$ rpki-client -vvf rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa File: 2E22941AB6C811EE925FF152C4F9AE02.roa (raw, json) Hash identifier: WgUlT7H7XN+2sl5P7W/wy/rdoHYfD4dEOcmhRhEv9TU= Subject key identifier: 9B:67:11:E4:5F:DA:B2:84:70:6F:CA:9C:52:88:1C:85:D0:BA:E0:B0 Certificate issuer: /CN=A91175BA/serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Certificate serial: 0107 Authority key identifier: EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa Signing time: Sun 27 Apr 2025 07:03:25 +0000 ROA not before: Sun 27 Apr 2025 07:03:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152320 IP address blocks: 103.85.72.0/22 maxlen: 23 103.85.72.0/24 maxlen: 24 103.85.73.0/24 maxlen: 24 103.85.74.0/24 maxlen: 24 103.85.75.0/24 maxlen: 24 203.175.12.0/22 maxlen: 24 2001:df0:a640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175BA, serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Validity Not Before: Apr 27 07:03:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680dd6bc-ece7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7c:e7:bd:31:ad:5e:05:64:3b:7c:43:67:88: c0:03:68:94:f7:31:bc:f9:6b:62:02:f7:b5:24:81: a7:b1:45:d8:6c:72:47:95:67:7c:a2:ee:48:a8:a7: b0:f6:46:46:9f:77:43:e4:37:d1:53:b5:4e:d6:21: 4c:94:f7:69:cf:8f:44:82:2f:89:c4:45:6c:b6:c4: 25:13:14:e0:0c:83:dc:cd:b2:4b:f5:0f:a7:37:cd: 67:12:f0:e2:12:a6:35:e2:86:e4:71:fb:40:02:77: 2e:f3:76:c1:4f:65:fc:df:b7:66:7b:5a:19:10:92: 5b:9b:e5:93:c0:c6:ed:47:39:da:21:ad:85:1a:cd: 92:b7:23:48:ab:aa:d4:82:d8:19:22:af:3c:fa:5f: 58:74:0e:5a:83:07:50:07:90:b6:ae:5e:30:d7:f1: 0e:7c:c1:0e:eb:7b:d3:58:1b:fc:df:e7:d2:60:bd: d8:83:93:af:d5:ee:e8:29:de:55:23:86:21:9b:1b: c4:8b:86:7d:7c:d4:91:eb:14:4e:49:72:ea:2e:79: e0:d6:85:75:e5:cc:38:6e:9f:59:03:fd:0a:6d:5d: 87:b9:e3:f4:27:80:9f:8a:b7:f7:d1:38:74:37:40: 9f:1e:39:4e:3d:3c:d9:52:63:39:34:ed:2a:25:9f: b6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:67:11:E4:5F:DA:B2:84:70:6F:CA:9C:52:88:1C:85:D0:BA:E0:B0 X509v3 Authority Key Identifier: keyid:EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.72.0/22 203.175.12.0/22 IPv6: 2001:df0:a640::/48 Signature Algorithm: sha256WithRSAEncryption 84:1c:31:66:88:02:9f:01:dd:e2:82:61:a3:91:f8:45:38:e7: 7a:d9:41:36:84:99:a7:b4:a0:ad:6c:63:7f:41:7f:1f:ea:a0: fa:29:9b:8b:f3:72:d4:71:60:c6:0b:3b:5a:ea:d4:13:3c:a3: 22:65:70:86:0d:7c:c8:4c:89:d8:b9:6b:a2:ff:4e:d6:53:8f: 6b:61:7f:2b:3a:71:71:7f:53:f1:c7:28:08:24:62:d1:fb:b6: de:01:9c:00:eb:00:0d:74:cc:91:04:28:04:d4:ce:9e:b9:47: 3c:f0:da:ae:7a:7c:b6:1c:5b:ca:a0:5b:61:9b:f0:1e:00:f9: 49:df:fd:2d:08:56:7a:d5:ce:8b:17:46:31:e2:e7:b9:2f:60: 1b:27:cc:74:60:55:fe:89:c2:cf:e1:36:b1:05:71:53:2d:52: 54:2d:84:6f:51:50:0d:75:6a:7a:a1:36:80:13:2a:a3:45:13: 9e:0e:6b:29:e1:c3:fb:dd:cc:26:d8:d0:98:22:a5:de:74:a6: 45:75:65:55:d9:b0:c7:5b:2d:4d:c8:fe:08:9f:66:1c:d5:85: c5:a3:ab:53:cb:1e:74:92:1e:e9:45:52:af:b8:dc:52:13:75: 67:f9:9e:7a:e1:0b:8b:82:89:aa:3d:10:f6:58:cc:60:4b:2d: c2:2f:55:c1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1QkExMTAvBgNVBAUTKEVBNjExMzdDMDkwMDkwNkU0NzQ4RDFFMDdDQzU1NUU2 QTdDQ0UxMDAwHhcNMjUwNDI3MDcwMzI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkZDZiYy1lY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43znvTGtXgVkO3xDZ4jAA2iU9zG8+WtiAve1JIGnsUXYbHJHlWd8ou5IqKew 9kZGn3dD5DfRU7VO1iFMlPdpz49Egi+JxEVstsQlExTgDIPczbJL9Q+nN81nEvDi EqY14obkcftAAncu83bBT2X837dme1oZEJJbm+WTwMbtRznaIa2FGs2StyNIq6rU gtgZIq88+l9YdA5agwdQB5C2rl4w1/EOfMEO63vTWBv83+fSYL3Yg5Ov1e7oKd5V I4YhmxvEi4Z9fNSR6xROSXLqLnng1oV15cw4bp9ZA/0KbV2HueP0J4Cfirf30Th0 N0CfHjlOPTzZUmM5NO0qJZ+23wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJtnEeRf 2rKEcG/KnFKIHIXQuuCwMB8GA1UdIwQYMBaAFOphE3wJAJBuR0jR4HzFVeanzOEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVCQS8xNkM0RDJCOEM4 NEQxMUVCOTkxM0QzMkRDNEY5QUUwMi82bUVUZkFrQWtHNUhTTkhnZk1WVjVxZk00 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZtRVRmQWtBa0c1SFNOSGdmTVZWNXFmTTRRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc1QkEvMTZDNEQyQjhDODREMTFFQjk5MTNEMzJEQzRGOUFFMDIvMkUyMjk0MUFC NkM4MTFFRTkyNUZGMTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnVUgDBALLrwwwDwQCAAIwCQMHACABDfCmQDANBgkqhkiG 9w0BAQsFAAOCAQEAhBwxZogCnwHd4oJho5H4RTjnetlBNoSZp7SgrWxjf0F/H+qg +imbi/Ny1HFgxgs7WurUEzyjImVwhg18yEyJ2Llrov9O1lOPa2F/KzpxcX9T8cco CCRi0fu23gGcAOsADXTMkQQoBNTOnrlHPPDarnp8thxbyqBbYZvwHgD5Sd/9LQhW etXOixdGMeLnuS9gGyfMdGBV/onCz+E2sQVxUy1SVC2Eb1FQDXVqeqE2gBMqo0UT ng5rKeHD+93MJtjQmCKl3nSmRXVlVdmwx1stTcj+CJ9mHNWFxaOrU8sedJIe6UVS r7jcUhN1Z/meeuELi4KJqj0Q9ljMYEstwi9VwQ== -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net