$ rpki-client -vvf rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/38EC4D321F2711EB93A71042C4F9AE02.roa File: 38EC4D321F2711EB93A71042C4F9AE02.roa (raw, json) Hash identifier: bvQWUn/Y7cckd5n8bfNYd/nHmrLV3J+fhc4s5WO5wQQ= Subject key identifier: DF:1A:35:F3:94:F6:95:6B:7F:72:84:8E:00:98:E5:CC:C5:2C:C0:37 Certificate issuer: /CN=A91147EF/serialNumber=0215502AA8FFDC721D7F84F74CD070B756390016 Certificate serial: 0943 Authority key identifier: 02:15:50:2A:A8:FF:DC:72:1D:7F:84:F7:4C:D0:70:B7:56:39:00:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/38EC4D321F2711EB93A71042C4F9AE02.roa Signing time: Thu 10 Apr 2025 20:30:33 +0000 ROA not before: Thu 10 Apr 2025 20:30:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 393954 IP address blocks: 103.149.76.0/24 maxlen: 24 2405:e640:c0fd::/48 maxlen: 48 2405:e640:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.crl rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2371 (0x943) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91147EF, serialNumber=0215502AA8FFDC721D7F84F74CD070B756390016 Validity Not Before: Apr 10 20:30:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f82a68-e1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:fa:9d:63:c3:56:e6:49:e6:8b:0d:9c:6f: d9:ca:42:a9:a6:ad:fd:f6:46:28:3a:c0:d6:74:7c: 9a:cf:06:f9:33:b3:1f:dc:95:6f:0e:c5:f9:41:cb: 25:be:4f:5a:f1:48:87:03:98:0c:45:00:5c:2c:c5: dd:a5:27:3e:79:1e:92:b5:54:c0:88:25:a5:e9:75: 06:9c:84:ed:f1:93:5e:8e:08:6c:a0:ee:6c:f9:c7: 16:33:27:e5:7d:06:12:f5:ae:34:dc:8a:81:17:2c: 54:4d:76:da:e3:93:22:20:a3:6a:31:6d:86:d8:e9: a7:2e:f0:cd:a2:d5:7e:31:a8:6e:0f:85:03:62:8b: c0:95:82:07:e7:ce:5d:28:2a:ac:14:86:df:0d:6f: b9:03:5f:5a:27:e0:2c:76:10:7e:2e:8e:61:aa:27: 7f:99:f6:aa:c6:94:2e:96:f5:23:05:e1:70:0b:94: 2c:de:d1:86:b6:72:c7:8e:fb:a3:f6:17:e9:5b:51: b9:0f:7e:92:98:47:75:d4:45:67:6c:61:26:d4:51: f8:7f:62:8c:26:ef:12:09:4e:d0:72:5f:a2:7c:47: 78:0e:50:2e:0c:49:25:d5:2a:d9:5f:4a:70:25:44: b5:61:be:f7:67:5b:d4:e0:18:ef:4a:95:7f:08:ac: 73:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1A:35:F3:94:F6:95:6B:7F:72:84:8E:00:98:E5:CC:C5:2C:C0:37 X509v3 Authority Key Identifier: keyid:02:15:50:2A:A8:FF:DC:72:1D:7F:84:F7:4C:D0:70:B7:56:39:00:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/38EC4D321F2711EB93A71042C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.76.0/24 IPv6: 2405:e640:c0fd::/48 2405:e640:d000::/36 Signature Algorithm: sha256WithRSAEncryption a4:f4:e8:d2:9a:e9:ac:7b:50:58:86:b6:12:cc:c0:27:c6:a9: 