$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa File: 3204348A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo= Subject key identifier: 8F:07:06:59:AA:1A:1B:EA:0E:DF:5E:2B:F1:19:22:5B:61:17:3D:B0 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 343D Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa Signing time: Fri 21 Apr 2023 12:50:10 +0000 ROA not before: Fri 21 Apr 2023 12:50:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135535 IP address blocks: 61.45.250.0/24 maxlen: 24 2401:4601:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13373 (0x343d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 21 12:50:10 2023 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=64428681-945a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:14:fc:42:f1:2a:1d:55:d5:cb:8b:1b:b6:a5: 32:f5:8d:af:9b:ec:ed:26:fb:06:78:20:0d:0a:42: 05:60:37:64:77:7e:c6:6f:fd:24:c3:5a:cd:34:fc: 83:f3:f6:18:7f:85:d3:99:3e:63:46:a1:f6:8f:61: 76:99:40:f6:09:c7:1d:18:71:85:7a:1d:bb:9e:d4: 31:d0:82:ee:e8:3c:5e:50:68:f3:af:e5:11:bb:7d: e6:00:3f:66:6a:e4:64:a7:02:f2:9e:04:c1:76:e1: 83:93:79:7a:5c:d4:78:cc:38:91:70:47:ea:5c:f9: 70:27:31:94:49:e4:bd:f7:0b:66:5a:e9:fd:f0:9b: 6c:8a:bc:93:9e:b4:7e:9a:c0:4f:64:2e:f2:0c:13: 39:fd:22:0a:eb:22:08:25:5d:5e:3d:23:cc:f0:15: 18:d0:f7:1c:54:b4:e9:9c:fe:50:ca:09:07:ca:a1: 3e:f8:70:0c:5c:65:84:ff:6b:21:3a:02:a8:7d:8e: f3:46:e5:12:dc:4e:c5:eb:29:8f:5f:bd:e7:61:3e: 20:60:c9:ed:fa:76:a4:6d:7c:92:a2:a6:e4:5e:43: dc:bd:e3:33:c4:06:28:f3:da:9a:e8:bc:c5:88:63: 47:59:b3:ea:96:e4:de:da:87:be:bd:17:5b:16:cb: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:07:06:59:AA:1A:1B:EA:0E:DF:5E:2B:F1:19:22:5B:61:17:3D:B0 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.250.0/24 IPv6: 2401:4601:250::/48 Signature Algorithm: sha256WithRSAEncryption 8c:20:d6:53:93:d9:ea:cf:32:12:18:29:a5:ec:ce:4f:cd:26: f2:9a:fb:10:a3:c8:2b:f6:2e:6b:10:be:36:6a:17:8f:37:a4: df:2d:97:d5:ae:f3:68:72:05:c4:4e:e7:9f:87:43:84:ab:20: 91:ff:1a:33:f6:7a:38:65:51:b6:fd:cb:9c:7f:6b:0c:96:4c: c3:1b:4f:1b:74:48:2c:4f:06:d7:3b:3c:6d:40:9b:01:ca:66: eb:4d:a4:26:38:73:a8:9e:be:ea:0c:8c:c7:d8:d2:11:26:ea: c0:0b:ba:79:98:a5:4b:eb:d5:be:33:36:47:cd:b0:12:1c:9c: fd:5f:8c:3f:2a:97:b2:5a:9d:b3:2d:bf:82:8d:2b:15:1f:78: 22:d0:3f:7b:a3:02:3c:5d:dd:ed:7d:75:d8:00:c7:0d:3b:b6: 54:c1:73:ce:a9:07:13:f1:96:58:8a:eb:c0:70:77:fb:26:93: 22:56:bb:e5:a9:48:ea:7f:a6:ef:b1:86:51:11:8d:32:34:5f: 05:ab:f0:20:91:09:ec:66:10:23:6d:62:55:15:d3:ec:a6:84: 79:82:cd:5b:09:5e:2e:84:c5:d2:17:68:08:b5:8c:9c:d9:c9: bd:92:13:be:9b:fe:87:9f:2f:79:f2:7e:b8:4d:cb:e0:51:64: 99:a6:f5:90 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICND0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjMwNDIxMTI1MDEwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDQyODY4MS05NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBT8QvEqHVXVy4sbtqUy9Y2vm+ztJvsGeCANCkIFYDdkd37Gb/0kw1rNNPyD 8/YYf4XTmT5jRqH2j2F2mUD2CccdGHGFeh27ntQx0ILu6DxeUGjzr+URu33mAD9m auRkpwLyngTBduGDk3l6XNR4zDiRcEfqXPlwJzGUSeS99wtmWun98JtsiryTnrR+ msBPZC7yDBM5/SIK6yIIJV1ePSPM8BUY0PccVLTpnP5QygkHyqE++HAMXGWE/2sh OgKofY7zRuUS3E7F6ymPX73nYT4gYMnt+nakbXySoqbkXkPcveMzxAYo89qa6LzF iGNHWbPqluTe2oe+vRdbFss58QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI8HBlmq GhvqDt9eK/EZIlthFz2wMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzIwNDM0OEEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfowDwQCAAIwCQMHACQBRgECUDANBgkqhkiG9w0BAQsF AAOCAQEAjCDWU5PZ6s8yEhgppezOT80m8pr7EKPIK/YuaxC+NmoXjzek3y2X1a7z aHIFxE7nn4dDhKsgkf8aM/Z6OGVRtv3LnH9rDJZMwxtPG3RILE8G1zs8bUCbAcpm 602kJjhzqJ6+6gyMx9jSESbqwAu6eZilS+vVvjM2R82wEhyc/V+MPyqXslqdsy2/ go0rFR94ItA/e6MCPF3d7X112ADHDTu2VMFzzqkHE/GWWIrrwHB3+yaTIla75alI 6n+m77GGURGNMjRfBavwIJEJ7GYQI21iVRXT7KaEeYLNWwleLoTF0hdoCLWMnNnJ vZITvpv+h58vefJ+uE3L4FFkmab1kA== -----END CERTIFICATE-----Generated at Sat May 18 15:58:26 2024 by rpki-client on console-ams.rpki-client.org