$ rpki-client -vvf rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/326E1852D80B11EC874C9083C4F9AE02.roa File: 326E1852D80B11EC874C9083C4F9AE02.roa (raw, json) Hash identifier: 6CZidtXoDBfZbkBWuLrvDzWnGJ2dpo308yRpcF6lZTc= Subject key identifier: 4F:FD:B1:3D:06:0E:B1:33:17:46:50:F2:55:1B:1C:1B:AD:4D:A9:85 Certificate issuer: /CN=A9159032/serialNumber=82887AB91D2B0F6ADBFC70B24619F187B1A53D59 Certificate serial: 1A13 Authority key identifier: 82:88:7A:B9:1D:2B:0F:6A:DB:FC:70:B2:46:19:F1:87:B1:A5:3D:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goh6uR0rD2rb_HCyRhnxh7GlPVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/326E1852D80B11EC874C9083C4F9AE02.roa Signing time: Sat 26 Apr 2025 16:24:29 +0000 ROA not before: Sat 26 Apr 2025 16:24:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1299 IP address blocks: 103.229.176.0/24 maxlen: 24 103.229.177.0/24 maxlen: 24 103.229.178.0/24 maxlen: 24 103.229.179.0/24 maxlen: 24 2401:3f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/goh6uR0rD2rb_HCyRhnxh7GlPVk.crl rsync://rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/goh6uR0rD2rb_HCyRhnxh7GlPVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goh6uR0rD2rb_HCyRhnxh7GlPVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6675 (0x1a13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159032, serialNumber=82887AB91D2B0F6ADBFC70B24619F187B1A53D59 Validity Not Before: Apr 26 16:24:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680d08bd-ba9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c9:41:4d:66:9d:48:61:58:63:c5:d1:64:12: 18:d2:70:75:87:8d:4f:b1:f2:ae:ca:a7:5a:d4:27: 99:d4:3d:39:fe:79:9d:90:5b:20:bd:cc:c9:4a:3c: f1:29:41:26:74:35:87:63:12:37:88:94:23:08:99: 82:b8:6e:be:fe:5c:1e:f0:0c:78:1c:f1:98:b3:9f: e6:52:04:9a:10:e9:99:7c:ec:c2:b8:ef:e7:df:7f: de:ce:59:df:25:f3:b5:fa:df:50:de:15:b7:99:20: 7e:a4:96:fd:6c:19:f3:50:84:16:5a:ae:95:b4:0f: f0:ba:88:43:d7:20:01:c4:35:26:29:f0:cb:ab:de: 44:36:78:65:68:01:aa:f0:5a:c6:a0:05:ff:32:38: 77:a8:b4:c6:31:39:81:b5:34:05:1f:8c:82:8d:ed: 99:bf:09:23:dc:96:b8:5c:34:cd:0f:05:c1:d4:92: 9d:45:7f:62:f5:7a:35:5d:49:ed:0d:00:a9:9a:f2: 72:11:20:53:89:88:38:f1:a8:0f:a7:4a:a3:94:9a: 34:22:36:bf:ef:45:6b:73:c3:31:a8:53:b1:17:c4: 00:70:b8:76:90:cb:b0:cc:c8:e0:ed:1f:80:02:64: e9:80:95:80:2f:3d:82:cf:b2:1c:74:b3:73:75:1d: 53:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FD:B1:3D:06:0E:B1:33:17:46:50:F2:55:1B:1C:1B:AD:4D:A9:85 X509v3 Authority Key Identifier: keyid:82:88:7A:B9:1D:2B:0F:6A:DB:FC:70:B2:46:19:F1:87:B1:A5:3D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/goh6uR0rD2rb_HCyRhnxh7GlPVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goh6uR0rD2rb_HCyRhnxh7GlPVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159032/45FCF5E04FEA11E79710DE3EC4F9AE02/326E1852D80B11EC874C9083C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.176.0/22 