$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/2C928134155711F099BFE331C4F9AE02.roa File: 2C928134155711F099BFE331C4F9AE02.roa (raw, json) Hash identifier: 47lhJb8uhRs8ieTedrS6V4SnBxu8DNcKDZI2uXa5ZQU= Subject key identifier: F9:A7:C7:3D:BD:2D:55:FB:C8:58:6C:5D:BA:14:F5:70:B9:5B:39:3F Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0778 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/2C928134155711F099BFE331C4F9AE02.roa Signing time: Wed 09 Apr 2025 15:30:49 +0000 ROA not before: Wed 09 Apr 2025 15:30:49 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153706 IP address blocks: 43.229.153.0/24 maxlen: 24 103.228.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Apr 9 15:30:49 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67f692a9-01e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8e:7c:5c:8f:85:b3:80:11:75:18:4e:c8:8f: 4c:3c:d8:52:9d:80:c6:a3:e7:f4:15:21:fc:d9:a5: fb:a2:5f:08:aa:bf:7e:c6:98:08:51:ea:42:32:52: 6d:17:0e:27:eb:4a:fe:9e:71:d9:e3:bd:f4:c5:90: 4a:86:fb:50:bf:8b:20:4f:bb:92:e8:f9:7f:42:69: 2d:97:7d:b6:a6:b0:fe:da:f3:e8:2c:34:86:bd:30: e8:1c:4e:f8:71:86:a3:ec:bb:49:05:9b:50:c7:49: d3:08:a3:45:e8:f7:31:9e:6a:0d:b5:00:d9:53:65: 0e:58:b7:3e:d8:75:1a:3a:64:ba:e6:9a:ff:bd:de: db:80:3e:86:f1:f6:b3:38:7c:fa:52:68:9e:1d:e7: e4:2e:71:a6:40:8e:79:74:de:84:44:d7:de:dc:bd: 77:e4:78:7b:83:4e:31:7d:c9:68:83:1d:37:70:b6: 37:9d:f9:9c:f5:8c:32:ff:04:a9:3e:b4:49:a0:b2: 56:50:e0:2c:9f:2c:ff:94:6b:32:75:60:3a:bd:40: d2:ce:ef:e0:b8:9a:30:67:59:29:03:eb:f5:ae:23: cb:38:b1:04:1b:a4:27:67:45:aa:0f:17:15:8b:b3: b3:25:8f:e1:40:d1:94:52:5b:f4:86:bc:1e:b3:bf: 9f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A7:C7:3D:BD:2D:55:FB:C8:58:6C:5D:BA:14:F5:70:B9:5B:39:3F X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/2C928134155711F099BFE331C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.153.0/24 103.228.64.0/24 Signature Algorithm: sha256WithRSAEncryption 88:1c:3e:b2:86:69:98:ed:8c:d7:9d:6b:52:48:14:fb:e3:f2: fd:31:a5:e0:28:1d:13:89:c5:fc:26:11:7a:64:26:57:01:5c: 3d:87:ab:6d:7c:7d:a4:94:85:5f:ae:26:b5:95:1f:53:51:23: 37:cb:12:64:20:5a:e7:35:1d:6c:04:7b:63:64:b7:9f:74:98: 6d:2c:54:35:96:ab:14:74:38:6a:d3:f9:5f:7d:d7:da:d6:89: 6d:2d:20:ff:0b:93:8d:4c:b6:54:c5:ca:3f:d7:2f:b0:ca:b7: 06:9e:60:b6:72:da:74:16:59:18:46:4d:16:db:b5:42:d9:16: 8a:5f:b3:9e:a4:01:c1:5d:60:90:f0:de:da:70:c4:39:27:87: 58:3d:a3:70:0c:d8:f2:a2:bc:81:8c:68:76:59:c7:5d:01:c3: 05:6f:a9:e9:20:06:1b:67:18:07:09:db:36:fa:2b:a5:cc:88: c1:88:e1:6d:49:8c:71:bb:92:e9:95:d0:22:e0:02:8a:bc:c3: 0f:23:53:6f:9e:7d:5f:4a:08:b8:f7:19:e2:50:fa:36:8f:23: f0:61:92:28:d5:b3:73:a8:0f:4e:26:29:30:bd:58:38:67:5a: d6:52:ea:78:5b:bf:0f:3c:6b:f1:e1:72:d5:3b:1a:3c:74:fd: c0:fc:4d:23 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNDA5MTUzMDQ5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y2OTJhOS0wMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw458XI+Fs4ARdRhOyI9MPNhSnYDGo+f0FSH82aX7ol8Iqr9+xpgIUepCMlJt Fw4n60r+nnHZ4730xZBKhvtQv4sgT7uS6Pl/Qmktl322prD+2vPoLDSGvTDoHE74 cYaj7LtJBZtQx0nTCKNF6PcxnmoNtQDZU2UOWLc+2HUaOmS65pr/vd7bgD6G8faz OHz6UmieHefkLnGmQI55dN6ERNfe3L135Hh7g04xfclogx03cLY3nfmc9Ywy/wSp PrRJoLJWUOAsnyz/lGsydWA6vUDSzu/guJowZ1kpA+v1riPLOLEEG6QnZ0WqDxcV i7OzJY/hQNGUUlv0hrwes7+f2QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPmnxz29 LVX7yFhsXboU9XC5Wzk/MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMkM5MjgxMzQx NTU3MTFGMDk5QkZFMzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr5ZkDBABn5EAwDQYJKoZIhvcNAQELBQADggEBAIgcPrKG aZjtjNeda1JIFPvj8v0xpeAoHROJxfwmEXpkJlcBXD2Hq218faSUhV+uJrWVH1NR IzfLEmQgWuc1HWwEe2Nkt590mG0sVDWWqxR0OGrT+V9919rWiW0tIP8Lk41MtlTF yj/XL7DKtwaeYLZy2nQWWRhGTRbbtULZFopfs56kAcFdYJDw3tpwxDknh1g9o3AM 2PKivIGMaHZZx10BwwVvqekgBhtnGAcJ2zb6K6XMiMGI4W1JjHG7kumV0CLgAoq8 ww8jU2+efV9KCLj3GeJQ+jaPI/BhkijVs3OoD04mKTC9WDhnWtZS6nhbvw88a/Hh ctU7Gjx0/cD8TSM= -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net