$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34F912AAF49D11EFBD8ACC0EC4F9AE02.roa File: 34F912AAF49D11EFBD8ACC0EC4F9AE02.roa (raw, json) Hash identifier: QvSor+ZLSAycsGcCv4f76SOHLGpP9SPlvrD0IQ+tSOs= Subject key identifier: 5D:F7:87:90:04:0F:9F:EB:DE:22:02:C9:39:9B:E7:23:7E:05:44:A8 Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 0114 Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34F912AAF49D11EFBD8ACC0EC4F9AE02.roa Signing time: Thu 27 Feb 2025 00:31:34 +0000 ROA not before: Thu 27 Feb 2025 00:31:34 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140637 IP address blocks: 143.174.60.0/24 maxlen: 24 143.174.61.0/24 maxlen: 24 192.55.112.0/24 maxlen: 24 192.104.43.0/24 maxlen: 24 192.104.44.0/24 maxlen: 24 192.104.45.0/24 maxlen: 24 192.245.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Mar 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62 Validity Not Before: Feb 27 00:31:34 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67bfb265-1716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6e:41:5d:81:48:e7:c1:a8:26:97:9a:28:e0: 38:71:5e:41:d5:bf:a7:68:7a:e4:57:ca:f3:2a:6f: a7:d6:09:fb:75:2c:94:98:0a:48:82:f0:78:78:96: c7:ae:db:60:89:2d:eb:95:6f:23:82:aa:77:49:80: 1b:8e:4f:53:57:12:d1:77:86:cb:3e:17:2a:5a:fc: fc:dd:ef:53:0f:c0:e4:8f:f5:50:0b:cf:4e:01:30: 47:83:e7:99:e4:9b:69:a0:64:ee:6f:90:76:63:5d: 19:71:8e:82:0b:c0:02:5b:82:02:69:77:4e:58:55: 7e:6c:97:77:5d:5e:7e:aa:61:ed:4d:61:0b:05:4c: 2c:57:9a:22:76:d2:6b:0b:a2:d4:7d:6b:48:73:88: 66:3d:02:b6:d6:92:4e:66:d5:96:ba:0e:df:4a:a3: b6:d9:9e:69:7d:c6:6f:82:8e:ea:cc:45:80:14:3a: d2:7b:f9:46:8e:4e:23:6e:b5:05:26:d8:46:7d:b6: 59:4b:73:01:bd:a7:62:2a:9d:9a:48:49:52:42:9f: f8:17:b2:b3:b7:d6:70:b0:e8:86:d5:bb:7a:ed:9e: a5:2a:59:74:b7:ac:45:d9:cb:b6:6e:8a:4a:70:4c: 00:e6:02:36:f9:16:e8:bb:ca:0c:e7:62:e3:30:e9: 12:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F7:87:90:04:0F:9F:EB:DE:22:02:C9:39:9B:E7:23:7E:05:44:A8 X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34F912AAF49D11EFBD8ACC0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.174.60.0/23 192.55.112.0/24 192.104.43.0-192.104.45.255 192.245.105.0/24 Signature Algorithm: sha256WithRSAEncryption 79:24:02:d7:e4:6b:4d:15:32:3e:83:e2:01:21:d3:aa:39:df: 26:78:65:87:f0:8f:33:88:f0:70:1a:44:cf:cb:31:a6:d3:b2: bc:3a:f1:b0:8c:d7:58:20:4e:ca:a9:85:fe:f9:98:c9:dd:45: 05:53:67:61:4e:35:9e:d5:50:37:80:c9:f0:5c:ec:a5:d7:83: a6:21:9f:ea:09:36:d6:6c:65:e3:53:ae:dd:35:69:6e:5e:ee: 72:31:66:8e:02:2c:8e:bd:1a:03:c8:99:3a:dc:51:bc:62:28: 16:72:5a:0d:20:67:b3:db:92:e8:5b:d7:a3:40:b3:4f:11:d0: 01:e2:27:3d:16:13:bb:ca:ea:44:05:27:a6:de:98:ca:34:b6: 9b:ac:99:88:a2:6a:ed:e5:96:79:f9:ef:8a:1b:35:23:ea:0e: 8e:1a:50:3c:8b:1b:d1:53:e7:72:b7:1c:20:df:5a:27:d8:c0: ec:03:91:15:a1:d0:f2:96:1f:7f:9f:09:66:55:f0:78:00:44: 62:64:85:3a:80:0f:d6:b0:1c:ef:92:1a:f9:3c:8a:3c:5e:c4: c6:68:84:19:31:bd:ad:f9:8e:25:9b:ed:bb:2a:e3:68:fc:05: ae:8c:7b:d5:a4:0d:c5:9e:f0:27:29:67:40:6b:15:cb:32:1f: 54:83:ea:ec -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMjI3MDAzMTM0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYjI2NS0xNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW5BXYFI58GoJpeaKOA4cV5B1b+naHrkV8rzKm+n1gn7dSyUmApIgvB4eJbH rttgiS3rlW8jgqp3SYAbjk9TVxLRd4bLPhcqWvz83e9TD8Dkj/VQC89OATBHg+eZ 5JtpoGTub5B2Y10ZcY6CC8ACW4ICaXdOWFV+bJd3XV5+qmHtTWELBUwsV5oidtJr C6LUfWtIc4hmPQK21pJOZtWWug7fSqO22Z5pfcZvgo7qzEWAFDrSe/lGjk4jbrUF JthGfbZZS3MBvadiKp2aSElSQp/4F7Kzt9ZwsOiG1bt67Z6lKll0t6xF2cu2bopK cEwA5gI2+Rbou8oM52LjMOkSMQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFF33h5AE D5/r3iICyTmb5yN+BUSoMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMzRGOTEyQUFG NDlEMTFFRkJEOEFDQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAGPrjwDBADAN3AwDAMEAMBoKwMEAcBoLAMEAMD1aTANBgkq hkiG9w0BAQsFAAOCAQEAeSQC1+RrTRUyPoPiASHTqjnfJnhlh/CPM4jwcBpEz8sx ptOyvDrxsIzXWCBOyqmF/vmYyd1FBVNnYU41ntVQN4DJ8FzspdeDpiGf6gk21mxl 41Ou3TVpbl7ucjFmjgIsjr0aA8iZOtxRvGIoFnJaDSBns9uS6FvXo0CzTxHQAeIn PRYTu8rqRAUnpt6YyjS2m6yZiKJq7eWWefnvihs1I+oOjhpQPIsb0VPncrccIN9a J9jA7AORFaHQ8pYff58JZlXweABEYmSFOoAP1rAc75Ia+TyKPF7ExmiEGTG9rfmO JZvtuyrjaPwFrox71aQNxZ7wJylnQGsVyzIfVIPq7A== -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:02 2025 by rpki-client