$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa File: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE= Subject key identifier: 3F:F2:6D:BC:A9:D9:01:87:74:D4:15:EC:66:83:ED:79:21:7C:6A:32 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0482 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa Signing time: Tue 04 Feb 2025 23:42:54 +0000 ROA not before: Tue 04 Feb 2025 23:42:54 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9744 IP address blocks: 69.72.80.0/21 maxlen: 24 148.66.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1154 (0x482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Feb 4 23:42:54 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2a5fd-3964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:fe:3c:6d:28:73:c6:1c:15:c5:f0:c6:86: af:81:46:4a:e8:69:f2:1d:5d:3c:f0:c8:5d:f6:1c: 83:a3:13:18:f0:9f:3b:89:3a:6d:88:3e:44:a4:1e: bd:28:8d:de:42:c0:d9:2e:5d:57:c5:2a:af:df:de: 58:1d:97:15:13:80:73:aa:76:53:91:a0:6a:8e:06: 72:e5:af:f9:ba:bf:b9:ca:29:2a:bd:87:a7:2e:3f: 5c:68:0c:cb:5f:94:df:b1:35:ea:9c:aa:6c:7a:09: f8:40:b0:0f:36:e8:0a:e0:4b:f5:f5:79:9e:55:fe: 1f:59:bd:2a:54:68:9b:06:18:48:9c:b4:99:b9:4f: 67:9f:a7:31:75:c2:00:2d:b1:2e:aa:ee:fd:1f:10: 01:9a:b9:02:92:af:5f:3c:30:fc:f2:97:86:90:12: 4f:e3:c4:04:58:8b:3d:b2:fd:44:5e:db:9b:97:42: 8d:ac:1f:10:b1:3c:72:bc:c8:ea:79:0e:82:e4:1f: 2b:6d:45:11:29:61:de:68:31:dc:fd:55:91:06:12: 74:4a:6f:a8:22:bd:fa:d0:c3:ca:24:77:29:41:ff: 82:9c:09:ad:61:10:d4:20:71:95:c5:dd:97:2e:79: 65:70:06:8f:0f:68:8d:8b:d7:d0:29:73:68:e7:bd: db:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F2:6D:BC:A9:D9:01:87:74:D4:15:EC:66:83:ED:79:21:7C:6A:32 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 69.72.80.0/21 148.66.48.0/20 Signature Algorithm: sha256WithRSAEncryption 95:5e:5b:af:6f:2d:ee:b8:15:c4:f0:e8:c5:d2:e9:32:2d:12: 5d:e7:6e:71:93:cd:d9:d0:45:8b:a8:a3:b5:fa:c1:f4:ec:66: 71:28:44:7f:be:39:19:2d:e1:0c:fc:52:74:6c:93:6f:34:56: 01:11:4a:7d:29:d0:a1:62:04:b1:f3:62:1b:30:39:f3:e8:4b: 44:24:ec:36:3c:94:e0:c1:f7:e8:04:4a:d8:ba:b9:cf:86:77: 71:97:e6:d5:77:de:68:c8:25:de:66:f5:86:c8:6b:ee:e6:11: 9b:a0:ba:05:5e:9a:84:f0:2f:6d:32:9f:32:4d:72:1a:05:d5: fa:ca:c5:b3:b3:40:bb:61:83:00:8a:f5:53:8c:a4:af:2e:59: 25:32:20:7f:e4:28:f9:84:cf:e8:23:7f:d4:5f:f1:75:fe:f0: 40:67:e2:b5:0f:a8:d9:f3:b1:09:d4:af:e7:96:41:17:eb:57: e1:5a:66:4e:a0:47:6d:27:db:7f:0d:a9:9f:45:7a:80:72:6a: fb:72:2c:5b:0a:94:bf:13:52:92:12:9b:3a:68:de:2f:df:63: d9:dc:ff:e2:b7:ec:27:91:a2:ea:ed:eb:67:26:80:17:0e:9a: 7c:d1:dd:99:17:81:a4:a9:3a:55:92:20:6c:f7:d1:92:d7:8f: 9f:e7:e7:47 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwMjA0MjM0MjU0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyYTVmZC0zOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFT+PG0oc8YcFcXwxoavgUZK6GnyHV088Mhd9hyDoxMY8J87iTptiD5EpB69 KI3eQsDZLl1XxSqv395YHZcVE4BzqnZTkaBqjgZy5a/5ur+5yikqvYenLj9caAzL X5TfsTXqnKpsegn4QLAPNugK4Ev19XmeVf4fWb0qVGibBhhInLSZuU9nn6cxdcIA LbEuqu79HxABmrkCkq9fPDD88peGkBJP48QEWIs9sv1EXtubl0KNrB8QsTxyvMjq eQ6C5B8rbUURKWHeaDHc/VWRBhJ0Sm+oIr360MPKJHcpQf+CnAmtYRDUIHGVxd2X LnllcAaPD2iNi9fQKXNo573bQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD/ybbyp 2QGHdNQV7GaD7XkhfGoyMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvM0U5QTRBRTAzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvM0EyQTgwQUUz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANFSFADBASUQjAwDQYJKoZIhvcNAQELBQADggEBAJVeW69v Le64FcTw6MXS6TItEl3nbnGTzdnQRYuoo7X6wfTsZnEoRH++ORkt4Qz8UnRsk280 VgERSn0p0KFiBLHzYhswOfPoS0Qk7DY8lODB9+gESti6uc+Gd3GX5tV33mjIJd5m 9YbIa+7mEZugugVemoTwL20ynzJNchoF1frKxbOzQLthgwCK9VOMpK8uWSUyIH/k KPmEz+gjf9Rf8XX+8EBn4rUPqNnzsQnUr+eWQRfrV+FaZk6gR20n238NqZ9FeoBy avtyLFsKlL8TUpISmzpo3i/fY9nc/+K37CeRourt62cmgBcOmnzR3ZkXgaSpOlWS IGz30ZLXj5/n50c= -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:36 2025 by rpki-client on console.sobornost.net