$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa File: DD55266E1E5611EFAFFD4839C4F9AE02.roa (raw, json) Hash identifier: HlwCeu7nRQrhAHteeDH8/AzpstkCTMTYbzNnFUCPtI8= Subject key identifier: 2C:AA:59:B2:E3:97:63:47:64:A6:6A:92:61:46:DA:36:E6:AD:08:55 Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Certificate serial: 1BE6 Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa Signing time: Sat 26 Apr 2025 16:24:06 +0000 ROA not before: Sat 26 Apr 2025 16:24:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149535 IP address blocks: 45.125.152.0/24 maxlen: 24 45.248.18.0/24 maxlen: 24 45.248.19.0/24 maxlen: 24 157.119.176.0/24 maxlen: 24 157.119.178.0/24 maxlen: 24 183.87.185.0/24 maxlen: 24 183.87.209.0/24 maxlen: 24 183.87.210.0/24 maxlen: 24 183.87.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7142 (0x1be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182F75, serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Validity Not Before: Apr 26 16:24:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680d08a6-ca86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:24:2c:51:fc:00:7d:34:0f:c7:a1:f0:74:95: 15:f5:1e:be:5f:54:bb:3f:f1:2c:0d:98:a5:ce:6d: 76:bc:7f:14:2c:3b:a9:86:12:38:ea:17:8e:98:c6: 20:0f:a8:82:b9:d2:ea:ec:c4:eb:ad:8b:80:47:05: a6:58:b4:0c:34:f0:14:66:78:0e:f2:56:67:ad:85: 49:5a:07:0f:4b:20:48:75:2d:9e:d1:99:da:33:14: 90:63:3b:e5:d1:51:da:ed:76:78:8d:2d:e0:bc:fd: 74:7b:a8:bd:1f:e9:d8:46:6b:58:55:d0:72:d4:64: 39:6b:41:be:9d:12:c3:4e:f7:0e:55:83:73:e0:1b: a8:1d:e8:70:3b:bb:23:86:57:a8:a2:7f:81:7a:02: 21:ec:26:15:b3:7c:65:8c:1e:75:aa:ce:07:8f:b6: d6:35:89:9e:e9:a8:98:ab:76:84:07:5f:b9:13:63: f2:16:47:ab:90:bc:83:a1:fb:42:e1:4b:e1:b3:e8: bf:2f:a6:84:c0:18:b5:dc:65:a9:4f:d6:02:fa:95: cf:3a:ee:8e:52:f1:a2:00:a5:c6:10:96:29:a7:91: 17:1a:47:10:4b:59:51:92:db:9c:b0:63:6a:f2:65: c9:ca:c3:fa:9b:c9:0f:e5:6d:af:f1:a6:ee:6e:28: 9f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AA:59:B2:E3:97:63:47:64:A6:6A:92:61:46:DA:36:E6:AD:08:55 X509v3 Authority Key Identifier: keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.152.0/24 45.248.18.0/23 157.119.176.0/24 157.119.178.0/24 183.87.185.0/24 183.87.209.0-183.87.211.255 Signature Algorithm: sha256WithRSAEncryption a6:40:0b:a6:b6:cc:6a:e0:f2:15:5b:a8:c0:a4:f4:31:03:ee: f8:36:92:7a:73:ff:08:51:76:f9:cb:da:72:3b:ee:c2:03:72: fc:ca:66:89:8b:2a:8f:b9:a5:d6:15:24:1e:ed:1d:8c:00:93: 89:cd:ba:bb:57:83:68:56:d7:0a:6c:de:0d:68:0f:08:b9:90: 87:0b:78:7e:ba:81:5b:0b:31:19:d6:05:bb:73:a4:da:da:7b: ff:a9:2d:2e:2a:dc:5a:7a:d6:2e:95:b4:ad:7f:94:53:60:b1: 03:56:46:60:e1:b4:81:c6:92:56:cf:5b:41:70:29:50:d6:4f: 13:73:07:e1:c4:6d:f3:01:72:73:4f:74:6a:65:13:8a:a2:4b: 23:4f:17:61:e4:b2:18:bd:29:c4:53:e6:53:e9:19:8f:dc:ff: 51:b4:09:30:8f:08:bb:21:c3:7d:cb:c8:9f:1a:cf:db:f1:9c: d5:33:84:c0:22:64:42:e2:48:85:bb:18:e4:3d:58:31:0d:35: 71:bb:38:7e:36:4e:7c:52:4c:d1:0d:89:c9:d1:9c:80:45:ed: e8:d5:c0:08:8d:42:ca:45:6b:e9:61:bc:2a:d3:fa:eb:d4:a8: 4d:94:4d:32:3d:b2:96:46:ad:95:ca:14:53:9b:14:48:dc:b0: e8:11:92:94 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICG+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGNzUxMTAvBgNVBAUTKDQyMEQ4QzJFQzNEMjQ3OUM1NDIzQUJGRjc0NzgyQjhB OEE0QjdERUEwHhcNMjUwNDI2MTYyNDA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkMDhhNi1jYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSQsUfwAfTQPx6HwdJUV9R6+X1S7P/EsDZilzm12vH8ULDuphhI46heOmMYg D6iCudLq7MTrrYuARwWmWLQMNPAUZngO8lZnrYVJWgcPSyBIdS2e0ZnaMxSQYzvl 0VHa7XZ4jS3gvP10e6i9H+nYRmtYVdBy1GQ5a0G+nRLDTvcOVYNz4BuoHehwO7sj hleoon+BegIh7CYVs3xljB51qs4Hj7bWNYme6aiYq3aEB1+5E2PyFkerkLyDoftC 4Uvhs+i/L6aEwBi13GWpT9YC+pXPOu6OUvGiAKXGEJYpp5EXGkcQS1lRktucsGNq 8mXJysP6m8kP5W2v8abubiifoQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFCyqWbLj l2NHZKZqkmFG2jbmrQhVMB8GA1UdIwQYMBaAFEINjC7D0kecVCOr/3R4K4qKS33q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkY3NS8zQzhDRjYzRUZD QkQxMUU2ODhEMzEyNUVDNEY5QUUwMi9RZzJNTHNQU1I1eFVJNnZfZEhncmlvcExm ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnMk1Mc1BTUjV4VUk2dl9kSGdyaW9wTGZlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODJGNzUvM0M4Q0Y2M0VGQ0JEMTFFNjg4RDMxMjVFQzRGOUFFMDIvREQ1NTI2NkUx RTU2MTFFRkFGRkQ0ODM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAtfZgDBAEt+BIDBACdd7ADBACdd7IDBAC3V7kwDAMEALdX 0QMEArdX0DANBgkqhkiG9w0BAQsFAAOCAQEApkALprbMauDyFVuowKT0MQPu+DaS enP/CFF2+cvacjvuwgNy/MpmiYsqj7ml1hUkHu0djACTic26u1eDaFbXCmzeDWgP CLmQhwt4frqBWwsxGdYFu3Ok2tp7/6ktLircWnrWLpW0rX+UU2CxA1ZGYOG0gcaS Vs9bQXApUNZPE3MH4cRt8wFyc090amUTiqJLI08XYeSyGL0pxFPmU+kZj9z/UbQJ MI8IuyHDfcvInxrP2/Gc1TOEwCJkQuJIhbsY5D1YMQ01cbs4fjZOfFJM0Q2JydGc gEXt6NXACI1CykVr6WG8KtP669SoTZRNMj2ylkatlcoUU5sUSNyw6BGSlA== -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:45 2025 by rpki-client on console.sobornost.net