$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa File: 35941A5CF49D11EFBD8ACC0EC4F9AE02.roa (raw, json) Hash identifier: OXJrBCRK/B+O1fsAyaRgYbHjm3a0Kx0I8iYJcGwO1ic= Subject key identifier: 49:D1:54:BB:44:38:D9:BB:50:66:C6:6A:C4:BA:01:C3:38:59:4F:9B Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 010F Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa Signing time: Wed 26 Feb 2025 23:55:52 +0000 ROA not before: Wed 26 Feb 2025 23:55:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 7575 IP address blocks: 192.245.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Mar 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62 Validity Not Before: Feb 26 23:55:52 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67bfaa08-2d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e1:0a:49:67:7e:d4:04:03:c7:00:b7:f1:61: da:a7:70:80:9c:0f:4b:fe:bc:ae:68:9e:e0:f7:9f: be:fa:88:da:8d:26:f5:ca:7d:61:45:67:e1:0a:0f: 11:3a:72:9e:50:d2:90:80:a5:db:c5:15:48:59:31: fe:61:4a:e3:dc:8b:23:aa:70:00:8f:c9:f2:9d:e7: ae:36:2e:0d:36:57:ef:e8:0f:8f:71:9e:f7:6b:6e: 7c:da:fc:77:83:c9:0f:5c:b5:ff:59:e4:cc:36:41: 1b:de:ca:30:d4:3a:61:b7:ca:41:8a:15:45:ae:a1: 29:1b:6a:bc:0d:05:b3:3f:db:72:2d:9a:06:a5:2d: 34:b4:90:c1:da:59:92:96:3a:07:c9:6f:7b:33:a9: 42:7d:a5:b2:3a:43:84:7a:4f:30:93:83:41:0e:82: d5:06:74:51:1e:90:24:0f:7c:dc:b6:3d:0f:f2:e6: 76:2d:cd:71:dd:df:c7:c0:a8:4b:38:62:89:e7:de: 83:a9:ca:a4:eb:3e:b3:26:cf:35:34:5e:40:77:bc: a0:2b:2a:f2:03:63:96:9f:34:3a:85:3d:a3:46:46: d2:eb:54:77:76:16:8e:ff:8d:30:16:c4:18:de:a0: 0b:3f:ba:81:01:73:f2:e8:6c:bf:42:7e:5d:bd:55: c3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D1:54:BB:44:38:D9:BB:50:66:C6:6A:C4:BA:01:C3:38:59:4F:9B X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.105.0/24 Signature Algorithm: sha256WithRSAEncryption a9:06:b7:79:bb:98:03:7d:42:ae:04:eb:14:f7:ec:58:bb:92: 8c:05:fa:c4:30:f8:76:43:f1:9c:22:14:6f:40:72:94:09:71: 53:1b:86:0e:f1:4d:92:c4:6a:75:d1:34:aa:d0:73:f7:93:9b: d9:8d:b4:f8:45:ab:6d:9f:69:43:60:14:21:bc:af:8c:ca:59: 88:dc:dc:9e:b7:12:13:14:57:1c:6d:d4:12:57:f5:af:f1:dc: 17:86:87:de:b8:7f:fd:ae:83:bf:8b:ce:7e:9b:00:84:1b:e9: 06:ce:79:11:18:e9:4e:52:bd:98:7b:1f:6e:c9:1d:2e:4a:4f: ec:0b:90:eb:e1:b2:1c:12:4d:0c:ee:f8:9d:41:4e:04:5f:96: e5:f9:04:a4:40:80:44:19:ef:af:fa:25:7b:e8:33:c3:33:06: 49:96:21:ed:95:f0:7a:c4:48:dd:f8:aa:71:a4:01:28:00:0f: 91:0d:b9:ff:7d:25:dc:47:45:90:7c:61:ca:bd:4f:98:29:1e: a5:fd:5e:a4:d5:40:90:44:bb:32:6d:93:ea:20:c1:0e:29:dc: ea:d8:1c:56:8f:6b:7b:c0:57:45:cd:27:5e:6a:1c:1f:d4:e2: 21:0a:44:12:44:e8:af:26:c4:a2:1f:bd:0d:1b:05:f9:30:b0: 25:30:59:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMjI2MjM1NTUyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYWEwOC0yZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuEKSWd+1AQDxwC38WHap3CAnA9L/ryuaJ7g95+++ojajSb1yn1hRWfhCg8R OnKeUNKQgKXbxRVIWTH+YUrj3IsjqnAAj8nyneeuNi4NNlfv6A+PcZ73a2582vx3 g8kPXLX/WeTMNkEb3sow1Dpht8pBihVFrqEpG2q8DQWzP9tyLZoGpS00tJDB2lmS ljoHyW97M6lCfaWyOkOEek8wk4NBDoLVBnRRHpAkD3zctj0P8uZ2Lc1x3d/HwKhL OGKJ596Dqcqk6z6zJs81NF5Ad7ygKyryA2OWnzQ6hT2jRkbS61R3dhaO/40wFsQY 3qALP7qBAXPy6Gy/Qn5dvVXDgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEnRVLtE ONm7UGbGasS6AcM4WU+bMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMzU5NDFBNUNG NDlEMTFFRkJEOEFDQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9WkwDQYJKoZIhvcNAQELBQADggEBAKkGt3m7mAN9Qq4E 6xT37Fi7kowF+sQw+HZD8ZwiFG9AcpQJcVMbhg7xTZLEanXRNKrQc/eTm9mNtPhF q22faUNgFCG8r4zKWYjc3J63EhMUVxxt1BJX9a/x3BeGh964f/2ug7+Lzn6bAIQb 6QbOeREY6U5SvZh7H27JHS5KT+wLkOvhshwSTQzu+J1BTgRfluX5BKRAgEQZ76/6 JXvoM8MzBkmWIe2V8HrESN34qnGkASgAD5ENuf99JdxHRZB8Ycq9T5gpHqX9XqTV QJBEuzJtk+ogwQ4p3OrYHFaPa3vAV0XNJ15qHB/U4iEKRBJE6K8mxKIfvQ0bBfkw sCUwWV4= -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:02 2025 by rpki-client