$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa File: BC56EB8EA21811ED94424B59C4F9AE02.roa (raw, json) Hash identifier: CnCawUsQtxE6gdOQrKIQ65eTD+z0tUhxmLZpOOZFkv0= Subject key identifier: 39:52:84:E9:FE:EE:40:0D:14:40:7E:DA:AA:A1:F6:2F:E0:72:4C:47 Certificate issuer: /CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Certificate serial: 062E Authority key identifier: 7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa Signing time: Mon 14 Apr 2025 22:33:30 +0000 ROA not before: Mon 14 Apr 2025 22:33:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150744 IP address blocks: 103.162.228.0/24 maxlen: 24 2001:df6:180:ca::/64 maxlen: 64 2001:df6:180:cb::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EF2, serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Validity Not Before: Apr 14 22:33:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fd8d3a-dd54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:c1:11:7b:8d:94:9f:86:0c:4d:56:1f:15: fb:c5:78:f4:4d:1d:b6:1a:b7:f7:61:cc:fd:38:e6: cc:1b:86:38:cc:5c:a4:27:42:ea:08:cb:72:b8:28: 32:b4:19:e8:0e:65:53:cf:65:29:b7:0c:05:d4:d1: 18:38:1d:19:0a:31:c2:2c:52:69:49:33:76:6d:bf: 3a:9b:1d:09:c0:eb:db:3d:cc:3c:4d:71:17:a1:c6: 10:cf:70:f1:2a:0d:ae:77:dc:5a:3e:e8:fb:15:3d: 02:1a:92:9d:63:28:ca:93:50:f7:20:51:48:5e:f4: bb:a0:e0:f8:ad:39:a7:9e:9f:d7:07:31:09:71:5d: 77:72:85:f6:97:80:e5:e6:3a:e4:04:4c:56:d3:25: 04:6f:91:20:7e:54:52:cf:92:26:b4:43:8a:4a:05: 54:d6:d1:4b:2e:c6:94:fd:b0:54:a2:58:b0:3d:c4: 8b:15:34:f3:bb:0e:ee:71:c2:95:e4:7f:89:e6:dd: 14:21:47:7c:3f:18:e4:3d:2b:2c:dd:da:f0:d9:2f: 49:34:ec:46:3e:03:1b:cb:c9:87:a7:ca:e0:54:d8: 6c:d1:b7:b8:6d:b0:67:2a:38:fb:7b:96:aa:08:df: d9:9b:b1:80:cf:8b:c1:0c:52:ef:c6:7a:59:4d:5f: 0f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:52:84:E9:FE:EE:40:0D:14:40:7E:DA:AA:A1:F6:2F:E0:72:4C:47 X509v3 Authority Key Identifier: keyid:7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.228.0/24 IPv6: 2001:df6:180:ca::/63 Signature Algorithm: sha256WithRSAEncryption 6d:77:7f:3e:3f:09:39:0b:bc:6d:85:d8:13:d4:0b:cb:df:0b: 04:90:24:39:b1:cf:0e:1e:92:9f:94:42:d4:07:b5:c0:03:c9: 8a:cf:a8:8f:30:aa:33:6b:4c:44:3e:c6:45:45:59:90:25:17: 5b:44:80:74:81:32:16:91:58:5f:c3:b5:23:da:88:91:65:d7: 9f:25:f6:fd:25:ff:36:02:cf:24:a5:3b:5e:82:d9:a4:2d:a8: 76:2d:96:33:dd:3a:4c:83:f5:46:3c:85:13:f7:13:e5:f9:52: bd:f2:87:b5:b5:ca:25:22:38:59:fd:f6:22:c7:da:be:92:d0: 89:65:1a:b8:af:47:6d:fd:bf:3e:07:04:60:eb:d9:8c:c2:1e: 1e:39:7b:57:ff:4f:fb:17:32:37:d6:71:04:2e:88:80:a9:0b: 67:23:72:3c:96:ac:30:d2:3a:96:09:24:6a:c6:09:7e:ef:4c: cc:c2:6d:2d:fc:28:8b:a8:39:ad:03:d1:cf:21:dc:f9:89:53: db:55:be:0b:e1:ff:f8:e8:56:0a:d5:8a:31:90:c8:9e:b3:4c: da:44:a9:47:f8:06:84:26:82:b5:80:cf:65:e6:3b:a9:d8:0e: 9e:be:cb:62:8b:45:11:3e:84:f0:10:13:8b:8b:54:f3:5c:90: 36:be:9b:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRjIxMTAvBgNVBAUTKDdCRjE4MENFQUM0NzZEQkQxODM5MjkxMEZBMjJEQUEx RUY1QkE2RDUwHhcNMjUwNDE0MjIzMzMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkOGQzYS1kZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9jBEXuNlJ+GDE1WHxX7xXj0TR22Grf3Ycz9OObMG4Y4zFykJ0LqCMtyuCgy tBnoDmVTz2UptwwF1NEYOB0ZCjHCLFJpSTN2bb86mx0JwOvbPcw8TXEXocYQz3Dx Kg2ud9xaPuj7FT0CGpKdYyjKk1D3IFFIXvS7oOD4rTmnnp/XBzEJcV13coX2l4Dl 5jrkBExW0yUEb5EgflRSz5ImtEOKSgVU1tFLLsaU/bBUoliwPcSLFTTzuw7uccKV 5H+J5t0UIUd8PxjkPSss3drw2S9JNOxGPgMby8mHp8rgVNhs0be4bbBnKjj7e5aq CN/Zm7GAz4vBDFLvxnpZTV8P6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlShOn+ 7kANFEB+2qqh9i/gckxHMB8GA1UdIwQYMBaAFHvxgM6sR229GDkpEPoi2qHvW6bV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVGMi9EQTQ3RTU2MDk0 NDgxMUVCQTVBRTM2MDlDNEY5QUUwMi9lX0dBenF4SGJiMFlPU2tRLWlMYW9lOWJw dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VfR0F6cXhIYmIwWU9Ta1EtaUxhb2U5YnB0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRjIvREE0N0U1NjA5NDQ4MTFFQkE1QUUzNjA5QzRGOUFFMDIvQkM1NkVCOEVB MjE4MTFFRDk0NDI0QjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBABnouQwEQQCAAIwCwMJASABDfYBgADKMA0GCSqGSIb3DQEB CwUAA4IBAQBtd38+Pwk5C7xthdgT1AvL3wsEkCQ5sc8OHpKflELUB7XAA8mKz6iP MKoza0xEPsZFRVmQJRdbRIB0gTIWkVhfw7Uj2oiRZdefJfb9Jf82As8kpTtegtmk Lah2LZYz3TpMg/VGPIUT9xPl+VK98oe1tcolIjhZ/fYix9q+ktCJZRq4r0dt/b8+ BwRg69mMwh4eOXtX/0/7FzI31nEELoiAqQtnI3I8lqww0jqWCSRqxgl+70zMwm0t /CiLqDmtA9HPIdz5iVPbVb4L4f/46FYK1YoxkMies0zaRKlH+AaEJoK1gM9l5jup 2A6evstii0URPoTwEBOLi1TzXJA2vpu9 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:02 2025 by rpki-client on console.sobornost.net