$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa File: 34509C1AF49D11EFBD8ACC0EC4F9AE02.roa (raw, json) Hash identifier: /GlW7D5p31OP0UERONblLpyfKp9EBDNdvZFzDfcBmZ0= Subject key identifier: 87:D6:A9:F9:B5:4B:BE:1D:DB:20:BD:6F:7C:34:D7:FF:8B:F1:78:53 Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 010D Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa Signing time: Wed 26 Feb 2025 23:55:50 +0000 ROA not before: Wed 26 Feb 2025 23:55:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134748 IP address blocks: 192.245.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Mar 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62 Validity Not Before: Feb 26 23:55:50 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67bfaa06-7096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:64:a8:c3:ff:a2:c4:f1:41:61:95:9c:a3:8b: f9:dd:47:96:ad:cc:4b:44:e6:df:d7:67:92:85:94: fb:95:c3:09:2d:14:a5:0e:69:d1:90:c4:17:46:93: 67:72:b2:36:be:1a:6c:2d:de:33:cd:b7:38:43:aa: 18:ae:0e:bd:2d:01:b9:6b:c5:ae:69:be:09:39:49: 8d:16:46:09:28:a0:90:6a:83:0b:23:dc:47:cd:53: b9:bc:01:9b:1f:14:3e:a4:6f:8c:9e:01:54:a3:54: cf:8c:d4:5a:3a:22:01:aa:37:04:07:fa:13:97:b3: b8:45:ab:c3:ee:b1:f0:4a:d2:01:65:79:d6:0b:f8: d2:1e:66:2e:f6:24:b1:0e:e6:3f:30:45:30:7a:56: 52:7c:58:d7:28:cc:4c:16:3d:d1:a7:f0:7c:19:ff: b4:8e:f5:23:0c:58:eb:a6:71:d7:66:87:bc:6c:59: 1c:8b:5a:f8:1a:fb:b4:55:38:cb:03:f8:b5:ed:04: f1:26:05:93:63:9d:16:49:5a:79:78:98:02:a4:53: 20:42:8c:c8:d3:bd:61:69:8a:6e:40:f1:97:7a:83: 05:b5:45:7e:4a:bc:07:10:7e:cd:7c:fa:04:27:07: ad:8a:36:dc:a8:de:a5:74:07:76:a2:92:3e:b0:81: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D6:A9:F9:B5:4B:BE:1D:DB:20:BD:6F:7C:34:D7:FF:8B:F1:78:53 X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.105.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:ae:a9:d2:f8:5d:10:d6:c0:b9:8f:b0:ee:c1:a3:f0:05:c5: e6:4c:97:1d:45:f4:e9:41:ef:9c:e1:01:07:be:c1:f6:11:e4: 15:7b:3c:63:59:fd:a3:70:0d:4d:2e:78:b5:3b:4f:c1:05:36: be:cc:f1:f0:a4:ea:8a:7a:a9:1c:53:86:e0:04:cb:0f:36:48: c1:39:fe:26:41:8a:63:1f:d8:ca:9e:f6:a6:37:55:76:bf:1e: 29:6d:3f:ac:6b:4d:8c:d1:cf:8b:0c:a9:de:d0:ca:ad:a6:b6: da:1a:f8:83:9f:35:e1:d4:74:ad:71:25:ee:eb:25:cc:b0:36: 08:48:df:5f:9c:70:a8:35:d8:75:b0:5b:6a:2b:8a:ae:62:e2: b7:51:10:01:45:e1:a5:ed:37:53:3e:12:03:9d:cf:c7:34:aa: fb:9d:d4:2b:10:d5:25:a5:a5:dd:9b:3a:a7:52:cb:84:65:93: 76:64:48:c0:c7:6b:07:b8:72:5c:23:19:da:20:d3:77:d8:2a: 65:4e:27:90:ff:d7:87:6e:47:c0:23:ef:4d:71:b9:1a:50:eb: d7:30:06:94:1f:2a:fd:34:08:58:39:55:8b:96:74:9a:b2:8b: 13:57:6a:24:5e:0e:05:01:5c:f0:a8:9d:d6:75:78:a0:fe:e7: 12:03:09:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMjI2MjM1NTUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYWEwNi03MDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWSow/+ixPFBYZWco4v53UeWrcxLRObf12eShZT7lcMJLRSlDmnRkMQXRpNn crI2vhpsLd4zzbc4Q6oYrg69LQG5a8Wuab4JOUmNFkYJKKCQaoMLI9xHzVO5vAGb HxQ+pG+MngFUo1TPjNRaOiIBqjcEB/oTl7O4RavD7rHwStIBZXnWC/jSHmYu9iSx DuY/MEUwelZSfFjXKMxMFj3Rp/B8Gf+0jvUjDFjrpnHXZoe8bFkci1r4Gvu0VTjL A/i17QTxJgWTY50WSVp5eJgCpFMgQozI071haYpuQPGXeoMFtUV+SrwHEH7NfPoE JwetijbcqN6ldAd2opI+sIEcpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIfWqfm1 S74d2yC9b3w01/+L8XhTMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMzQ1MDlDMUFG NDlEMTFFRkJEOEFDQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9WkwDQYJKoZIhvcNAQELBQADggEBAJuuqdL4XRDWwLmP sO7Bo/AFxeZMlx1F9OlB75zhAQe+wfYR5BV7PGNZ/aNwDU0ueLU7T8EFNr7M8fCk 6op6qRxThuAEyw82SME5/iZBimMf2Mqe9qY3VXa/HiltP6xrTYzRz4sMqd7Qyq2m ttoa+IOfNeHUdK1xJe7rJcywNghI31+ccKg12HWwW2oriq5i4rdREAFF4aXtN1M+ EgOdz8c0qvud1CsQ1SWlpd2bOqdSy4Rlk3ZkSMDHawe4clwjGdog03fYKmVOJ5D/ 14duR8Aj701xuRpQ69cwBpQfKv00CFg5VYuWdJqyixNXaiReDgUBXPCondZ1eKD+ 5xIDCU8= -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:03 2025 by rpki-client