$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/FDA1FF440E9911F08D37E709C4F9AE02.roa File: FDA1FF440E9911F08D37E709C4F9AE02.roa (raw, json) Hash identifier: 6bU/Nb5/KOjdbvl4huRqc6WCdK++PkccLCcpT5AshY8= Subject key identifier: 9B:B6:88:A7:87:1A:C6:73:FE:B3:56:97:9F:81:AC:CF:D0:9B:C3:78 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0B99 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/FDA1FF440E9911F08D37E709C4F9AE02.roa Signing time: Tue 01 Apr 2025 01:38:20 +0000 ROA not before: Tue 01 Apr 2025 01:38:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 15412 IP address blocks: 43.251.184.0/24 maxlen: 24 43.251.186.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 45.115.34.0/24 maxlen: 24 45.124.60.0/22 maxlen: 22 103.7.208.0/22 maxlen: 22 103.8.84.0/24 maxlen: 24 103.8.85.0/24 maxlen: 24 103.8.86.0/24 maxlen: 24 103.8.87.0/24 maxlen: 24 103.21.104.0/24 maxlen: 24 103.21.106.0/24 maxlen: 24 103.225.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Apr 1 01:38:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb438b-4a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:25:50:e1:a2:f2:58:8d:b2:c4:40:ed:f9: a0:6a:3b:54:35:89:0a:8b:99:3c:a5:b6:8c:8e:e2: d8:04:09:34:d5:6e:87:9a:17:a3:4b:28:29:f8:01: 04:ca:c7:b3:77:0c:a8:3f:a9:92:d0:95:bb:96:4c: 3c:9a:a7:d0:8f:e7:5c:c6:64:13:7f:09:a9:ce:ac: 66:46:6c:06:5a:03:42:91:e8:98:0b:37:76:70:cd: 13:d5:48:1e:19:53:33:a2:97:f8:56:22:f8:42:68: 89:55:0b:c7:33:fd:22:61:01:79:72:bc:64:d6:07: 2c:9a:b5:6a:ee:36:e2:22:be:dc:d0:90:3d:a6:9a: bf:c3:b1:0d:9b:79:ae:0e:f9:3d:4f:9e:89:f6:95: cf:64:47:ce:33:a3:9b:7b:25:5e:7c:d1:af:e6:32: 30:d3:25:c7:f2:10:68:67:a0:36:1a:65:6d:21:ab: 96:5c:39:a1:1f:c5:72:99:45:0f:c9:fc:08:7f:f6: 23:2a:3c:da:66:81:4c:8a:49:bd:3e:fb:9a:29:f6: 01:05:b8:02:c9:3b:bf:c3:c3:95:41:65:d7:cf:7a: 4c:75:ef:11:3c:50:1b:ca:77:04:13:bc:27:63:0d: 9d:85:cf:09:ca:1a:e2:f0:6f:21:a5:86:20:c9:32: 22:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B6:88:A7:87:1A:C6:73:FE:B3:56:97:9F:81:AC:CF:D0:9B:C3:78 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/FDA1FF440E9911F08D37E709C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.184.0/24 43.251.186.0/24 45.115.32.0/24 45.115.34.0/24 45.124.60.0/22 103.7.208.0/22 103.8.84.0/22 103.21.104.0/24 103.21.106.0/24 103.225.192.0/22 Signature Algorithm: sha256WithRSAEncryption 32:58:5c:9c:d2:3f:e5:bb:cd:99:13:1f:44:c5:8a:0e:39:99: 7f:6f:60:5c:ed:af:1e:42:7a:68:45:e4:6d:1a:a8:c4:65:ba: 09:2c:50:85:61:02:73:e4:b6:a0:c1:cb:98:07:bf:b8:8f:bd: 0f:ba:cf:2e:32:79:94:e0:d0:1d:8e:b1:17:8e:df:e3:76:f3: 42:38:92:56:7f:d9:ba:9c:e2:8b:cb:a9:84:fc:4d:5f:2b:18: a3:79:4b:85:f4:eb:d5:38:f1:56:3d:20:50:39:ac:25:e7:bf: 33:0b:ce:19:a6:32:a0:a2:36:6c:56:9d:f3:e9:84:30:20:ef: 3b:ac:c2:fc:0a:7f:f3:71:3e:37:14:b5:3b:12:b5:ec:4e:e7: f5:84:8e:29:58:07:ba:c4:06:9b:74:0c:f6:0b:8f:1c:76:08: d2:25:dd:2d:1f:1d:b6:e9:b8:5e:ef:8e:fa:ec:c7:b2:48:f9: aa:8c:85:98:80:6f:32:37:0a:31:53:89:74:c9:1d:1a:32:9c: c5:36:55:29:30:b8:f5:5c:ec:e5:60:45:c4:e9:db:a4:f1:60: d4:67:6f:9d:4c:10:71:fd:ad:11:69:95:e0:d9:7c:b1:01:a1: 3f:cb:4b:6e:8c:17:72:f7:ed:84:45:2a:36:ea:44:fe:e3:79: 36:23:95:7a -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNDAxMDEzODIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViNDM4Yi00YTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl4lUOGi8liNssRA7fmgajtUNYkKi5k8pbaMjuLYBAk01W6HmhejSygp+AEE ysezdwyoP6mS0JW7lkw8mqfQj+dcxmQTfwmpzqxmRmwGWgNCkeiYCzd2cM0T1Uge GVMzopf4ViL4QmiJVQvHM/0iYQF5crxk1gcsmrVq7jbiIr7c0JA9ppq/w7ENm3mu Dvk9T56J9pXPZEfOM6ObeyVefNGv5jIw0yXH8hBoZ6A2GmVtIauWXDmhH8VymUUP yfwIf/YjKjzaZoFMikm9PvuaKfYBBbgCyTu/w8OVQWXXz3pMde8RPFAbyncEE7wn Yw2dhc8Jyhri8G8hpYYgyTIiOwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFJu2iKeH GsZz/rNWl5+BrM/Qm8N4MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRkRBMUZGNDQw RTk5MTFGMDhEMzdFNzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAAr+7gDBAAr+7oDBAAtcyADBAAtcyIDBAItfDwDBAJnB9AD BAJnCFQDBABnFWgDBABnFWoDBAJn4cAwDQYJKoZIhvcNAQELBQADggEBADJYXJzS P+W7zZkTH0TFig45mX9vYFztrx5CemhF5G0aqMRlugksUIVhAnPktqDBy5gHv7iP vQ+6zy4yeZTg0B2OsReO3+N280I4klZ/2bqc4ovLqYT8TV8rGKN5S4X069U48VY9 IFA5rCXnvzMLzhmmMqCiNmxWnfPphDAg7zuswvwKf/NxPjcUtTsStexO5/WEjilY B7rEBpt0DPYLjxx2CNIl3S0fHbbpuF7vjvrsx7JI+aqMhZiAbzI3CjFTiXTJHRoy nMU2VSkwuPVc7OVgRcTp26TxYNRnb51MEHH9rRFpleDZfLEBoT/LS26MF3L37YRF KjbqRP7jeTYjlXo= -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:26 2025 by rpki-client on console.sobornost.net