$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1D8C62546F8011EFAB7D8E27C4F9AE02.roa File: 1D8C62546F8011EFAB7D8E27C4F9AE02.roa (raw, json) Hash identifier: V60KygzTK9eNVxmxKjhWraiuv3ggFGZ8iow3OUP1MyY= Subject key identifier: 01:F8:B8:C0:9F:78:E8:74:A5:CD:AE:63:61:79:46:B6:99:3D:EC:93 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D00 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1D8C62546F8011EFAB7D8E27C4F9AE02.roa Signing time: Mon 14 Apr 2025 09:19:30 +0000 ROA not before: Mon 14 Apr 2025 09:19:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 197450 IP address blocks: 14.192.135.0/24 maxlen: 24 111.92.137.0/24 maxlen: 24 111.92.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3328 (0xd00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 14 09:19:30 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67fcd322-f014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:92:b2:2e:c2:91:45:c1:c4:20:9b:9b:f0:83: 4d:83:d0:e5:0a:8f:51:36:2d:23:07:8c:88:52:21: c4:82:d7:77:78:ae:93:9e:f1:37:2a:c0:28:38:b9: a4:ac:80:4e:bf:c8:c1:5f:69:1d:df:25:c3:89:d2: ad:74:b7:cd:79:76:75:12:9e:f8:92:63:92:7d:66: ee:17:eb:8a:ea:d3:65:a2:9a:03:3f:62:90:0c:c2: 0e:b0:dc:6e:ea:62:9b:9e:67:25:23:64:62:0c:55: b4:7a:62:a4:16:ad:24:c7:b2:89:81:82:96:10:ae: e4:2e:08:5f:70:c3:bd:11:b7:b3:f3:48:23:d9:33: ed:1f:08:99:94:ad:7e:2f:ed:2a:98:7f:a5:42:30: 5d:1e:9c:62:38:0b:9a:29:23:6a:84:4a:49:44:dc: 98:06:f3:19:26:9f:52:1f:5a:31:83:1e:f8:24:5a: c8:44:0c:d6:6c:ce:16:db:96:85:05:c2:b9:ef:f5: 2e:5e:9f:3e:8c:94:49:8d:dd:a2:20:bf:64:9f:bc: 1c:ca:80:5b:a0:a7:e9:ff:be:ac:6c:f0:42:65:ee: ae:bf:e1:da:39:be:f2:dc:7d:6e:2b:67:e4:c7:eb: e7:22:9e:33:86:bb:23:e1:ae:52:07:98:83:fa:23: 98:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F8:B8:C0:9F:78:E8:74:A5:CD:AE:63:61:79:46:B6:99:3D:EC:93 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1D8C62546F8011EFAB7D8E27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.135.0/24 111.92.137.0/24 111.92.143.0/24 Signature Algorithm: sha256WithRSAEncryption 67:b2:72:23:c6:7b:f6:64:75:f8:f8:7f:a6:da:da:cf:ec:e7: 7f:0a:4f:63:f4:2d:3b:f0:d3:71:2d:be:4d:11:80:89:37:c9: f5:44:97:e7:7b:06:c5:df:92:23:76:1d:7b:54:1e:7c:0d:f4: 8d:e8:63:25:4e:69:37:21:fe:27:b3:3e:33:7f:98:c5:52:30: 30:2c:a3:49:14:d4:03:4d:23:21:a4:3f:59:1f:b1:aa:18:42: c3:59:4c:df:81:11:43:03:ed:12:5b:9e:60:c9:35:c2:df:0f: 04:b9:6e:5b:f3:aa:0c:05:ad:f8:cc:46:d2:c1:3e:55:82:80: da:19:b3:7c:84:16:61:2b:ec:1a:cc:ab:9b:c2:82:95:aa:bb: a6:85:1b:5f:08:2f:d9:6b:3d:24:df:8e:f7:df:ce:95:22:0e: 6c:51:4c:87:22:96:e2:0c:b2:3b:9d:07:a5:8a:c0:84:fd:4b: 43:a4:95:2b:0c:42:3f:3a:f6:88:5e:9a:fa:2a:19:e4:26:53: 38:93:a5:4b:fb:fb:2d:4d:6c:6e:ae:5f:9c:7a:30:97:cb:b9: 01:5b:d1:dd:56:d3:f7:92:72:00:45:e2:47:8f:6b:dd:c9:06: 92:f6:80:92:45:0f:6b:e8:04:a8:27:0c:e5:ef:e2:36:c1:b4: db:d7:a5:49 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNDE0MDkxOTMwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZjZDMyMi1mMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5KyLsKRRcHEIJub8INNg9DlCo9RNi0jB4yIUiHEgtd3eK6TnvE3KsAoOLmk rIBOv8jBX2kd3yXDidKtdLfNeXZ1Ep74kmOSfWbuF+uK6tNlopoDP2KQDMIOsNxu 6mKbnmclI2RiDFW0emKkFq0kx7KJgYKWEK7kLghfcMO9Ebez80gj2TPtHwiZlK1+ L+0qmH+lQjBdHpxiOAuaKSNqhEpJRNyYBvMZJp9SH1oxgx74JFrIRAzWbM4W25aF BcK57/UuXp8+jJRJjd2iIL9kn7wcyoBboKfp/76sbPBCZe6uv+HaOb7y3H1uK2fk x+vnIp4zhrsj4a5SB5iD+iOYPQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAH4uMCf eOh0pc2uY2F5RraZPeyTMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvMUQ4QzYyNTQ2 RjgwMTFFRkFCN0Q4RTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAOwIcDBABvXIkDBABvXI8wDQYJKoZIhvcNAQELBQADggEB AGeyciPGe/Zkdfj4f6ba2s/s538KT2P0LTvw03Etvk0RgIk3yfVEl+d7BsXfkiN2 HXtUHnwN9I3oYyVOaTch/iezPjN/mMVSMDAso0kU1ANNIyGkP1kfsaoYQsNZTN+B EUMD7RJbnmDJNcLfDwS5blvzqgwFrfjMRtLBPlWCgNoZs3yEFmEr7BrMq5vCgpWq u6aFG18IL9lrPSTfjvffzpUiDmxRTIciluIMsjudB6WKwIT9S0OklSsMQj869ohe mvoqGeQmUziTpUv7+y1NbG6uX5x6MJfLuQFb0d1W0/eScgBF4kePa93JBpL2gJJF D2voBKgnDOXv4jbBtNvXpUk= -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:14 2025 by rpki-client on console.sobornost.net