$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa File: CD5B717E8AB811EDA3D4ED68C4F9AE02.roa (raw, json) Hash identifier: lNPyeHDBk4x3+OT0MY/Uf8Bss2twrnvkFLdy1WuJGcs= Subject key identifier: 10:2F:B3:7E:01:4D:F1:E1:DA:ED:48:F6:CD:58:04:1E:50:71:F8:FC Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Certificate serial: 0CB8 Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa Signing time: Mon 28 Apr 2025 18:27:58 +0000 ROA not before: Mon 28 Apr 2025 18:27:58 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 138638 IP address blocks: 103.135.88.0/22 maxlen: 24 2404:7840::/32 maxlen: 32 2404:7840::/48 maxlen: 48 2404:7840:1::/48 maxlen: 48 2404:7840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5308, serialNumber=7B59055212849105AD6F39E5881D842E707439AF Validity Not Before: Apr 28 18:27:58 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=680fc8ae-4d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d1:2c:4e:92:91:35:21:83:a3:3b:0e:23:ef: 0b:d8:52:f3:86:e3:f2:d8:34:8d:92:6a:ef:1a:07: de:67:3b:e0:b5:12:fa:43:79:29:a9:46:fe:ec:f5: e9:6b:51:0e:74:64:54:e5:d1:20:a0:d3:bd:6d:66: 07:9e:c0:9c:42:c9:43:b4:03:f8:66:a9:b4:e3:a1: 67:ff:b7:c7:51:1b:3e:17:5c:59:dd:24:27:4c:4b: 2b:20:b9:e4:28:c5:19:18:b9:f7:f7:b5:ab:64:f5: 03:0c:9e:cd:8e:20:cc:2d:b4:21:bc:ae:ef:ce:5b: a2:12:44:0a:01:e9:26:c1:4f:07:8c:0d:3d:ed:b4: a3:77:f2:ab:a8:b5:67:60:9b:c0:48:96:47:cc:6c: e2:c4:0e:f3:02:64:6b:a3:9b:3e:98:bf:c9:52:87: 69:fa:cb:2e:7c:03:ff:fe:95:cd:f5:a5:75:f1:c8: 5d:6c:8c:12:84:d0:5e:b3:03:94:bc:f3:d1:8e:91: 4e:d6:43:e6:01:56:3e:4a:55:2a:a1:f3:de:92:55: cf:30:65:c2:f6:37:4e:5d:78:e9:5d:56:82:c8:44: d1:77:90:42:ff:31:09:91:2e:dc:fc:02:8d:dd:b5: ac:0b:ad:6f:13:36:76:86:09:fa:fb:63:fb:3a:9b: 06:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2F:B3:7E:01:4D:F1:E1:DA:ED:48:F6:CD:58:04:1E:50:71:F8:FC X509v3 Authority Key Identifier: keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.88.0/22 IPv6: 2404:7840::/32 Signature Algorithm: sha256WithRSAEncryption da:06:60:ff:97:60:bd:2c:bf:4d:d5:83:83:d5:cb:88:e6:3b: 21:e3:a7:28:fe:49:14:d3:8e:d4:2e:04:7a:3d:04:a2:0b:3d: 3f:10:f2:19:46:e2:e3:a2:6c:d2:4b:dc:95:b1:8e:53:b6:c1: b5:f0:2b:66:e9:c1:a6:5d:5d:94:a6:8c:18:a8:62:2d:6a:20: 64:ef:02:64:6e:b9:ac:a4:76:df:2c:10:a9:5e:29:7f:bc:65: 8b:8b:be:42:a6:29:86:3a:a5:a7:49:de:0d:5f:a9:00:45:82: 20:3c:6c:22:24:0f:07:9c:b7:39:9f:f1:eb:de:05:1a:ab:d7: 72:a1:95:84:e7:ed:d5:11:4e:86:62:e0:22:44:51:c8:d8:f3: bf:ec:b1:a1:00:dd:8e:27:6b:5c:c5:8d:8b:75:4d:b2:a5:aa: 7f:37:41:32:b7:dc:2c:10:e5:a8:2b:da:d1:6c:d5:05:f8:b2: dd:84:7e:07:66:18:40:6d:8e:52:e9:d0:b0:7d:46:03:2a:0b: bd:5c:00:2c:ca:f7:66:90:02:d5:48:72:b9:ac:01:c5:5b:ba: a5:e7:ec:37:30:b0:66:32:d2:e4:23:89:ab:eb:8f:04:34:15: 46:a8:7c:8d:8c:e8:22:38:47:6b:1a:65:21:29:81:0d:40:07: 50:f5:92:4c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMDgxMTAvBgNVBAUTKDdCNTkwNTUyMTI4NDkxMDVBRDZGMzlFNTg4MUQ4NDJF NzA3NDM5QUYwHhcNMjUwNDI4MTgyNzU4WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmYzhhZS00ZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dEsTpKRNSGDozsOI+8L2FLzhuPy2DSNkmrvGgfeZzvgtRL6Q3kpqUb+7PXp a1EOdGRU5dEgoNO9bWYHnsCcQslDtAP4Zqm046Fn/7fHURs+F1xZ3SQnTEsrILnk KMUZGLn397WrZPUDDJ7NjiDMLbQhvK7vzluiEkQKAekmwU8HjA097bSjd/KrqLVn YJvASJZHzGzixA7zAmRro5s+mL/JUodp+ssufAP//pXN9aV18chdbIwShNBeswOU vPPRjpFO1kPmAVY+SlUqofPeklXPMGXC9jdOXXjpXVaCyETRd5BC/zEJkS7c/AKN 3bWsC61vEzZ2hgn6+2P7OpsGnwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBAvs34B TfHh2u1I9s1YBB5Qcfj8MB8GA1UdIwQYMBaAFHtZBVIShJEFrW855YgdhC5wdDmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMwOC9BODE5MTRFMkY0 RDUxMUU5QjkxN0YzNDlDNEY5QUUwMi9lMWtGVWhLRWtRV3Riem5saUIyRUxuQjBP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Uxa0ZVaEtFa1FXdGJ6bmxpQjJFTG5CME9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMDgvQTgxOTE0RTJGNEQ1MTFFOUI5MTdGMzQ5QzRGOUFFMDIvQ0Q1QjcxN0U4 QUI4MTFFREEzRDRFRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnh1gwDQQCAAIwBwMFACQEeEAwDQYJKoZIhvcNAQELBQAD ggEBANoGYP+XYL0sv03Vg4PVy4jmOyHjpyj+SRTTjtQuBHo9BKILPT8Q8hlG4uOi bNJL3JWxjlO2wbXwK2bpwaZdXZSmjBioYi1qIGTvAmRuuaykdt8sEKleKX+8ZYuL vkKmKYY6padJ3g1fqQBFgiA8bCIkDwectzmf8eveBRqr13KhlYTn7dURToZi4CJE UcjY87/ssaEA3Y4na1zFjYt1TbKlqn83QTK33CwQ5agr2tFs1QX4st2EfgdmGEBt jlLp0LB9RgMqC71cACzK92aQAtVIcrmsAcVbuqXn7DcwsGYy0uQjiavrjwQ0FUao fI2M6CI4R2saZSEpgQ1AB1D1kkw= -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:52 2025 by rpki-client on console.sobornost.net