$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3A153A08C31F11E9B2558032C4F9AE02.roa File: 3A153A08C31F11E9B2558032C4F9AE02.roa (raw, json) Hash identifier: 3TwS8SFtWWWkKCN8Ia5IBpMMbA7fOA7/nhg9LAU+sp8= Subject key identifier: 84:75:A9:61:27:65:95:55:C5:10:5A:55:26:C5:E4:26:AE:0C:61:13 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34B9 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3A153A08C31F11E9B2558032C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:18 +0000 ROA not before: Fri 24 Jan 2025 16:02:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133827 IP address blocks: 103.55.139.0/24 maxlen: 24 103.95.6.0/23 maxlen: 23 103.95.6.0/24 maxlen: 24 103.95.7.0/24 maxlen: 24 103.220.113.0/24 maxlen: 24 2404:a640::/32 maxlen: 32 2404:a640:113::/48 maxlen: 48 2404:a640:139::/48 maxlen: 48 2404:a640:956::/48 maxlen: 48 2404:a640:957::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 24 16:02:18 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b98a-3bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:aa:c5:fd:fd:05:70:c1:97:29:9a:6b:55: ea:33:59:b5:cf:76:c0:bb:84:4a:d2:51:e6:5d:92: e3:ea:cb:c8:6d:87:b3:02:7a:4f:64:62:ee:fb:e3: 8c:cf:02:e2:a0:1b:c8:d4:f9:50:c2:d4:84:1a:79: b4:47:83:96:49:3f:9b:bc:a3:80:46:58:8d:1f:76: 15:fd:77:99:a6:27:70:97:e0:59:08:19:47:2b:ab: 90:65:e9:7c:43:fa:8a:9c:c5:85:9d:18:3b:7a:31: 4c:7b:e3:5f:38:97:e7:30:68:cd:49:43:d6:fb:24: 26:3c:a7:e8:d6:b9:a0:67:b3:fb:5e:bc:0e:27:15: da:b7:5d:1a:36:5b:c7:bb:88:96:0b:e2:17:8b:26: 0f:94:53:c5:59:a6:e9:dc:42:97:c7:d2:09:9f:0f: 9b:6d:93:3a:11:8d:d6:f7:8c:e6:c9:0d:e0:0f:02: 93:dd:e9:0a:f9:08:47:c7:b1:c6:bc:1f:db:0f:a5: 98:38:da:8c:97:4f:24:ed:e3:65:b9:32:5e:9c:d0: db:a0:53:7b:31:01:5f:3a:13:f9:76:08:28:3f:cb: 50:41:aa:64:a4:2f:3c:8c:ed:d7:d8:27:2b:7e:5e: a8:c7:79:31:41:55:c8:ba:6d:4e:de:62:09:ff:c2: 5e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:75:A9:61:27:65:95:55:C5:10:5A:55:26:C5:E4:26:AE:0C:61:13 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3A153A08C31F11E9B2558032C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.139.0/24 103.95.6.0/23 103.220.113.0/24 IPv6: 2404:a640::/32 Signature Algorithm: sha256WithRSAEncryption b4:aa:cf:48:08:96:46:15:07:d3:0b:e3:c9:a8:1d:51:51:48: 78:69:9a:f6:52:a5:f1:26:d9:5f:4c:7d:9d:40:39:c4:d5:a4: 24:48:65:fb:c3:78:8c:d4:fd:28:09:23:6d:dd:9f:b9:ea:51: 9b:dc:3b:c1:40:a8:f5:04:95:b8:b5:85:25:7c:69:fe:88:79: ce:e2:c6:2d:c3:30:e0:fa:73:c9:4d:2a:ef:21:66:23:23:d5: a3:2f:df:35:d5:e6:4a:e3:e9:bf:f8:c5:40:7b:6e:23:e6:d2: ef:79:ff:b7:fe:52:11:a7:92:b4:79:5e:cf:4f:1c:16:e3:4d: a4:18:56:b3:2b:b1:93:5b:41:fc:de:26:09:ce:8c:05:4d:a1: 18:f7:f8:e9:40:c4:2d:39:bd:a5:be:92:2d:60:ec:11:94:e6: d1:e2:2e:09:21:2d:0f:73:45:34:ee:f1:d8:64:87:1a:bb:4e: 4e:5b:7e:77:52:18:54:0a:10:19:ee:93:61:ea:c0:14:ce:03: d5:44:ee:35:0a:aa:de:93:a1:3e:e5:68:8c:e9:bc:93:c7:77: 09:b0:e4:7c:55:90:7d:3f:9e:25:8d:d4:75:e2:06:84:49:95: eb:be:84:f1:ad:6d:dc:90:3e:80:4d:c5:92:43:f7:13:15:db: 1c:c4:9c:d3 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjE4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk4YS0zYmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo6qxf39BXDBlymaa1XqM1m1z3bAu4RK0lHmXZLj6svIbYezAnpPZGLu++OM zwLioBvI1PlQwtSEGnm0R4OWST+bvKOARliNH3YV/XeZpidwl+BZCBlHK6uQZel8 Q/qKnMWFnRg7ejFMe+NfOJfnMGjNSUPW+yQmPKfo1rmgZ7P7XrwOJxXat10aNlvH u4iWC+IXiyYPlFPFWabp3EKXx9IJnw+bbZM6EY3W94zmyQ3gDwKT3ekK+QhHx7HG vB/bD6WYONqMl08k7eNluTJenNDboFN7MQFfOhP5dggoP8tQQapkpC88jO3X2Ccr fl6ox3kxQVXIum1O3mIJ/8JekwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIR1qWEn ZZVVxRBaVSbF5CauDGETMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0ExNTNBMDhD MzFGMTFFOUIyNTU4MDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnN4sDBAFnXwYDBABn3HEwDQQCAAIwBwMFACQEpkAwDQYJ KoZIhvcNAQELBQADggEBALSqz0gIlkYVB9ML48moHVFRSHhpmvZSpfEm2V9MfZ1A OcTVpCRIZfvDeIzU/SgJI23dn7nqUZvcO8FAqPUElbi1hSV8af6Iec7ixi3DMOD6 c8lNKu8hZiMj1aMv3zXV5krj6b/4xUB7biPm0u95/7f+UhGnkrR5Xs9PHBbjTaQY VrMrsZNbQfzeJgnOjAVNoRj3+OlAxC05vaW+ki1g7BGU5tHiLgkhLQ9zRTTu8dhk hxq7Tk5bfndSGFQKEBnuk2HqwBTOA9VE7jUKqt6ToT7laIzpvJPHdwmw5HxVkH0/ niWN1HXiBoRJleu+hPGtbdyQPoBNxZJD9xMV2xzEnNM= -----END CERTIFICATE-----Generated at Thu Apr 24 18:08:26 2025 by rpki-client on console.sobornost.net