22:b8:90:87:22:2d:1e:4b:ff:e5:11:65:5c:95:3e:bb:e5:42: fd:9a:ad:33:af:cc:22:ec:c3:f4:b8:9d:22:d7:ab:89:98:b6: 3d:30:6d:6b:0c:1c:41:f2:f5:44:96:19:cc:35:12:2e:c4:88: a1:79:e9:c0:3f:e4:54:37:34:17:36:76:c5:fa:2a:7f:57:ef: 03:ee:2c:a4:7e:41:48:75:d3:23:1a:0f:08:26:92:2b:f2:91: c4:76:d5:53:e0:04:7f:ab:e4:b8:b5:90:9b:34:c3:25:4a:e4: 73:66:c4:2d:73:1e:dc:f7:42:44:5c:ad:1f:c9:c1:7a:ba:5b: e5:01:20:11:46:d2:d6:a5:c1:e9:43:a4:12:87:ff:8d:4f:df: 0d:1e:90:f8:2a:5d:c1:37:36:d7:77:1c:f7:45:90:a3:24:b4: 6e:78:f9:b7:7f:ab:61:e0:9f:b6:9c:d5:bb:18:24:10:b5:23: 78:83:cb:d8:83:9f:18:89:75:f9:b6:3a:1f:f9:ac:29:93:42: 68:2e:d8:a3:89:b4:ba:74:b1:ec:c0:b2:c0:24:4b:24:ea:89: 40:99:30:8c:06:09:5a:db:9f:8c:c3:c2:e2:fa:ae:e6:62:95: 2d:d8:ff:da -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICCUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ3RUYxMTAvBgNVBAUTKDAyMTU1MDJBQThGRkRDNzIxRDdGODRGNzRDRDA3MEI3 NTYzOTAwMTYwHhcNMjUwNDEwMjAzMDMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MmE2OC1lMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWD6nWPDVuZJ5osNnG/ZykKppq399kYoOsDWdHyazwb5M7Mf3JVvDsX5Qcsl vk9a8UiHA5gMRQBcLMXdpSc+eR6StVTAiCWl6XUGnITt8ZNejghsoO5s+ccWMyfl fQYS9a403IqBFyxUTXba45MiIKNqMW2G2OmnLvDNotV+MahuD4UDYovAlYIH585d KCqsFIbfDW+5A19aJ+AsdhB+Lo5hqid/mfaqxpQulvUjBeFwC5Qs3tGGtnLHjvuj 9hfpW1G5D36SmEd11EVnbGEm1FH4f2KMJu8SCU7Qcl+ifEd4DlAuDEkl1SrZX0pw JUS1Yb73Z1vU4BjvSpV/CKxzLwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFN8aNfOU 9pVrf3KEjgCY5czFLMA3MB8GA1UdIwQYMBaAFAIVUCqo/9xyHX+E90zQcLdWOQAW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDdFRi84QTI5MTA0Njk5 MTYxMUVBOTk1NUQ1MEJDNEY5QUUwMi9BaFZRS3FqXzNISWRmNFQzVE5Cd3QxWTVB QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FoVlFLcWpfM0hJZGY0VDNUTkJ3dDFZNUFCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ3RUYvOEEyOTEwNDY5OTE2MTFFQTk5NTVENTBCQzRGOUFFMDIvMzhFQzREMzIx RjI3MTFFQjkzQTcxMDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBABnlUwwFwQCAAIwEQMHACQF5kDA/QMGBCQF5kDQMA0GCSqG SIb3DQEBCwUAA4IBAQCk9OjSmumse1BYhrYSzMAnxqkiuJCHIi0eS//lEWVclT67 5UL9mq0zr8wi7MP0uJ0i16uJmLY9MG1rDBxB8vVElhnMNRIuxIiheenAP+RUNzQX NnbF+ip/V+8D7iykfkFIddMjGg8IJpIr8pHEdtVT4AR/q+S4tZCbNMMlSuRzZsQt cx7c90JEXK0fycF6ulvlASARRtLWpcHpQ6QSh/+NT98NHpD4Kl3BNzbXdxz3RZCj JLRuePm3f6th4J+2nNW7GCQQtSN4g8vYg58YiXX5tjof+awpk0JoLtijibS6dLHs wLLAJEsk6olAmTCMBgla25+Mw8Li+q7mYpUt2P/a -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:53 2025 by rpki-client on console.sobornost.net