0:1c:95:78:68:cb:4e:e0:b2:18:0a:bb:f5:e7:92:fe:fd: 48:72:f4:9f:ea:fb:ed:80:e2:c4:83:39:1c:c9:d4:89:0b:d6: 49:c4:df:bd:93:5a:9e:89:7b:2a:71:a9:43:c1:a6:89:8e:2c: f2:f8:24:a5:c2:e9:ce:50:24:de:70:33:47:74:eb:57:f8:8f: 7e:33:ae:32:f2:1a:e9:b5:23:a2:75:8c:d0:c2:ed:90:81:01: 52:4e:f0:14:f1:45:7f:c0:3a:71:6b:87:37:a8:0a:aa:dd:00: 94:fa:a7:d9:76:17:08:0f:d7:94:94:80:5a:d3:10:17:ba:91: ab:f6:15:5e:55:25:fb:24:75:2a:47:c1:5a:e0:26:e7:e5:e6: 45:95:4d:95 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEI2RkQ2RjRCNEZCN0MzMjQ3QzU5OTI5OUIyRThCQUZC NUE4QkJBNzIwHhcNMjQwODAxMDk0NTA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFiNTkyNC1lOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx78n2ynTMq5xQlH5B6+VnQnPkeYRO3klQWrymDYUPf6TG80yXECZKkKEL4yV yCSpYgS5odUBxQJSUoMvzCM7d168Cx6xuvDnYu34FyPJBxag12rGmvf1kk3dG4pu ndo3EsmqKz0wv4+ucxzm0Ij6ukz8w3nEfdLb+hEonr9Q4oqjzJlMuh+Eb2d77eO0 0XU5vTpaJp4ryJmzgeN4aGd4GLZnhwZ1ofFAwhzbN4Ko7oZ8nmeV9kUhRAqWRLO0 BLz86HwsIkpwVzXSZNU5op6e/7ZT0E/tImrl0TearmvPbOJg1i5DOhtBhJm02av3 ZVCQsCjUBLeE9DxY/qxDtna9+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFONque3w EGbx3+33MD/n7VmmJ7NHMB8GA1UdIwQYMBaAFLb9b0tPt8MkfFmSmbLouvtai7py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC82REQ5RjMzNDdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi90djF2UzAtM3d5UjhXWktac3VpNi0xcUx1 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3R2MXZTMC0zd3lSOFdaS1pzdWk2LTFxTHVuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNkREOUYzMzQ3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvMzUzNDFGM0U0 RUFFMTFFRjgxMURDMTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALCwRADBALCwRwwDQYJKoZIhvcNAQELBQADggEBAEjV0OUV z9+YU3Y2G0ZZ1xJigdNUI9slRhjC2cLiyOJujXfdcxuNlMa4vl3WIMEffttokB5P tluL/2KSsI8yPAXGBD/1ALUEb/3rxFfK8zBLOIiK0IAkVqPdhX3TCVZt4jweALJT /FGpLgW+FDvAHJV4aMtO4LIYCrv155L+/Uhy9J/q++2A4sSDORzJ1IkL1knE372T Wp6JeypxqUPBpomOLPL4JKXC6c5QJN5wM0d061f4j34zrjLyGum1I6J1jNDC7ZCB AVJO8BTxRX/AOnFrhzeoCqrdAJT6p9l2FwgP15SUgFrTEBe6kav2FV5VJfskdSpH wVrgJufl5kWVTZU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:32:23 2025 by rpki-client