$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa File: 34509C1AF49D11EFBD8ACC0EC4F9AE02.roa (raw, json) Hash identifier: grwRSfDjkxpIsUifNfjhlA5i8BodWXehXyGY6BwSf7I= Subject key identifier: 16:F2:C3:72:EA:33:41:45:75:B1:8A:7C:1E:85:C4:CA:CC:E4:C7:98 Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 0124 Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa Signing time: Fri 21 Mar 2025 04:09:49 +0000 ROA not before: Fri 21 Mar 2025 04:09:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134748 IP address blocks: 192.245.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62, serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Validity Not Before: Mar 21 04:09:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dce68d-4fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f6:eb:14:06:a6:4c:57:81:7a:fd:12:7c:52: 6b:90:57:5b:6f:3e:00:fb:f9:2c:9a:82:bd:39:c6: 5e:d1:88:96:a0:22:d3:b2:82:1a:cc:46:d9:f3:2f: a3:3e:ca:a6:80:fd:cb:7d:20:85:15:8a:58:37:6e: c6:40:d4:a2:8a:3a:99:24:61:0f:20:11:cd:1e:d6: 5d:be:f0:2e:d0:ca:4e:70:70:cd:ce:cc:61:bf:3d: 35:08:44:5d:a1:dc:1a:80:b6:0a:9f:d7:5a:04:45: ec:3a:45:c4:8b:32:53:c7:8e:20:13:86:2d:38:df: 87:c4:7f:4a:c9:31:1f:91:86:0e:2e:21:6d:31:8a: 16:94:77:33:25:2b:c8:d1:dc:f9:70:e5:9a:bc:44: 80:9c:bb:80:ea:9c:2d:4b:64:df:50:ce:0c:85:3e: b5:71:9d:97:77:18:98:45:80:16:0c:74:46:70:76: 65:e4:37:c3:d2:55:22:d9:0b:3e:ab:e4:e7:63:d1: b3:aa:f3:5a:2f:d5:48:a8:2a:47:c5:f0:7c:3c:da: ab:c1:f1:fa:72:07:5d:43:6a:e1:b4:df:f9:9a:f6: e6:a1:d5:1f:c7:6b:aa:0a:df:2a:a4:2e:df:67:5e: 25:9b:91:54:8a:00:b0:fa:b2:2c:fa:6d:41:8e:67: eb:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F2:C3:72:EA:33:41:45:75:B1:8A:7C:1E:85:C4:CA:CC:E4:C7:98 X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/34509C1AF49D11EFBD8ACC0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.105.0/24 Signature Algorithm: sha256WithRSAEncryption 83:05:64:9d:ce:96:50:d0:c9:36:a3:74:99:d4:7f:7b:1e:c4: c0:9c:8b:39:7b:1a:08:f6:7f:3c:e7:4c:b1:4e:8a:35:8a:2d: cd:66:72:2d:15:b1:2b:8d:88:c9:c0:43:c1:31:0c:c9:a0:d1: 5e:0e:02:4b:87:28:2b:94:22:38:c0:d1:8e:80:7e:02:33:3b: f6:f7:e5:53:71:e9:a8:c3:0f:2b:86:00:b8:23:28:61:d7:7d: a9:0d:a2:29:a5:55:3b:a0:8b:62:88:a0:54:f1:62:3a:89:d8: 1c:91:e5:53:f0:bd:22:0f:54:c6:1a:68:17:1a:ec:da:30:1f: e4:82:0d:ac:d9:ba:5d:4e:be:99:27:3c:a2:7e:b4:01:bb:2c: b2:f7:d9:5f:f4:fe:65:e8:88:78:93:95:43:5d:df:a9:21:70: f4:3b:ff:ac:e8:7a:6f:a9:97:d2:c8:be:95:d7:2b:a3:9d:83: eb:ad:d3:6f:a3:00:14:c1:f8:fb:8e:ea:eb:8c:df:ea:65:23: 5a:76:7d:0d:81:33:4e:4f:41:c7:92:49:98:c6:67:f4:56:dd: 14:ad:21:dc:3b:06:f0:a6:1e:60:77:73:04:42:85:ab:3f:ed: 2c:0d:8c:0f:3b:97:5c:4c:17:12:61:4f:c5:00:27:18:9d:5d: 2e:f5:3b:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMzIxMDQwOTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZTY4ZC00ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfbrFAamTFeBev0SfFJrkFdbbz4A+/ksmoK9OcZe0YiWoCLTsoIazEbZ8y+j PsqmgP3LfSCFFYpYN27GQNSiijqZJGEPIBHNHtZdvvAu0MpOcHDNzsxhvz01CERd odwagLYKn9daBEXsOkXEizJTx44gE4YtON+HxH9KyTEfkYYOLiFtMYoWlHczJSvI 0dz5cOWavESAnLuA6pwtS2TfUM4MhT61cZ2XdxiYRYAWDHRGcHZl5DfD0lUi2Qs+ q+TnY9GzqvNaL9VIqCpHxfB8PNqrwfH6cgddQ2rhtN/5mvbmodUfx2uqCt8qpC7f Z14lm5FUigCw+rIs+m1Bjmfr1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBbyw3Lq M0FFdbGKfB6FxMrM5MeYMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMzQ1MDlDMUFG NDlEMTFFRkJEOEFDQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9WkwDQYJKoZIhvcNAQELBQADggEBAIMFZJ3OllDQyTaj dJnUf3sexMCcizl7Ggj2fzznTLFOijWKLc1mci0VsSuNiMnAQ8ExDMmg0V4OAkuH KCuUIjjA0Y6AfgIzO/b35VNx6ajDDyuGALgjKGHXfakNoimlVTugi2KIoFTxYjqJ 2ByR5VPwvSIPVMYaaBca7NowH+SCDazZul1OvpknPKJ+tAG7LLL32V/0/mXoiHiT lUNd36khcPQ7/6zoem+pl9LIvpXXK6Odg+ut02+jABTB+PuO6uuM3+plI1p2fQ2B M05PQceSSZjGZ/RW3RStIdw7BvCmHmB3cwRChas/7SwNjA87l1xMFxJhT8UAJxid XS71O6M= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:47 2025 by rpki-client