$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa File: EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa (raw, json) Hash identifier: nvDXFuMbASKQcxa2tU3FunOBPS4uwAfHeJjVkN0kFQk= Subject key identifier: 15:B5:5B:B0:73:08:5C:3B:8D:55:CF:A6:D1:B5:69:28:0D:F5:BC:5C Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19BF Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa Signing time: Sat 12 Apr 2025 16:24:57 +0000 ROA not before: Sat 12 Apr 2025 16:24:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17808 IP address blocks: 121.73.16.0/22 maxlen: 22 121.73.28.0/22 maxlen: 22 218.101.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6591 (0x19bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:24:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93d9-528f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cd:41:57:ed:64:c3:68:6f:a2:2c:27:04:64: 9e:8e:5b:74:e7:29:82:66:c3:66:67:3d:b0:0b:ae: a3:df:95:9d:3a:f7:96:aa:b4:36:76:e2:09:c4:37: 69:98:19:9a:ec:26:74:25:f1:c8:a6:54:ea:27:c1: da:e2:d4:9f:bb:7a:32:20:75:e9:4c:c5:89:98:95: 4d:0c:fd:43:2e:ed:24:20:d6:f0:d9:55:46:c6:21: 16:14:eb:34:e4:7b:d4:26:37:48:3c:48:b4:1b:16: 0a:e0:6d:c8:f7:6b:6e:34:c7:39:d1:06:8a:22:05: bf:46:9a:a6:1f:43:9c:b7:27:75:da:2d:fb:34:03: 49:d1:25:bf:f2:19:72:66:82:00:0a:fe:a4:44:b8: db:5f:9a:ac:46:aa:f8:bb:1b:92:5f:43:01:a9:71: ee:06:dc:8a:07:60:f7:c0:2f:70:07:4c:a6:2f:31: 1b:8c:f0:c0:28:e3:3c:b6:2b:f0:78:a2:21:2a:ed: 76:f5:9f:be:d4:c2:04:14:a0:39:f0:83:4e:f8:2a: 89:21:14:db:37:44:f0:54:79:f8:69:9a:98:a0:ee: 05:f2:cf:30:51:14:74:c9:da:ea:e8:89:59:17:7b: 80:54:3c:6d:65:7a:6a:da:75:4b:65:d7:f6:84:07: cb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B5:5B:B0:73:08:5C:3B:8D:55:CF:A6:D1:B5:69:28:0D:F5:BC:5C X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.73.16.0/22 121.73.28.0/22 218.101.16.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:07:b2:9f:d3:2b:41:43:08:5a:33:98:a4:59:a4:3b:63:40: ce:35:af:29:77:b5:68:23:90:10:d4:62:d7:39:b9:af:b2:8f: 47:bd:24:e6:65:58:49:1b:f3:0f:2c:32:e6:7e:68:d0:c5:20: 03:f2:38:33:1d:01:a9:2f:67:db:8c:ce:fd:21:95:f6:28:9a: 9b:50:6f:3e:0f:95:84:78:04:7e:18:ad:13:85:da:70:aa:4e: 56:05:e6:31:b2:d1:9a:40:b0:aa:ab:2d:9f:65:1a:ee:50:9e: 16:92:a6:83:23:80:51:45:02:7f:25:e1:64:34:62:7d:58:66: 87:7b:de:7e:09:58:26:28:d3:ff:79:00:7b:64:63:73:2c:a6: 0c:53:98:4e:59:51:d0:f9:ed:fa:ef:17:10:15:b8:a7:bc:a9: 1d:84:ba:de:e3:bc:db:53:e8:2b:ee:f0:e7:40:4f:e3:83:d7: be:42:23:37:d2:88:07:61:ab:6b:ea:a7:f7:29:4f:06:f6:64: 33:f5:02:93:b4:46:30:0f:33:9f:40:a5:3c:24:6e:4d:7d:e7: 73:65:f6:dd:f9:6e:f2:42:39:09:af:50:1f:18:9f:03:6a:87: 97:cc:14:dd:d7:8e:3c:1c:d9:5a:86:d0:23:84:20:3e:74:ba: 89:3d:59:27 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNDU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNkOS01MjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c1BV+1kw2hvoiwnBGSejlt05ymCZsNmZz2wC66j35WdOveWqrQ2duIJxDdp mBma7CZ0JfHIplTqJ8Ha4tSfu3oyIHXpTMWJmJVNDP1DLu0kINbw2VVGxiEWFOs0 5HvUJjdIPEi0GxYK4G3I92tuNMc50QaKIgW/RpqmH0Octyd12i37NANJ0SW/8hly ZoIACv6kRLjbX5qsRqr4uxuSX0MBqXHuBtyKB2D3wC9wB0ymLzEbjPDAKOM8tivw eKIhKu129Z++1MIEFKA58INO+CqJIRTbN0TwVHn4aZqYoO4F8s8wURR0ydrq6IlZ F3uAVDxtZXpq2nVLZdf2hAfLAQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBW1W7Bz CFw7jVXPptG1aSgN9bxcMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvRUI2MUJGMzJG RENEMTFFRUIwRUFCQzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJ5SRADBAJ5SRwDBATaZRAwDQYJKoZIhvcNAQELBQADggEB AHoHsp/TK0FDCFozmKRZpDtjQM41ryl3tWgjkBDUYtc5ua+yj0e9JOZlWEkb8w8s MuZ+aNDFIAPyODMdAakvZ9uMzv0hlfYomptQbz4PlYR4BH4YrROF2nCqTlYF5jGy 0ZpAsKqrLZ9lGu5QnhaSpoMjgFFFAn8l4WQ0Yn1YZod73n4JWCYo0/95AHtkY3Ms pgxTmE5ZUdD57frvFxAVuKe8qR2Eut7jvNtT6Cvu8OdAT+OD175CIzfSiAdhq2vq p/cpTwb2ZDP1ApO0RjAPM59ApTwkbk1953Nl9t35bvJCOQmvUB8YnwNqh5fMFN3X jjwc2VqG0COEID50uok9WSc= -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:32 2025 by rpki-client on console.sobornost.net