$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa File: 348854286B8F11ED9B07DD15C4F9AE02.roa (raw, json) Hash identifier: xsRGj9an13o+ozRk8T0R12ysRESN2vJXv8XQcYafKCU= Subject key identifier: 61:9E:58:B6:95:6C:2B:14:6B:AD:5F:B2:71:F8:A3:6F:E9:F7:BD:18 Certificate issuer: /CN=A91604AC/serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Certificate serial: 01E6 Authority key identifier: A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa Signing time: Tue 08 Apr 2025 22:33:00 +0000 ROA not before: Tue 08 Apr 2025 22:33:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137455 IP address blocks: 185.61.140.0/23 maxlen: 23 185.61.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=A84E783669C2F99784F344FCD323FCF991CC40FB Validity Not Before: Apr 8 22:33:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5a41c-5342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:eb:ea:47:b9:33:e0:ec:d8:e9:90:1e:ee: da:da:95:33:f3:97:c2:a4:96:05:c3:40:f4:38:05: 18:d6:90:1e:12:d9:10:4c:19:14:f9:fa:97:61:b7: a6:4c:78:ae:44:8c:e4:36:3d:8c:9c:a6:8d:08:67: 46:67:f9:9b:dc:2f:11:bb:18:9a:e8:73:2f:e8:6b: 8c:48:e3:87:68:fc:49:8d:98:47:16:9d:67:1b:4b: c7:f5:4b:7e:e7:84:a5:12:0c:52:b5:de:31:00:0f: af:29:83:c8:6e:e0:6d:56:38:a3:50:e5:d0:f4:8a: 17:02:03:91:95:59:8e:f2:85:26:de:c6:10:e2:c8: c7:59:8f:c0:7f:19:56:d3:b8:1b:dc:7f:b4:44:de: 77:7d:72:d0:d9:aa:0d:7f:ca:8e:4a:a3:92:9a:30: a0:b6:b0:60:2f:59:31:43:7f:95:eb:4d:e3:42:8b: c9:86:56:7f:70:ab:53:f8:0d:23:d7:3e:cb:90:2e: 65:bf:d1:49:57:82:c2:32:bf:25:22:b5:d1:7f:45: df:4b:a1:cf:61:df:d8:64:40:87:91:3a:36:c9:31: f8:c3:2e:0e:7b:4d:cb:41:75:f6:82:97:d3:e0:b1: 6e:bc:da:b1:d8:0f:b7:3a:b4:92:a6:44:8e:af:90: bc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9E:58:B6:95:6C:2B:14:6B:AD:5F:B2:71:F8:A3:6F:E9:F7:BD:18 X509v3 Authority Key Identifier: keyid:A8:4E:78:36:69:C2:F9:97:84:F3:44:FC:D3:23:FC:F9:91:CC:40:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/qE54NmnC-ZeE80T80yP8-ZHMQPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/qE54NmnC-ZeE80T80yP8-ZHMQPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/34BEC5F4444C11EDBDA9127CC4F9AE02/348854286B8F11ED9B07DD15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.61.140.0/22 Signature Algorithm: sha256WithRSAEncryption a8:0d:d7:9f:bf:4e:0c:0d:4c:c4:3d:5e:e9:99:18:e1:07:d4: 66:9b:2f:d3:74:a2:15:11:90:25:86:64:95:e5:92:6c:f2:5f: 84:a5:0c:18:a2:ac:14:9c:6f:2b:69:d9:77:8b:7c:33:1c:66: 31:24:d8:a4:49:04:a0:48:8b:1a:1b:0d:62:b8:28:f6:d1:9d: f7:8f:4f:01:d7:3f:be:3f:fc:26:f3:9f:3f:dc:6b:70:82:f7: 9a:fa:92:ba:a2:3d:e0:93:fc:cc:22:ef:3c:6a:25:15:f3:67: ff:db:c1:3e:ee:2b:9b:8e:7b:2f:92:1d:fd:d3:e0:a5:18:21: d8:7b:86:ac:f5:05:e1:57:36:0d:dc:86:07:24:a3:5b:7c:fa: 19:74:fa:02:15:bf:26:9b:b2:a8:f0:d8:24:4b:96:8d:67:2e: fb:d2:48:da:92:8e:e7:13:d4:cd:86:2e:9c:7e:bb:7f:20:84: 33:23:5f:f8:a7:e4:aa:f9:28:ef:c9:c6:ee:e9:e0:79:fd:6b: 48:79:0d:d9:09:03:27:23:67:1f:57:b7:04:d7:cf:8c:cb:e1: 89:69:af:a5:f6:37:c2:17:ec:8d:61:77:a4:a6:13:8f:2c:27: 25:bf:84:a7:7a:eb:07:cd:29:eb:38:aa:0f:2d:ed:62:43:6a: 64:75:64:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKEE4NEU3ODM2NjlDMkY5OTc4NEYzNDRGQ0QzMjNGQ0Y5 OTFDQzQwRkIwHhcNMjUwNDA4MjIzMzAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YTQxYy01MzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34Xr6ke5M+Ds2OmQHu7a2pUz85fCpJYFw0D0OAUY1pAeEtkQTBkU+fqXYbem THiuRIzkNj2MnKaNCGdGZ/mb3C8Ruxia6HMv6GuMSOOHaPxJjZhHFp1nG0vH9Ut+ 54SlEgxStd4xAA+vKYPIbuBtVjijUOXQ9IoXAgORlVmO8oUm3sYQ4sjHWY/AfxlW 07gb3H+0RN53fXLQ2aoNf8qOSqOSmjCgtrBgL1kxQ3+V603jQovJhlZ/cKtT+A0j 1z7LkC5lv9FJV4LCMr8lIrXRf0XfS6HPYd/YZECHkTo2yTH4wy4Oe03LQXX2gpfT 4LFuvNqx2A+3OrSSpkSOr5C8hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGGeWLaV bCsUa61fsnH4o2/p970YMB8GA1UdIwQYMBaAFKhOeDZpwvmXhPNE/NMj/PmRzED7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy8zNEJFQzVGNDQ0 NEMxMUVEQkRBOTEyN0NDNEY5QUUwMi9xRTU0Tm1uQy1aZUU4MFQ4MHlQOC1aSE1R UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3FFNTRObW5DLVplRTgwVDgweVA4LVpITVFQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvMzRCRUM1RjQ0NDRDMTFFREJEQTkxMjdDQzRGOUFFMDIvMzQ4ODU0Mjg2 QjhGMTFFRDlCMDdERDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5PYwwDQYJKoZIhvcNAQELBQADggEBAKgN15+/TgwNTMQ9 XumZGOEH1GabL9N0ohURkCWGZJXlkmzyX4SlDBiirBScbytp2XeLfDMcZjEk2KRJ BKBIixobDWK4KPbRnfePTwHXP74//Cbznz/ca3CC95r6krqiPeCT/Mwi7zxqJRXz Z//bwT7uK5uOey+SHf3T4KUYIdh7hqz1BeFXNg3chgcko1t8+hl0+gIVvyabsqjw 2CRLlo1nLvvSSNqSjucT1M2GLpx+u38ghDMjX/in5Kr5KO/Jxu7p4Hn9a0h5DdkJ AycjZx9XtwTXz4zL4Ylpr6X2N8IX7I1hd6SmE48sJyW/hKd66wfNKes4qg8t7WJD amR1ZOg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:32 2025 by rpki-client