$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/AF4301D4CF8511EF94856A41C4F9AE02.roa File: AF4301D4CF8511EF94856A41C4F9AE02.roa (raw, json) Hash identifier: eqsW8B/nzh24Js41J8yQQdlaY75NMXqpYi5U4uiBwdI= Subject key identifier: EF:C6:66:40:6A:51:6A:CC:E6:EF:5F:FC:27:D0:C3:F6:F8:12:97:E3 Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 3C Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/AF4301D4CF8511EF94856A41C4F9AE02.roa Signing time: Tue 22 Apr 2025 11:02:08 +0000 ROA not before: Tue 22 Apr 2025 11:02:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139628 IP address blocks: 146.88.200.0/23 maxlen: 24 146.88.204.0/23 maxlen: 24 167.179.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Apr 22 11:02:08 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6807772f-f120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:ec:08:55:97:ab:fe:18:8d:7f:52:4e:8f: 0a:26:f0:72:71:f4:78:fe:77:d0:7d:0c:d8:85:c9: 17:b1:be:94:ba:88:1a:2a:ca:47:bd:b4:ef:b2:e8: 90:e2:5c:ac:6d:6b:2f:59:a0:de:69:df:8a:ca:05: 87:b9:9f:81:3b:b5:71:ea:30:04:92:e5:09:c2:0c: 95:93:5e:21:8e:8c:f0:cf:ec:93:c0:ac:eb:a6:17: 79:c8:3a:39:f0:d6:22:fd:f4:ec:a9:f6:be:ca:df: bd:23:a5:68:81:9b:34:4f:32:18:ed:52:65:2f:24: bf:a6:c6:a0:2c:51:e5:80:33:25:56:88:d0:9d:89: d3:12:2f:8f:de:7c:b4:31:71:73:4e:9b:5f:3c:72: c8:9e:a2:3e:42:c5:0f:f9:77:1d:9d:70:e9:d4:04: 00:74:22:08:7c:86:10:31:f4:91:3d:a7:2d:37:69: b9:f7:7b:63:c3:2e:77:27:4c:a0:50:91:29:26:7c: 58:8f:a2:bf:e7:3b:d5:74:ac:8e:ae:85:c6:fa:68: 36:24:50:c5:c3:c6:93:3a:5c:05:02:8a:c9:05:a7: af:33:42:d4:a2:78:9a:4c:9f:e7:b1:5f:ee:ea:80: 49:7c:d4:03:56:4f:3f:fc:d8:f6:f5:98:2f:fb:82: 96:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C6:66:40:6A:51:6A:CC:E6:EF:5F:FC:27:D0:C3:F6:F8:12:97:E3 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/AF4301D4CF8511EF94856A41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.88.200.0/23 146.88.204.0/23 167.179.20.0/23 Signature Algorithm: sha256WithRSAEncryption 39:a1:fc:56:b3:ab:b4:ce:b9:25:bf:cb:a2:2f:b1:c4:76:43: 3a:d7:58:f7:26:16:ae:4e:44:6d:4e:a3:24:d2:63:c3:55:5e: b0:4a:81:61:9e:db:93:04:59:36:be:0c:7f:9b:40:88:12:8b: 70:26:60:00:9d:c3:f4:23:6c:ae:d2:f1:60:c9:c1:bd:3f:8d: d3:6f:89:3b:85:b2:84:20:ea:1b:7a:18:cb:18:47:02:cc:3b: c1:2c:1d:bf:73:35:8b:39:a8:f3:c1:1d:d2:f8:ef:e6:a4:74: da:3b:b0:a9:05:0c:8a:de:29:11:89:f9:be:83:e4:6e:cd:44: 28:43:5c:2b:7b:0e:a2:55:56:cd:53:20:ec:f3:ba:27:25:c0: 7f:cc:8a:40:09:3d:11:54:e8:37:5d:b7:98:c1:94:2f:06:fb: 90:f0:95:55:dc:24:84:71:44:01:ba:9e:d6:e8:af:54:e8:87: 20:15:66:02:39:eb:f9:1e:ee:aa:2a:b5:28:26:ba:d2:06:76: 2f:53:64:e1:b6:dd:bb:b3:a5:39:27:f3:e1:a7:9c:49:69:bc: 53:85:73:08:71:78:fa:6f:07:4a:33:e5:7a:4b:a1:25:66:24: 93:7a:a3:03:08:e4:88:b2:20:ac:bd:03:fb:1c:27:b5:6a:c1: b5:87:91:c4 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0E4MjExMC8GA1UEBRMoNjg0MTNENDFGNjAwNUUwMzE2RTBFMjU3NkYyMjZDMjE4 OEFBMTU2RjAeFw0yNTA0MjIxMTAyMDhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDc3NzJmLWYxMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAj+wIVZer/hiNf1JOjwom8HJx9Hj+d9B9DNiFyRexvpS6iBoqyke9tO+y6JDi XKxtay9ZoN5p34rKBYe5n4E7tXHqMASS5QnCDJWTXiGOjPDP7JPArOumF3nIOjnw 1iL99Oyp9r7K370jpWiBmzRPMhjtUmUvJL+mxqAsUeWAMyVWiNCdidMSL4/efLQx cXNOm188csieoj5CxQ/5dx2dcOnUBAB0Igh8hhAx9JE9py03abn3e2PDLncnTKBQ kSkmfFiPor/nO9V0rI6uhcb6aDYkUMXDxpM6XAUCiskFp68zQtSieJpMn+exX+7q gEl81ANWTz/82Pb1mC/7gpazAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQU78ZmQGpR aszm71/8J9DD9vgSl+MwHwYDVR0jBBgwFoAUaEE9QfYAXgMW4OJXbyJsIYiqFW8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQTgyL0Y2OTlFMzU0Q0Yx MjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZX OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYUVFOVFmWUFYZ01XNE9KWGJ5SnNJWWlxRlc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9BRjQzMDFENENG ODUxMUVGOTQ4NTZBNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAZJYyAMEAZJYzAMEAaezFDANBgkqhkiG9w0BAQsFAAOCAQEA OaH8VrOrtM65Jb/Loi+xxHZDOtdY9yYWrk5EbU6jJNJjw1VesEqBYZ7bkwRZNr4M f5tAiBKLcCZgAJ3D9CNsrtLxYMnBvT+N02+JO4WyhCDqG3oYyxhHAsw7wSwdv3M1 izmo88Ed0vjv5qR02juwqQUMit4pEYn5voPkbs1EKENcK3sOolVWzVMg7PO6JyXA f8yKQAk9EVToN123mMGULwb7kPCVVdwkhHFEAbqe1uivVOiHIBVmAjnr+R7uqiq1 KCa60gZ2L1Nk4bbdu7OlOSfz4aecSWm8U4VzCHF4+m8HSjPlekuhJWYkk3qjAwjk iLIgrL0D+xwntWrBtYeRxA== -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net