$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/11DD43BA80E411ED993FD824C4F9AE02.roa File: 11DD43BA80E411ED993FD824C4F9AE02.roa (raw, json) Hash identifier: 0ZDkLkZaaQfnmuzBjz0ljr58b+EeHu6qJ0K1k0tRYzo= Subject key identifier: CE:1D:5D:3D:4E:53:C7:D9:A8:42:58:BE:F0:AD:D7:35:4A:69:FB:8A Certificate issuer: /CN=A91604AC/serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Certificate serial: 01E5 Authority key identifier: A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/11DD43BA80E411ED993FD824C4F9AE02.roa Signing time: Tue 08 Apr 2025 22:32:59 +0000 ROA not before: Tue 08 Apr 2025 22:32:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134138 IP address blocks: 185.61.140.0/23 maxlen: 23 185.61.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Validity Not Before: Apr 8 22:32:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5a41b-4a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5d:bd:d7:fa:07:7f:9b:b0:c9:ad:19:94:85: 72:82:5c:84:72:89:06:21:4a:5f:bb:a8:96:fc:2a: 76:66:24:fd:c7:ac:06:2d:45:f8:94:fd:65:5b:74: bd:9b:1f:88:ec:54:3f:2d:3e:bb:bf:ed:ce:77:21: 63:f7:fe:66:e0:a4:3e:de:3c:41:30:d6:1f:ff:55: 3b:b6:e1:ab:8c:2b:aa:8d:52:15:e6:62:0b:cb:0c: f4:ac:6c:5f:48:32:b9:ed:be:93:1e:fe:fd:83:35: ed:1c:2f:7e:28:6b:eb:80:2c:84:8a:ba:7c:f3:89: 40:93:9d:75:7f:e3:0f:59:f0:c4:39:05:87:98:4c: ba:c5:a6:43:ed:a4:1f:55:a0:b9:41:37:46:dd:7a: d3:49:80:d8:6b:35:69:64:f4:c9:f1:44:52:e2:78: c5:d1:68:a3:6b:9d:78:3c:15:2a:0e:89:0d:5b:72: a3:08:ab:85:b6:fc:eb:d2:b0:00:00:c9:21:ee:34: a8:a2:0b:68:6d:11:8e:17:d4:91:43:d3:57:55:d9: ed:4c:a5:39:70:01:74:9e:e8:c1:2f:15:db:54:c3: 0c:f4:f9:6a:35:fe:a2:9c:d6:2f:f6:00:ba:6d:e4: b4:6a:0c:25:b1:44:cf:a3:34:f1:cf:b4:ed:70:5b: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1D:5D:3D:4E:53:C7:D9:A8:42:58:BE:F0:AD:D7:35:4A:69:FB:8A X509v3 Authority Key Identifier: keyid:A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/11DD43BA80E411ED993FD824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.61.140.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:67:92:04:78:33:0b:4e:c8:4c:f8:e2:6e:8a:27:b3:cd:d4: ee:ab:c0:16:02:8d:f3:fd:f2:f4:eb:fa:a0:e6:9a:79:9f:b4: 12:62:a9:35:7b:1a:cb:ea:be:1d:75:75:91:fd:66:ab:4c:ef: a8:b7:8c:4c:35:a3:9f:89:c8:61:ff:25:72:db:23:f4:c0:09: 22:5e:d2:35:02:29:da:d1:1b:5b:7a:3f:b5:35:87:2a:2c:41: 48:62:97:87:d6:70:6d:06:5f:a7:b6:5c:51:bc:6f:e1:dd:e0: 94:38:97:36:33:5e:4a:cb:ba:24:e4:1b:be:cb:00:d5:f8:2e: 72:2a:85:8d:dd:69:91:0c:f4:2e:b9:c3:85:a7:c1:b1:8d:73: da:2e:f8:49:54:a3:f2:b8:9a:f1:b5:2d:47:45:60:0c:f9:28: bc:30:10:26:4d:6f:47:cd:8b:cf:d0:6b:fa:56:22:f2:5a:50: a4:93:86:aa:fd:c7:af:44:68:4c:5e:34:dc:7f:ee:3e:d3:47: 0f:2a:97:b5:94:01:e7:7d:57:37:59:56:7e:e3:29:2e:32:3f: 99:2c:e7:15:67:d2:a9:d9:5e:ea:8a:10:a8:c5:fd:dd:4c:cd: 67:e8:18:69:09:00:85:08:04:d4:ff:9f:48:8d:d5:85:27:47: 85:ee:01:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKEE4NEU3ODM2NjlDMkY5OTc4NEYzNDRGQ0QzMjNGQ0Y5 OTFDQzQwRkIwHhcNMjUwNDA4MjIzMjU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YTQxYi00YTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF291/oHf5uwya0ZlIVyglyEcokGIUpfu6iW/Cp2ZiT9x6wGLUX4lP1lW3S9 mx+I7FQ/LT67v+3OdyFj9/5m4KQ+3jxBMNYf/1U7tuGrjCuqjVIV5mILywz0rGxf SDK57b6THv79gzXtHC9+KGvrgCyEirp884lAk511f+MPWfDEOQWHmEy6xaZD7aQf VaC5QTdG3XrTSYDYazVpZPTJ8URS4njF0Wija514PBUqDokNW3KjCKuFtvzr0rAA AMkh7jSoogtobRGOF9SRQ9NXVdntTKU5cAF0nujBLxXbVMMM9PlqNf6inNYv9gC6 beS0agwlsUTPozTxz7TtcFvR4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFM4dXT1O U8fZqEJYvvCt1zVKafuKMB8GA1UdIwQYMBaAFKhOeDZpwvmXhPNE/NMj/PmRzED7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy8zNEJFQzVGNDQ0 NEMxMUVEQkRBOTEyN0NDNEY5QUUwMi9xRTU0Tm1uQy1aZUU4MFQ4MHlQOC1aSE1R UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3FFNTRObW5DLVplRTgwVDgweVA4LVpITVFQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvMzRCRUM1RjQ0NDRDMTFFREJEQTkxMjdDQzRGOUFFMDIvMTFERDQzQkE4 MEU0MTFFRDk5M0ZEODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5PYwwDQYJKoZIhvcNAQELBQADggEBAB1nkgR4MwtOyEz4 4m6KJ7PN1O6rwBYCjfP98vTr+qDmmnmftBJiqTV7Gsvqvh11dZH9ZqtM76i3jEw1 o5+JyGH/JXLbI/TACSJe0jUCKdrRG1t6P7U1hyosQUhil4fWcG0GX6e2XFG8b+Hd 4JQ4lzYzXkrLuiTkG77LANX4LnIqhY3daZEM9C65w4WnwbGNc9ou+ElUo/K4mvG1 LUdFYAz5KLwwECZNb0fNi8/Qa/pWIvJaUKSThqr9x69EaExeNNx/7j7TRw8ql7WU Aed9VzdZVn7jKS4yP5ks5xVn0qnZXuqKEKjF/d1MzWfoGGkJAIUIBNT/n0iN1YUn R4XuATg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:40 2025 by rpki-client