$ rpki-client -vvf rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/64F7DCE4D3BD11EFA52FF783C4F9AE02.roa File: 64F7DCE4D3BD11EFA52FF783C4F9AE02.roa (raw, json) Hash identifier: YhVERhvtXXcrFTyDSv5Qa1F1feLk9QH6JfzQdvzKgMI= Subject key identifier: E2:8A:E7:89:B7:7C:F1:97:18:5F:B4:38:BC:70:2F:D2:02:B3:DB:DC Certificate issuer: /CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Certificate serial: 60 Authority key identifier: 67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/64F7DCE4D3BD11EFA52FF783C4F9AE02.roa Signing time: Thu 16 Jan 2025 03:53:07 +0000 ROA not before: Thu 16 Jan 2025 03:53:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.78.222.0/24 maxlen: 24 103.78.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 06:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172A52, serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Validity Not Before: Jan 16 03:53:07 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=678882a3-c825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:75:f9:80:49:72:df:28:47:43:12:60:55:47: 56:b2:a3:7d:13:12:4f:06:5a:9f:ba:35:29:33:0c: ab:fa:1a:e3:9c:d5:59:97:74:0e:d7:d8:1d:04:b8: c7:41:97:82:cb:90:39:bb:f1:0f:ca:c7:de:b0:29: 1f:f5:63:9a:a4:1a:c5:19:d4:f8:87:b5:e2:54:ec: 88:4f:31:68:9b:12:3d:c1:7b:ae:72:a1:75:42:d6: ba:74:f9:7e:96:b5:1d:e2:c6:11:c1:f9:5d:23:a3: 97:9d:d1:2a:8a:ee:e7:c6:0a:27:4f:58:3a:ee:41: 65:02:46:87:a1:5b:8c:c2:22:e6:11:fa:17:d0:f8: 92:e0:19:89:60:75:81:39:38:29:ec:15:ba:74:05: f1:8e:34:d4:a0:d0:90:de:ae:3c:98:12:ec:dc:a3: f7:6a:23:71:b8:e1:54:d5:e3:09:0c:86:16:a1:e5: ec:ec:2e:ab:0a:18:5b:81:92:67:af:08:13:80:58: 93:ed:9d:75:63:8d:d0:10:0a:b7:1e:fc:eb:27:6b: b8:10:fe:0b:4f:08:34:18:37:86:6a:39:a0:c9:91: 33:dc:9d:8a:48:9c:67:2f:da:3b:dd:dd:7d:2e:46: 51:7b:90:55:e5:b4:f6:3c:fe:2c:68:48:95:4e:38: 93:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8A:E7:89:B7:7C:F1:97:18:5F:B4:38:BC:70:2F:D2:02:B3:DB:DC X509v3 Authority Key Identifier: keyid:67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/64F7DCE4D3BD11EFA52FF783C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.222.0/23 Signature Algorithm: sha256WithRSAEncryption 90:57:61:94:43:fa:ea:4b:56:0c:68:be:53:70:2b:72:c4:b0: 3b:d4:4e:3a:a8:ec:4d:58:7c:8f:c5:a9:c3:12:75:ac:d4:4e: 1d:09:ca:4d:3c:71:b7:ea:14:97:47:83:6f:ab:ea:82:28:16: 38:ae:0c:81:9a:49:70:d9:d6:7f:e2:c0:f9:ee:16:1c:43:fb: b0:76:5e:9e:8b:95:ae:b5:a1:1f:5e:d9:ff:d0:d9:d4:7c:4f: e8:4e:80:cd:f9:e7:5a:14:0f:f1:3d:97:41:c4:f9:34:9c:3c: db:a5:37:8c:2c:39:08:73:81:56:cc:d9:d8:53:c5:69:18:12: 2d:3a:37:6a:ce:11:c2:23:24:2b:39:6c:9b:1f:65:ba:69:ac: 0f:91:5c:01:36:4d:88:a0:97:85:57:29:2c:d8:eb:bf:65:5c: 1f:08:d9:f0:a9:f9:00:f0:24:83:5a:67:07:f7:f3:ee:8e:67: 10:b1:ac:bc:cf:2d:eb:e1:a1:2d:4d:36:a2:d8:93:b1:ba:3d: 39:50:7c:c7:64:f4:18:a1:ad:ea:24:1f:56:0f:04:40:78:ce: 3b:0a:66:ee:55:fb:47:1b:6c:e3:12:34:c2:95:4c:94:81:ab: 1d:40:be:60:25:7f:23:c6:c6:9a:f9:83:a6:e1:b7:c0:52:e2: 75:6a:84:c4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkE1MjExMC8GA1UEBRMoNjc0QUM1N0MwOTk4NzZBMDY2NTcxODBCMzRFMjRFNkVF RTg4NDQxMTAeFw0yNTAxMTYwMzUzMDdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODg4MmEzLWM4MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3dfmASXLfKEdDEmBVR1ayo30TEk8GWp+6NSkzDKv6GuOc1VmXdA7X2B0EuMdB l4LLkDm78Q/Kx96wKR/1Y5qkGsUZ1PiHteJU7IhPMWibEj3Be65yoXVC1rp0+X6W tR3ixhHB+V0jo5ed0SqK7ufGCidPWDruQWUCRoehW4zCIuYR+hfQ+JLgGYlgdYE5 OCnsFbp0BfGONNSg0JDerjyYEuzco/dqI3G44VTV4wkMhhah5ezsLqsKGFuBkmev CBOAWJPtnXVjjdAQCrce/Osna7gQ/gtPCDQYN4ZqOaDJkTPcnYpInGcv2jvd3X0u RlF7kFXltPY8/ixoSJVOOJOJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4ornibd8 8ZcYX7Q4vHAv0gKz29wwHwYDVR0jBBgwFoAUZ0rFfAmYdqBmVxgLNOJObu6IRBEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQTUyLzNFNzZEN0VFOTgx OTExRUZCMEQwREQzNEM0RjlBRTAyL1owckZmQW1ZZHFCbVZ4Z0xOT0pPYnU2SVJC RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjByRmZBbVlkcUJtVnhnTE5PSk9idTZJUkJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkE1Mi8zRTc2RDdFRTk4MTkxMUVGQjBEMEREMzRDNEY5QUUwMi82NEY3RENFNEQz QkQxMUVGQTUyRkY3ODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdO3jANBgkqhkiG9w0BAQsFAAOCAQEAkFdhlEP66ktWDGi+ U3ArcsSwO9ROOqjsTVh8j8WpwxJ1rNROHQnKTTxxt+oUl0eDb6vqgigWOK4MgZpJ cNnWf+LA+e4WHEP7sHZenouVrrWhH17Z/9DZ1HxP6E6AzfnnWhQP8T2XQcT5NJw8 26U3jCw5CHOBVszZ2FPFaRgSLTo3as4RwiMkKzlsmx9lummsD5FcATZNiKCXhVcp LNjrv2VcHwjZ8Kn5APAkg1pnB/fz7o5nELGsvM8t6+GhLU02otiTsbo9OVB8x2T0 GKGt6iQfVg8EQHjOOwpm7lX7Rxts4xI0wpVMlIGrHUC+YCV/I8bGmvmDpuG3wFLi dWqExA== -----END CERTIFICATE-----Generated at Wed Apr 23 09:02:28 2025 by rpki-client on console.sobornost.net