IPv6: 2401:3f60::/32 Signature Algorithm: sha256WithRSAEncryption 15:93:bd:6d:57:9f:a3:45:c2:67:64:2a:01:47:e6:28:9d:7c: 5a:76:da:e6:b9:1a:bd:6b:5e:92:d2:30:73:1c:dd:38:04:53: 8d:0c:45:da:0e:11:bc:53:ac:03:c3:b5:4b:dd:1e:e9:cf:55: b6:f6:3c:e4:e1:fc:96:14:b6:98:2a:6e:8a:a1:e2:f4:31:28: 54:ef:9b:53:76:64:4a:c3:34:9a:de:8c:8e:da:f2:d7:43:58: 7c:36:cd:96:60:82:aa:ff:62:10:22:da:51:24:b2:5c:12:4e: e4:45:28:5a:7a:26:ce:68:60:48:f6:9d:b4:e8:24:39:52:5c: 34:ee:e3:60:70:9e:0c:96:f0:4d:c4:e2:ad:ba:35:e7:01:8d: 45:d8:82:9f:3d:9e:11:df:5f:99:76:fc:2a:a3:d5:8a:20:bb: 70:b1:c9:a7:04:eb:fa:21:f3:b6:be:b7:15:7b:56:69:7e:69: 30:85:cc:c9:cc:c0:d8:ac:e9:ab:7c:d2:65:56:bf:c3:86:c4: ee:9d:0a:4f:59:13:9b:f5:db:2e:1c:79:01:44:7f:99:c9:66: 95:d1:0e:a0:ab:61:d1:7f:a6:2b:ea:22:d1:18:5e:55:6b:15: f3:47:60:4e:19:c2:87:ea:73:2e:72:bf:c4:f3:6e:66:24:fc: 63:d0:13:b7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwMzIxMTAvBgNVBAUTKDgyODg3QUI5MUQyQjBGNkFEQkZDNzBCMjQ2MTlGMTg3 QjFBNTNENTkwHhcNMjUwNDI2MTYyNDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkMDhiZC1iYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMlBTWadSGFYY8XRZBIY0nB1h41PsfKuyqda1CeZ1D05/nmdkFsgvczJSjzx KUEmdDWHYxI3iJQjCJmCuG6+/lwe8Ax4HPGYs5/mUgSaEOmZfOzCuO/n33/ezlnf JfO1+t9Q3hW3mSB+pJb9bBnzUIQWWq6VtA/wuohD1yABxDUmKfDLq95ENnhlaAGq 8FrGoAX/Mjh3qLTGMTmBtTQFH4yCje2Zvwkj3Ja4XDTNDwXB1JKdRX9i9Xo1XUnt DQCpmvJyESBTiYg48agPp0qjlJo0Ija/70Vrc8MxqFOxF8QAcLh2kMuwzMjg7R+A AmTpgJWALz2Cz7IcdLNzdR1TWQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE/9sT0G DrEzF0ZQ8lUbHButTamFMB8GA1UdIwQYMBaAFIKIerkdKw9q2/xwskYZ8YexpT1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTAzMi80NUZDRjVFMDRG RUExMUU3OTcxMERFM0VDNEY5QUUwMi9nb2g2dVIwckQycmJfSEN5UmhueGg3R2xQ VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dvaDZ1UjByRDJyYl9IQ3lSaG54aDdHbFBWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkwMzIvNDVGQ0Y1RTA0RkVBMTFFNzk3MTBERTNFQzRGOUFFMDIvMzI2RTE4NTJE ODBCMTFFQzg3NEM5MDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn5bAwDQQCAAIwBwMFACQBP2AwDQYJKoZIhvcNAQELBQAD ggEBABWTvW1Xn6NFwmdkKgFH5iidfFp22ua5Gr1rXpLSMHMc3TgEU40MRdoOEbxT rAPDtUvdHunPVbb2POTh/JYUtpgqboqh4vQxKFTvm1N2ZErDNJrejI7a8tdDWHw2 zZZggqr/YhAi2lEkslwSTuRFKFp6Js5oYEj2nbToJDlSXDTu42BwngyW8E3E4q26 NecBjUXYgp89nhHfX5l2/Cqj1Yogu3CxyacE6/oh87a+txV7Vml+aTCFzMnMwNis 6at80mVWv8OGxO6dCk9ZE5v12y4ceQFEf5nJZpXRDqCrYdF/pivqItEYXlVrFfNH YE4Zwofqcy5yv8TzbmYk/GPQE7c= -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:41 2025 by rpki-client on console.sobornost.net