$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa File: B10F5E8E557511EF9F54A83AC4F9AE02.roa (raw, json) Hash identifier: ZcfdZtSQ5ZYcHh5IP6O5zByNm7ruCrAWC9kNtNgjHNM= Subject key identifier: B8:64:DB:E0:F7:EA:4F:48:63:C8:DE:E0:DB:43:0F:F0:5F:23:05:6F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 05AE Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa Signing time: Wed 23 Apr 2025 14:26:47 +0000 ROA not before: Wed 23 Apr 2025 14:26:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135918 IP address blocks: 157.10.198.0/23 maxlen: 23 157.66.81.0/24 maxlen: 24 157.66.100.0/23 maxlen: 23 157.66.218.0/23 maxlen: 23 160.22.122.0/23 maxlen: 23 160.25.232.0/23 maxlen: 23 160.30.44.0/23 maxlen: 23 160.30.112.0/23 maxlen: 23 160.191.48.0/23 maxlen: 23 160.191.50.0/23 maxlen: 23 160.191.236.0/23 maxlen: 23 160.250.130.0/23 maxlen: 23 160.250.134.0/23 maxlen: 23 160.250.136.0/23 maxlen: 23 160.250.246.0/23 maxlen: 23 161.248.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Apr 23 14:26:47 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6808f8a7-e80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:32:7e:19:23:1f:70:ef:b9:c3:2d:b7:94:fd: 83:8d:8f:46:17:d7:01:8d:c5:70:fd:eb:82:c3:b7: b9:63:b5:89:27:be:93:b5:db:9e:74:29:fd:77:23: 8a:f1:dd:11:d3:4e:6c:b3:a1:17:f4:88:90:33:6b: 52:42:ce:d2:fa:18:ff:e0:f4:28:81:19:db:e8:3b: 60:d0:c4:83:3c:b4:aa:2c:ec:7d:b6:0d:be:8c:7c: 26:bc:28:df:e5:d9:f6:a9:0a:b3:bc:b9:12:9a:08: f7:6c:bc:4a:2f:63:b9:93:af:83:d0:9d:e6:a4:57: b7:73:57:16:8b:7a:a0:a0:df:dd:eb:41:89:cf:5b: 0c:de:c0:c2:f2:7d:00:41:ee:39:d6:7a:d2:8e:51: 90:23:dd:f4:2e:1c:a9:0f:bd:07:4e:da:00:db:df: 8f:38:47:f2:c2:2f:8b:84:a2:3e:26:53:17:d7:c8: c4:06:76:71:63:7f:33:be:ed:a0:f9:7c:d9:82:f1: 11:92:ed:c0:18:d0:d4:1f:fd:05:6e:4a:90:80:d6: b1:3c:ef:10:24:d7:c3:8e:5c:d6:6a:38:e7:92:2e: a1:99:e0:67:20:8a:a7:b0:c7:6f:46:28:0b:45:b1: 13:0c:ba:50:5c:ea:61:73:97:3f:e8:d3:94:ad:d5: 55:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:64:DB:E0:F7:EA:4F:48:63:C8:DE:E0:DB:43:0F:F0:5F:23:05:6F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.198.0/23 157.66.81.0/24 157.66.100.0/23 157.66.218.0/23 160.22.122.0/23 160.25.232.0/23 160.30.44.0/23 160.30.112.0/23 160.191.48.0/22 160.191.236.0/23 160.250.130.0/23 160.250.134.0-160.250.137.255 160.250.246.0/23 161.248.146.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:5a:af:23:9e:1b:6b:47:de:26:97:46:dc:f9:9d:94:6a:6e: e0:0b:2f:92:e3:a8:1b:2d:b3:2e:e2:b3:13:ea:6e:12:75:d9: a1:97:92:ab:d3:22:c2:e0:1a:cb:e6:a2:bd:48:a9:4b:03:c3: 4d:a0:15:dd:cc:f0:82:81:72:25:04:6a:37:1e:87:75:36:43: d0:df:33:68:ef:44:09:0d:b0:61:8d:36:01:e4:b8:8b:4d:9d: c7:ce:6b:ee:7d:25:9b:4a:15:19:e1:d2:89:55:04:f8:5e:1f: d3:d3:8f:4c:5d:45:4c:00:8c:0c:7c:6a:0c:04:32:d3:14:02: fb:f1:65:d9:9b:b0:a8:48:1c:9d:ca:16:14:dc:ad:6e:25:ae: e6:f1:83:4c:7f:9d:9c:ac:ed:11:de:da:94:3f:9f:06:67:cf: 17:c1:7e:7b:c9:94:57:e3:f5:14:dd:6f:84:2b:a1:af:56:7f: b8:59:96:f7:a2:9f:a9:cf:03:d3:d0:2d:dc:f5:6e:84:96:38: 19:19:de:f5:5f:1f:7c:5b:e6:0e:ba:58:20:ed:6f:e8:b9:b0: f5:33:ec:41:4d:cf:9a:13:51:e5:8b:71:44:82:c8:38:ab:2b: d5:18:dc:c7:09:80:40:38:1c:96:e0:eb:40:2f:6b:f3:c6:a6: bd:9a:f1:5e -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwNDIzMTQyNjQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4ZjhhNy1lODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjJ+GSMfcO+5wy23lP2DjY9GF9cBjcVw/euCw7e5Y7WJJ76TtduedCn9dyOK 8d0R005ss6EX9IiQM2tSQs7S+hj/4PQogRnb6Dtg0MSDPLSqLOx9tg2+jHwmvCjf 5dn2qQqzvLkSmgj3bLxKL2O5k6+D0J3mpFe3c1cWi3qgoN/d60GJz1sM3sDC8n0A Qe451nrSjlGQI930LhypD70HTtoA29+POEfywi+LhKI+JlMX18jEBnZxY38zvu2g +XzZgvERku3AGNDUH/0FbkqQgNaxPO8QJNfDjlzWajjnki6hmeBnIIqnsMdvRigL RbETDLpQXOphc5c/6NOUrdVVEQIDAQABo4IC6zCCAucwHQYDVR0OBBYEFLhk2+D3 6k9IY8je4NtDD/BfIwVvMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQjEwRjVFOEU1 NTc1MTFFRjlGNTRBODNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwdQYIKwYBBQUHAQcBAf8E ZjBkMGIEAgABMFwDBAGdCsYDBACdQlEDBAGdQmQDBAGdQtoDBAGgFnoDBAGgGegD BAGgHiwDBAGgHnADBAKgvzADBAGgv+wDBAGg+oIwDAMEAaD6hgMEAaD6iAMEAaD6 9gMEAaH4kjANBgkqhkiG9w0BAQsFAAOCAQEADVqvI54ba0feJpdG3PmdlGpu4Asv kuOoGy2zLuKzE+puEnXZoZeSq9MiwuAay+aivUipSwPDTaAV3czwgoFyJQRqNx6H dTZD0N8zaO9ECQ2wYY02AeS4i02dx85r7n0lm0oVGeHSiVUE+F4f09OPTF1FTACM DHxqDAQy0xQC+/Fl2ZuwqEgcncoWFNytbiWu5vGDTH+dnKztEd7alD+fBmfPF8F+ e8mUV+P1FN1vhCuhr1Z/uFmW96Kfqc8D09At3PVuhJY4GRne9V8ffFvmDrpYIO1v 6Lmw9TPsQU3PmhNR5YtxRILIOKsr1RjcxwmAQDgcluDrQC9r88amvZrxXg== -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:00 2025 by rpki-client on console.sobornost.net