$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa File: 385E3308639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: TCYXclRvYYtZUxQ5mRKUajDIcjauKFDG/zZisgUfCFk= Subject key identifier: 08:8C:CC:D9:72:74:9F:B1:80:F9:74:2F:9F:93:51:84:95:DF:C0:7F Certificate issuer: /CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Certificate serial: 82 Authority key identifier: BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa Signing time: Thu 17 Apr 2025 05:44:52 +0000 ROA not before: Thu 17 Apr 2025 05:44:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 147.124.12.0/22 maxlen: 24 160.25.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Validity Not Before: Apr 17 05:44:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68009554-ad96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:fd:39:9a:65:09:df:15:e0:5d:3a:f9:3c: ef:a7:db:e7:37:c9:cc:a7:3d:e7:41:e7:f5:52:d7: 5b:9e:5f:cd:84:4f:94:55:f0:10:d8:fe:17:33:e1: d4:50:9e:7a:fa:33:b6:a5:49:bf:3d:a8:42:3d:f2: 0e:fb:5c:28:20:c1:dd:9e:40:27:36:1a:4c:29:e7: 35:4d:80:c3:7b:3b:73:b4:5e:d1:9a:cc:6e:6a:87: bf:12:61:04:5d:9b:07:ee:51:5f:25:5a:b9:a2:e2: be:53:39:12:fd:11:41:99:3c:58:11:57:c8:af:0a: c7:1c:47:41:13:3f:48:16:78:1c:2f:d5:ef:62:db: 75:d9:a7:58:53:e2:9a:21:a4:11:aa:c5:38:c2:d3: d9:96:86:41:d9:bd:a8:aa:c6:fe:7e:87:a0:c9:18: 6f:ec:36:1d:1c:90:b6:dd:87:a9:05:bc:6f:ca:f8: 7d:29:94:8b:55:0f:cd:db:b8:c4:6c:51:fe:86:0a: 08:9f:3d:df:e2:98:b8:ab:16:2f:b8:a6:7f:49:e2: 8b:e5:10:d3:dd:ae:5d:da:59:75:85:13:f3:97:f5: f2:dd:6d:be:30:d7:5d:62:e1:0e:7f:5f:1c:3a:a8: fb:9b:32:32:2e:48:27:a0:a5:b2:4e:3f:11:84:eb: b0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8C:CC:D9:72:74:9F:B1:80:F9:74:2F:9F:93:51:84:95:DF:C0:7F X509v3 Authority Key Identifier: keyid:BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.124.12.0/22 160.25.254.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:22:42:60:bc:4d:cb:ed:29:20:a5:7f:4b:cc:0f:36:86:07: 88:7f:b8:6c:50:22:78:bf:31:87:03:3b:ef:37:50:85:02:9a: 58:b4:20:7f:70:1e:2c:61:45:35:7b:1e:dd:e8:00:7b:90:1d: 6e:f5:bc:e1:0c:69:f5:cb:b8:26:22:7c:24:1c:22:5f:85:cc: bc:00:08:c5:20:63:ce:20:ad:07:45:5e:fe:6e:37:35:7a:e3: 32:15:eb:29:02:82:64:d9:4a:f9:97:78:99:3a:74:c7:91:1d: b4:01:35:fe:5f:4f:17:d0:23:b6:a3:64:b2:06:52:6e:a0:25: 53:42:48:a3:b7:35:25:20:c6:51:39:05:16:65:ca:e8:af:e0: 7e:a4:ae:75:ae:6c:9d:29:96:71:cf:38:92:c5:f7:a9:68:ad: 43:02:71:4f:48:8b:0f:1d:74:a7:56:e8:34:50:8e:19:3a:1f: 86:0a:2c:37:76:0c:f3:49:82:79:5b:4c:75:78:35:28:04:b9: a2:a8:1d:7d:49:8c:69:3e:c7:35:fe:ef:f6:b4:68:bd:fe:0c: 06:49:33:d8:77:d7:bd:40:ea:66:bb:17:f7:4c:af:9d:2b:ff: 60:fe:00:64:50:96:ad:6f:d8:6f:f3:81:08:12:15:f5:e3:82: 8c:28:ef:94 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKEJCM0JENUQ3RTE5OTI0RDg2MkI2QTQxQkYzNEM3RkRC QkJFOTFDNkQwHhcNMjUwNDE3MDU0NDUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwOTU1NC1hZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QH9OZplCd8V4F06+Tzvp9vnN8nMpz3nQef1Utdbnl/NhE+UVfAQ2P4XM+HU UJ56+jO2pUm/PahCPfIO+1woIMHdnkAnNhpMKec1TYDDeztztF7Rmsxuaoe/EmEE XZsH7lFfJVq5ouK+UzkS/RFBmTxYEVfIrwrHHEdBEz9IFngcL9XvYtt12adYU+Ka IaQRqsU4wtPZloZB2b2oqsb+foegyRhv7DYdHJC23YepBbxvyvh9KZSLVQ/N27jE bFH+hgoInz3f4pi4qxYvuKZ/SeKL5RDT3a5d2ll1hRPzl/Xy3W2+MNddYuEOf18c Oqj7mzIyLkgnoKWyTj8RhOuwPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAiMzNly dJ+xgPl0L5+TUYSV38B/MB8GA1UdIwQYMBaAFLs71dfhmSTYYrakG/NMf9u76Rxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9DN0Y0NDFDNjYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi91enZWMS1HWkpOaGl0cVFiODB4XzI3dnBI RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3V6dlYxLUdaSk5oaXRxUWI4MHhfMjd2cEhHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvQzdGNDQxQzY2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzg1RTMzMDg2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAKTfAwDBAGgGf4wDQYJKoZIhvcNAQELBQADggEBAA0iQmC8 TcvtKSClf0vMDzaGB4h/uGxQIni/MYcDO+83UIUCmli0IH9wHixhRTV7Ht3oAHuQ HW71vOEMafXLuCYifCQcIl+FzLwACMUgY84grQdFXv5uNzV64zIV6ykCgmTZSvmX eJk6dMeRHbQBNf5fTxfQI7ajZLIGUm6gJVNCSKO3NSUgxlE5BRZlyuiv4H6krnWu bJ0plnHPOJLF96lorUMCcU9Iiw8ddKdW6DRQjhk6H4YKLDd2DPNJgnlbTHV4NSgE uaKoHX1JjGk+xzX+7/a0aL3+DAZJM9h3171A6ma7F/dMr50r/2D+AGRQlq1v2G/z gQgSFfXjgowo75Q= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net