$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa File: ED4C74EC5B2911EDAC608856C4F9AE02.roa (raw, json) Hash identifier: q9NbetQ6RooEPqs7Z6/euz24xz0gLtevk3mcKB1IVZM= Subject key identifier: 84:47:89:CC:4A:B0:A9:48:AA:EF:91:F4:A5:38:54:2A:EC:29:7D:59 Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 102C Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa Signing time: Wed 12 Feb 2025 18:06:14 +0000 ROA not before: Wed 12 Feb 2025 18:06:14 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 54197 IP address blocks: 103.136.184.0/24 maxlen: 32 103.136.186.0/24 maxlen: 32 2404:9ec0:114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4140 (0x102c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C, serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 12 18:06:14 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ace315-d277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:bd:68:9c:4f:fe:32:98:84:f9:56:d3:79:96: 86:03:f6:b0:1b:f3:31:66:13:fa:18:54:0b:ef:4c: b8:1d:a9:5e:84:bc:6e:2e:88:63:a5:02:c9:c7:9f: 4f:37:39:9e:ce:79:93:41:ab:9d:fe:ab:d7:80:55: c6:2b:e1:03:c4:20:17:e7:22:fe:9a:64:6c:32:67: b3:f1:eb:3f:7f:e6:85:39:64:10:06:96:3b:05:05: 63:9f:60:05:12:8c:27:96:24:dd:43:b5:1e:45:6d: 69:3e:bd:2f:78:bf:ac:7a:87:53:4d:a6:f5:d1:e5: 5f:a6:19:a5:74:3f:9a:de:da:29:80:ac:f2:87:e1: 5d:fb:ea:3c:de:8e:85:6f:f6:b2:49:50:d8:17:41: 9c:cc:b6:58:ef:1c:2a:e5:c5:f6:59:46:87:60:1f: f4:5c:bc:31:97:ca:06:09:ca:61:0b:4e:67:28:02: 10:26:f8:47:50:d8:b8:1c:a9:f6:31:d4:52:b9:0a: 69:79:6b:f0:3a:cb:bf:4c:45:bd:e1:b8:94:23:6e: d4:5a:73:f3:55:94:27:3c:9c:13:4a:23:eb:60:d7: ce:8b:d2:3e:3d:30:c6:cc:1d:e0:a2:13:9c:ca:f0: c4:2e:3c:15:b8:66:ae:50:d5:40:c5:85:ca:36:ae: 7f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:47:89:CC:4A:B0:A9:48:AA:EF:91:F4:A5:38:54:2A:EC:29:7D:59 X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.184.0/24 103.136.186.0/24 IPv6: 2404:9ec0:114::/48 Signature Algorithm: sha256WithRSAEncryption 11:cc:1a:d8:49:8a:fb:1c:dd:b5:04:2c:e8:92:09:be:0a:78: fe:c3:54:0b:86:5b:08:c1:69:de:ae:67:54:31:35:0f:d8:6f: c5:c9:77:1a:4f:8a:80:9e:2e:e8:01:e8:31:ab:43:55:e9:19: aa:0c:f5:f9:c1:97:31:eb:fb:c9:7c:45:3b:e8:98:85:76:fd: bc:a2:3a:ec:69:b1:75:10:ff:ee:d6:5f:4a:bf:35:eb:96:bd: 36:b0:00:c6:05:0d:6e:3f:c7:74:96:3b:0e:5a:ab:de:bc:c8: 56:a4:39:ae:6f:33:e8:4f:f1:b2:f5:fd:e5:22:b0:63:bd:8a: b9:10:ed:7c:24:fa:5b:97:b6:64:7a:23:3a:f0:d2:a7:53:1e: 7a:58:35:28:1a:a6:9b:9b:cc:85:27:2a:66:4e:54:d8:45:18: 7f:5d:d6:d8:97:f7:34:b8:bc:be:40:a9:b9:f4:40:c7:b5:74: b2:47:61:49:ba:81:cb:25:db:8d:66:d3:3d:bd:c9:07:50:7e: ee:d9:7e:44:f9:6f:5f:80:20:a7:eb:0d:65:dc:53:4f:78:9b: 0c:09:72:e3:8c:a0:b9:8e:e3:05:e1:d9:3d:95:cd:68:de:30: 21:5f:ce:c0:42:d8:fa:70:fc:13:bd:35:38:02:85:01:58:5f: 91:c4:cd:b5 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICECwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjUwMjEyMTgwNjE0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZTMxNS1kMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6L1onE/+MpiE+VbTeZaGA/awG/MxZhP6GFQL70y4HalehLxuLohjpQLJx59P NzmeznmTQaud/qvXgFXGK+EDxCAX5yL+mmRsMmez8es/f+aFOWQQBpY7BQVjn2AF EownliTdQ7UeRW1pPr0veL+seodTTab10eVfphmldD+a3topgKzyh+Fd++o83o6F b/aySVDYF0GczLZY7xwq5cX2WUaHYB/0XLwxl8oGCcphC05nKAIQJvhHUNi4HKn2 MdRSuQppeWvwOsu/TEW94biUI27UWnPzVZQnPJwTSiPrYNfOi9I+PTDGzB3gohOc yvDELjwVuGauUNVAxYXKNq5/RwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIRHicxK sKlIqu+R9KU4VCrsKX1ZMB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvRUQ0Qzc0RUM1 QjI5MTFFREFDNjA4ODU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABniLgDBABniLowDwQCAAIwCQMHACQEnsABFDANBgkqhkiG 9w0BAQsFAAOCAQEAEcwa2EmK+xzdtQQs6JIJvgp4/sNUC4ZbCMFp3q5nVDE1D9hv xcl3Gk+KgJ4u6AHoMatDVekZqgz1+cGXMev7yXxFO+iYhXb9vKI67GmxdRD/7tZf Sr8165a9NrAAxgUNbj/HdJY7Dlqr3rzIVqQ5rm8z6E/xsvX95SKwY72KuRDtfCT6 W5e2ZHojOvDSp1Meelg1KBqmm5vMhScqZk5U2EUYf13W2Jf3NLi8vkCpufRAx7V0 skdhSbqByyXbjWbTPb3JB1B+7tl+RPlvX4Agp+sNZdxTT3ibDAly44yguY7jBeHZ PZXNaN4wIV/OwELY+nD8E701OAKFAVhfkcTNtQ== -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:25 2025 by rpki-client on console.sobornost.net