$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa File: 20AB43C81F9411F083A54B70C4F9AE02.roa (raw, json) Hash identifier: GRtkIj1YL0gqEVBvZmLDoilCINMA8Q7mQLGbrlN+AYw= Subject key identifier: EA:60:30:B6:64:91:18:1F:16:4C:D1:92:08:C3:2C:E2:AC:2E:84:E0 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F24 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa Signing time: Tue 22 Apr 2025 16:09:11 +0000 ROA not before: Tue 22 Apr 2025 16:09:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132110 IP address blocks: 43.250.104.0/23 maxlen: 24 43.250.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3876 (0xf24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Apr 22 16:09:11 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6807bf27-b329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:45:9a:0d:bb:b7:12:6d:6f:f4:17:1b:65:0a: 1b:eb:19:5c:17:a6:88:de:7d:b9:e0:b1:f1:ec:e8: 30:55:b3:01:91:8b:67:94:b5:1a:0a:91:e5:ba:8c: c1:92:86:90:c1:47:6f:b7:af:13:c9:5a:96:91:17: a0:52:f4:79:ca:5c:75:a7:4e:a2:ee:b8:be:e1:fb: 9c:6b:e3:52:f7:6a:bc:6b:bf:3b:bd:53:d4:8c:da: 55:cf:ba:1a:fa:84:73:77:d0:52:61:02:cd:6e:dd: 01:36:5d:8b:ee:e3:b2:72:35:c8:2d:b6:e8:6a:29: ff:5d:b0:19:24:35:70:af:7d:82:fc:06:3a:e3:8e: 3f:aa:be:e6:36:70:e7:73:cd:37:a3:42:8f:a4:6f: 39:11:3d:4c:1f:43:6a:d9:7f:59:76:73:9e:6f:f7: 2c:33:af:60:91:5d:f3:a2:29:d4:8b:e9:fe:cf:aa: 75:f2:6c:ae:c9:7b:83:20:56:3e:9f:79:92:02:bc: 70:9d:47:9e:70:b2:8e:41:56:23:28:90:51:aa:dd: 44:0b:45:d3:9a:1e:bf:6f:02:0b:68:8e:25:b6:79: 7f:b6:d6:bc:6e:0e:28:d2:30:08:d6:f4:59:e6:62: 4c:f0:01:a2:14:8c:25:b1:a0:c4:d0:08:be:99:5c: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:60:30:B6:64:91:18:1F:16:4C:D1:92:08:C3:2C:E2:AC:2E:84:E0 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.104.0-43.250.106.255 Signature Algorithm: sha256WithRSAEncryption 9f:9a:0d:83:20:4c:80:de:31:6b:dd:7b:49:f9:97:4a:c5:78: 78:73:7e:da:ee:80:d5:c9:e5:b9:85:89:45:f1:04:54:2b:b9: bf:20:39:23:50:d4:eb:70:b5:a9:04:2a:ce:9b:79:8f:ba:a2: d6:29:65:53:3c:b9:a0:21:76:07:b6:5b:ae:f8:eb:29:46:5c: d0:ab:30:46:4e:41:a3:48:d3:fe:c9:de:b8:b1:d5:b9:f7:93: e5:af:a8:0a:e3:bd:87:a2:d7:ac:30:cd:e9:27:02:9b:9e:71: 16:7c:33:b9:ee:31:b7:d0:fe:0f:12:3f:0f:94:64:39:ba:c2: 1e:00:18:fd:fc:87:ac:29:a5:80:56:79:18:dd:39:5a:5d:81: 00:e8:14:f1:86:2f:60:7c:f6:28:66:b4:17:83:e0:7f:1b:35: 4c:45:3a:05:d9:2c:53:eb:e3:1a:2e:75:c3:17:e3:79:0f:71: 53:92:5e:99:91:42:a7:20:f4:85:72:53:bd:0d:f0:51:63:1b: ed:e0:0c:aa:f8:92:6d:1a:1c:e2:a9:4d:6a:d4:8d:59:fe:47: e8:64:31:e6:60:f8:c7:7f:11:2a:2f:57:3b:af:7b:bb:14:05: 9b:98:e2:90:fb:cd:9d:3f:ff:13:c1:f7:0f:15:08:9e:33:62: 06:a3:a1:95 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNDIyMTYwOTExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3YmYyNy1iMzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEWaDbu3Em1v9BcbZQob6xlcF6aI3n254LHx7OgwVbMBkYtnlLUaCpHluozB koaQwUdvt68TyVqWkRegUvR5ylx1p06i7ri+4fuca+NS92q8a787vVPUjNpVz7oa +oRzd9BSYQLNbt0BNl2L7uOycjXILbboain/XbAZJDVwr32C/AY6444/qr7mNnDn c803o0KPpG85ET1MH0Nq2X9ZdnOeb/csM69gkV3zoinUi+n+z6p18myuyXuDIFY+ n3mSArxwnUeecLKOQVYjKJBRqt1EC0XTmh6/bwILaI4ltnl/tta8bg4o0jAI1vRZ 5mJM8AGiFIwlsaDE0Ai+mVxsuwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOpgMLZk kRgfFkzRkgjDLOKsLoTgMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMjBBQjQzQzgx Rjk0MTFGMDgzQTU0QjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAyv6aAMEACv6ajANBgkqhkiG9w0BAQsFAAOCAQEAn5oN gyBMgN4xa917SfmXSsV4eHN+2u6A1cnluYWJRfEEVCu5vyA5I1DU63C1qQQqzpt5 j7qi1illUzy5oCF2B7ZbrvjrKUZc0KswRk5Bo0jT/sneuLHVufeT5a+oCuO9h6LX rDDN6ScCm55xFnwzue4xt9D+DxI/D5RkObrCHgAY/fyHrCmlgFZ5GN05Wl2BAOgU 8YYvYHz2KGa0F4Pgfxs1TEU6BdksU+vjGi51wxfjeQ9xU5JemZFCpyD0hXJTvQ3w UWMb7eAMqviSbRoc4qlNatSNWf5H6GQx5mD4x38RKi9XO697uxQFm5jikPvNnT// E8H3DxUInjNiBqOhlQ== -----END CERTIFICATE-----Generated at Thu Apr 24 20:39:10 2025 by rpki-client on console.sobornost.net