$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa File: 35941A5CF49D11EFBD8ACC0EC4F9AE02.roa (raw, json) Hash identifier: +NQ3vCKy/oYUGSob2QsizFARgh8URiIrafoqIAVImwU= Subject key identifier: 9E:7F:1D:22:0D:10:15:AC:10:A6:D0:21:E4:BE:FD:59:26:67:B1:00 Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 0128 Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa Signing time: Fri 21 Mar 2025 04:09:52 +0000 ROA not before: Fri 21 Mar 2025 04:09:52 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 7575 IP address blocks: 192.245.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62, serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Validity Not Before: Mar 21 04:09:52 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dce690-5bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:52:52:3e:55:e6:39:d5:3f:91:84:86:c9:b5: b9:59:66:c5:e8:c3:4b:f5:a3:4f:e1:07:b6:d8:16: 4b:1c:4c:d6:90:00:b2:f5:b8:d1:d3:3b:1f:06:68: c6:1c:b1:17:05:88:03:12:4a:58:ff:de:f8:87:eb: ea:8a:6f:88:fb:ee:f3:47:68:25:73:e2:72:8e:40: c8:b8:3e:bb:e1:66:2e:ab:49:4a:c4:32:b4:4a:e2: 7d:1f:da:de:f0:be:97:f8:ce:15:3b:23:a0:ef:32: 22:00:76:33:7d:b4:35:b8:c7:a0:9a:40:37:04:73: 96:bb:f8:95:6e:3f:be:e7:ff:e8:65:56:8a:f3:f7: 9f:c5:8b:67:0e:12:44:89:50:6f:2d:e7:5e:24:f5: 2d:4c:9a:75:9d:f9:26:43:47:59:12:78:82:6a:6e: 67:0a:41:55:1c:dc:d4:e2:66:0d:ac:00:9b:08:54: 0e:b1:cd:d4:b3:e8:e2:76:49:eb:36:3a:ce:3b:51: 36:36:b2:fd:22:b1:8a:43:55:08:bc:5e:12:5e:02: cc:4e:39:31:a2:a0:c3:43:9a:ac:e8:74:2f:e9:59: e4:72:55:9a:96:cb:2b:7c:69:b5:78:7e:86:cb:02: ab:8e:51:c4:7b:de:ff:3d:cd:a5:2a:86:08:14:02: d3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7F:1D:22:0D:10:15:AC:10:A6:D0:21:E4:BE:FD:59:26:67:B1:00 X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/35941A5CF49D11EFBD8ACC0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.105.0/24 Signature Algorithm: sha256WithRSAEncryption 64:74:b2:a7:c8:d3:d2:3e:97:3e:eb:60:12:00:1d:e7:8d:45: 37:4e:75:99:55:a9:da:a9:97:46:a8:8a:9a:d6:57:d6:0f:92: 71:30:3e:8a:dc:07:e8:be:b1:c6:1a:dd:37:54:48:83:3b:9c: 2d:f8:74:e5:93:dc:c0:8a:14:3c:b7:5f:57:d7:40:cd:db:0d: 38:6c:8c:0a:3d:3e:75:55:f5:0f:b5:5d:30:54:f5:cd:13:20: 3c:3d:55:ed:0e:5f:cb:d4:8b:1d:13:06:66:b3:f1:28:7c:8e: 3a:82:bc:10:79:24:26:9b:7a:47:3f:e3:d5:0a:b5:37:fe:a2: db:39:1a:28:47:b5:5f:23:9d:8e:ad:c9:68:34:75:00:c9:28: b8:62:8e:87:2e:e7:f1:b5:b5:fb:99:32:35:0e:23:ed:a8:e6: 09:15:54:47:11:6c:16:39:76:c1:77:51:2b:50:12:1c:45:b2: 06:e4:29:8c:d8:de:d2:0d:89:2f:53:9a:4f:d2:16:c4:0c:98: 75:d5:a7:15:46:4b:b2:3a:2e:51:76:8b:8a:92:69:cf:65:fe: 11:99:62:9a:72:16:96:f5:85:84:58:60:6b:e5:07:19:5f:73: 62:63:82:90:52:a8:62:fe:3f:3d:d3:71:fd:cd:a8:10:5d:86: 56:27:64:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMzIxMDQwOTUyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZTY5MC01YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlJSPlXmOdU/kYSGybW5WWbF6MNL9aNP4Qe22BZLHEzWkACy9bjR0zsfBmjG HLEXBYgDEkpY/974h+vqim+I++7zR2glc+JyjkDIuD674WYuq0lKxDK0SuJ9H9re 8L6X+M4VOyOg7zIiAHYzfbQ1uMegmkA3BHOWu/iVbj++5//oZVaK8/efxYtnDhJE iVBvLedeJPUtTJp1nfkmQ0dZEniCam5nCkFVHNzU4mYNrACbCFQOsc3Us+jidknr NjrOO1E2NrL9IrGKQ1UIvF4SXgLMTjkxoqDDQ5qs6HQv6VnkclWalssrfGm1eH6G ywKrjlHEe97/Pc2lKoYIFALTGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ5/HSIN EBWsEKbQIeS+/VkmZ7EAMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMzU5NDFBNUNG NDlEMTFFRkJEOEFDQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9WkwDQYJKoZIhvcNAQELBQADggEBAGR0sqfI09I+lz7r YBIAHeeNRTdOdZlVqdqpl0aoiprWV9YPknEwPorcB+i+scYa3TdUSIM7nC34dOWT 3MCKFDy3X1fXQM3bDThsjAo9PnVV9Q+1XTBU9c0TIDw9Ve0OX8vUix0TBmaz8Sh8 jjqCvBB5JCabekc/49UKtTf+ots5GihHtV8jnY6tyWg0dQDJKLhijocu5/G1tfuZ MjUOI+2o5gkVVEcRbBY5dsF3UStQEhxFsgbkKYzY3tINiS9Tmk/SFsQMmHXVpxVG S7I6LlF2i4qSac9l/hGZYppyFpb1hYRYYGvlBxlfc2JjgpBSqGL+Pz3Tcf3NqBBd hlYnZGs= -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:26 2025 by rpki-client