$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa File: 1333404E5A0D11EF8810E217C4F9AE02.roa (raw, json) Hash identifier: LSSqPw0m9vdH2z02yt+UwvMOawigT/2JykBCEQ4iiVM= Subject key identifier: 85:D4:A3:F6:E9:8D:B8:42:F9:BC:D2:73:90:98:DB:7A:3F:5E:FE:1D Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 0161 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa Signing time: Wed 05 Feb 2025 02:55:58 +0000 ROA not before: Wed 05 Feb 2025 02:55:58 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136993 IP address blocks: 103.69.132.0/22 maxlen: 24 103.69.152.0/22 maxlen: 24 103.206.188.0/22 maxlen: 23 116.66.176.0/24 maxlen: 24 116.66.177.0/24 maxlen: 24 116.66.178.0/24 maxlen: 24 116.66.179.0/24 maxlen: 24 137.59.100.0/22 maxlen: 23 180.149.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Feb 5 02:55:58 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a2d33e-5456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:12:33:b8:89:04:e1:dd:b8:64:0a:77:10:4d: b9:b9:bf:e3:48:b6:21:52:59:85:3b:e3:d1:66:7b: 71:7f:e0:bf:63:05:b0:c7:ab:d5:63:bd:a2:41:3f: 6a:f4:3b:06:52:46:ee:01:02:76:9c:2c:e7:4e:f0: b7:77:a5:44:b5:b7:cc:ff:0d:5f:9e:3b:4e:81:ac: 7b:50:ca:4b:f9:1f:6d:74:a9:06:8f:33:4e:fd:1e: 07:4e:9f:e6:da:0b:26:8f:0d:58:c4:bc:cc:61:6b: 15:a1:84:3b:32:81:61:cf:30:dc:57:2c:29:fb:1c: 74:b7:e1:5c:49:31:b7:b1:db:7b:3a:74:e4:68:c9: 2d:4e:d3:11:3e:b3:36:dc:bc:0b:48:2b:d2:ee:ab: 69:70:6b:ce:37:aa:aa:f5:3e:bc:63:48:04:f5:0e: 8b:0a:73:e3:e9:2a:fa:12:87:eb:e1:69:16:29:09: 90:e7:24:bb:d1:24:45:5b:5d:d0:b9:5d:3b:3f:ad: a2:c0:5b:12:62:b8:03:0b:6f:08:bc:9d:fa:79:88: 2e:c8:bf:71:9a:f7:8d:52:ca:9f:50:1f:8d:31:4c: 27:51:5a:80:5c:4b:62:60:aa:aa:a3:a4:0d:79:8d: 4c:7b:a5:b2:40:c8:8f:07:d6:1f:ff:1d:49:f0:ac: 57:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D4:A3:F6:E9:8D:B8:42:F9:BC:D2:73:90:98:DB:7A:3F:5E:FE:1D X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.132.0/22 103.69.152.0/22 103.206.188.0/22 116.66.176.0/22 137.59.100.0/22 180.149.236.0/22 Signature Algorithm: sha256WithRSAEncryption 86:d9:5a:fe:7a:ee:cb:0c:fb:1b:5b:40:af:ae:20:14:ed:a6: 27:f3:21:90:c1:b6:47:3d:75:c8:e9:61:a5:4b:08:70:87:cd: 9a:18:77:c8:6c:28:77:75:f1:68:d0:63:23:44:eb:0f:f2:88: 29:bd:3c:4b:d5:1b:55:24:8e:e2:97:26:68:42:e5:03:00:d2: df:38:a0:cd:03:1a:26:48:e4:33:3c:c8:36:d5:b5:1e:4b:bb: dd:25:ca:25:a6:f0:33:ec:17:c1:d1:b1:92:4e:6c:a0:f7:d4: fb:d8:25:89:77:d3:63:2d:10:c3:f7:c8:6d:44:ac:1a:c2:86: db:61:df:e9:ff:c5:a9:21:11:bf:84:ef:7c:a0:8d:b5:11:39: 9f:c5:f1:b0:dd:de:58:ab:a0:47:01:98:e2:4d:8f:e4:09:52: 43:0a:aa:ad:7a:19:b1:2a:72:07:ae:37:d9:44:e1:0f:b6:3c: 9d:8d:d2:14:46:3a:4d:80:1e:49:aa:17:3c:13:8f:df:aa:bf: b4:13:62:2c:da:2c:07:db:19:0b:1e:10:94:00:57:87:80:89: eb:1b:83:86:98:e8:6d:99:a3:11:f7:ee:1c:02:52:df:bc:c2: ea:a3:cd:a4:a7:95:70:3d:62:d5:02:31:05:61:5a:f2:e1:54: ed:35:35:81 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjUwMjA1MDI1NTU4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyZDMzZS01NDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BIzuIkE4d24ZAp3EE25ub/jSLYhUlmFO+PRZntxf+C/YwWwx6vVY72iQT9q 9DsGUkbuAQJ2nCznTvC3d6VEtbfM/w1fnjtOgax7UMpL+R9tdKkGjzNO/R4HTp/m 2gsmjw1YxLzMYWsVoYQ7MoFhzzDcVywp+xx0t+FcSTG3sdt7OnTkaMktTtMRPrM2 3LwLSCvS7qtpcGvON6qq9T68Y0gE9Q6LCnPj6Sr6Eofr4WkWKQmQ5yS70SRFW13Q uV07P62iwFsSYrgDC28IvJ36eYguyL9xmveNUsqfUB+NMUwnUVqAXEtiYKqqo6QN eY1Me6WyQMiPB9Yf/x1J8KxXBQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFIXUo/bp jbhC+bzSc5CY23o/Xv4dMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMTMzMzQwNEU1 QTBEMTFFRjg4MTBFMjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAJnRYQDBAJnRZgDBAJnzrwDBAJ0QrADBAKJO2QDBAK0leww DQYJKoZIhvcNAQELBQADggEBAIbZWv567ssM+xtbQK+uIBTtpifzIZDBtkc9dcjp YaVLCHCHzZoYd8hsKHd18WjQYyNE6w/yiCm9PEvVG1UkjuKXJmhC5QMA0t84oM0D GiZI5DM8yDbVtR5Lu90lyiWm8DPsF8HRsZJObKD31PvYJYl302MtEMP3yG1ErBrC htth3+n/xakhEb+E73ygjbUROZ/F8bDd3liroEcBmOJNj+QJUkMKqq16GbEqcgeu N9lE4Q+2PJ2N0hRGOk2AHkmqFzwTj9+qv7QTYizaLAfbGQseEJQAV4eAiesbg4aY 6G2ZoxH37hwCUt+8wuqjzaSnlXA9YtUCMQVhWvLhVO01NYE= -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net