$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa File: 17A5A8400EC811F088512D41C4F9AE02.roa (raw, json) Hash identifier: tVHP7vE09ih639kPT+zHjlRDQm6GDfHkbd/XlPHcK/0= Subject key identifier: 90:4A:32:AA:78:52:B8:3A:3A:5B:15:23:D0:A3:AF:15:00:34:FB:45 Certificate issuer: /CN=A9120AC1/serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Certificate serial: 04A0 Authority key identifier: 8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa Signing time: Tue 01 Apr 2025 07:08:20 +0000 ROA not before: Tue 01 Apr 2025 07:08:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 963 IP address blocks: 43.225.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Validity Not Before: Apr 1 07:08:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67eb90e4-db47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:8b:49:ad:04:f4:aa:ba:88:a7:d7:8c:1f: 6d:00:1f:8c:7c:b4:43:73:11:ab:0e:9c:c3:d8:35: 87:80:f4:7b:c7:a1:82:e9:c9:41:8b:51:e0:9c:59: ca:a2:d5:7f:77:1a:be:e9:07:3e:ed:e2:54:ea:49: 8b:e6:0e:04:6c:1a:a8:66:df:b0:d4:48:a9:43:76: a3:d9:46:2e:1f:1c:22:f9:92:de:75:c9:cb:29:b5: f1:8a:e9:20:c7:81:65:e4:d1:4f:f7:f3:ec:e5:21: cf:aa:d3:cb:20:83:7d:9d:d8:34:b5:c2:fe:71:52: 18:52:a8:4b:10:50:bc:30:2e:1e:34:21:2d:db:29: c2:f1:c0:ad:37:ce:4c:77:28:ef:1c:61:ae:89:4d: a9:de:22:a0:05:0e:84:ed:42:9d:3a:f7:39:9e:a3: b2:96:32:ca:04:43:d5:bb:fa:a3:8c:fe:00:ca:a4: 16:fb:ba:0e:2d:54:8d:e0:b0:6a:c5:dd:0e:be:de: 51:7c:74:d7:5d:17:5b:57:39:e6:ee:0a:0f:c3:41: 26:d1:b8:f7:cb:23:ad:6d:c0:87:cf:25:38:4e:73: 09:82:23:1c:d9:6e:15:68:5a:be:83:1e:85:ab:fb: 67:12:10:50:41:cd:54:50:e1:f0:a2:79:b9:32:66: 65:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4A:32:AA:78:52:B8:3A:3A:5B:15:23:D0:A3:AF:15:00:34:FB:45 X509v3 Authority Key Identifier: keyid:8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.196.0/22 Signature Algorithm: sha256WithRSAEncryption 21:03:cc:8f:d2:ee:ae:08:8b:e7:a3:03:c0:51:ab:c7:eb:6b: 58:98:cd:2d:84:70:ba:d5:91:f0:da:bd:5f:18:4b:2f:8c:10: 38:5a:71:47:10:48:ba:09:e6:5e:48:9e:b8:8c:ca:2d:c1:e6: e6:da:cb:db:22:df:59:3c:76:1c:62:15:7f:8d:1d:64:63:5c: 51:1f:e9:7c:69:fe:28:ec:91:ed:27:40:68:55:54:42:19:54: a4:ba:8f:70:ec:f4:19:a6:1f:48:41:36:4c:75:53:a9:83:81: cc:ae:68:a9:78:95:8f:ea:8b:50:89:ef:69:7f:20:52:40:7d: d7:af:83:f2:2f:0d:77:da:2c:2a:c8:96:12:77:b8:5f:17:18: 91:02:c4:fc:5f:fa:27:f9:81:d8:77:e4:7e:2e:12:f8:49:8f: 1a:cb:09:ca:20:c5:d6:09:53:30:2a:cd:27:d6:5e:6f:83:5f: 8c:30:b2:8a:d5:98:0c:cf:e0:cd:0b:30:1b:3b:87:bd:52:82: 96:07:c8:4f:43:c0:b8:ce:40:69:e1:ab:67:24:36:f6:8c:99: d2:e2:4c:b5:37:a1:97:52:59:95:a5:62:e7:79:49:f0:21:b3: f3:c7:af:32:cb:44:a5:b5:18:85:63:bb:e7:2b:67:91:91:41: c7:a0:30:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDhGMkJENEMxMjYzNkYwMDU5QjQwOEQwNzE2QUYzMkM4 RjU0MDY5QTUwHhcNMjUwNDAxMDcwODIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViOTBlNC1kYjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxuLSa0E9Kq6iKfXjB9tAB+MfLRDcxGrDpzD2DWHgPR7x6GC6clBi1HgnFnK otV/dxq+6Qc+7eJU6kmL5g4EbBqoZt+w1EipQ3aj2UYuHxwi+ZLedcnLKbXxiukg x4Fl5NFP9/Ps5SHPqtPLIIN9ndg0tcL+cVIYUqhLEFC8MC4eNCEt2ynC8cCtN85M dyjvHGGuiU2p3iKgBQ6E7UKdOvc5nqOyljLKBEPVu/qjjP4AyqQW+7oOLVSN4LBq xd0Ovt5RfHTXXRdbVznm7goPw0Em0bj3yyOtbcCHzyU4TnMJgiMc2W4VaFq+gx6F q/tnEhBQQc1UUOHwonm5MmZlFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJBKMqp4 Urg6OlsVI9CjrxUANPtFMB8GA1UdIwQYMBaAFI8r1MEmNvAFm0CNBxavMsj1QGml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS80ODAxN0QzODMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhBV2JRSTBIRnE4eXlQVkFh YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dlV3U1kyOEFXYlFJMEhGcTh5eVBWQWFhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvNDgwMTdEMzgzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvMTdBNUE4NDAw RUM4MTFGMDg4NTEyRDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr4cQwDQYJKoZIhvcNAQELBQADggEBACEDzI/S7q4Ii+ej A8BRq8fra1iYzS2EcLrVkfDavV8YSy+MEDhacUcQSLoJ5l5InriMyi3B5ubay9si 31k8dhxiFX+NHWRjXFEf6Xxp/ijske0nQGhVVEIZVKS6j3Ds9BmmH0hBNkx1U6mD gcyuaKl4lY/qi1CJ72l/IFJAfdevg/IvDXfaLCrIlhJ3uF8XGJECxPxf+if5gdh3 5H4uEvhJjxrLCcogxdYJUzAqzSfWXm+DX4wwsorVmAzP4M0LMBs7h71SgpYHyE9D wLjOQGnhq2ckNvaMmdLiTLU3oZdSWZWlYud5SfAhs/PHrzLLRKW1GIVju+crZ5GR QcegMP4= -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net