$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa File: 1A6C2ADE173F11F08E4D594DC4F9AE02.roa (raw, json) Hash identifier: lfkr3wnF/gd810FZkIOk1rPPX3nFh2BPUr1atDdR1QQ= Subject key identifier: 90:3A:21:98:2C:AB:26:B8:B3:5D:49:D8:49:56:DE:FE:10:6B:00:16 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 01B7 Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa Signing time: Sat 12 Apr 2025 01:55:29 +0000 ROA not before: Sat 12 Apr 2025 01:55:29 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23532 IP address blocks: 43.224.149.0/24 maxlen: 24 103.43.172.0/24 maxlen: 24 103.43.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 03:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Apr 12 01:55:29 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67f9c811-1467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:1c:64:1f:15:b3:4f:b2:69:b9:26:9b:ed: cf:c4:74:a6:2d:5a:5d:35:37:9c:35:2e:3e:aa:fc: 7b:03:57:e2:64:98:7d:81:03:6b:95:20:51:2c:85: 0b:7c:a2:a9:28:a9:c3:87:e8:be:15:cc:59:c8:2d: 9f:00:63:73:ad:5d:75:6e:ef:9f:b2:68:63:d3:02: 52:9c:31:f8:bf:86:2a:c7:32:63:26:8f:65:a3:d5: ef:b9:e7:77:3d:74:0e:ef:1b:b4:77:4a:63:b3:b7: 07:e9:77:85:f4:5f:86:78:7e:db:0e:03:90:24:65: 0b:17:de:52:f5:e4:5d:3e:e1:c8:25:5c:46:b0:94: eb:8c:37:5a:04:d4:7e:e6:45:22:6c:99:5a:20:43: 1b:dd:29:6f:e7:05:18:07:ab:8a:69:cf:a1:78:44: 5e:13:4d:ac:9a:7b:70:d7:ee:78:49:9f:45:e3:ec: 86:21:e9:c8:d8:d5:2c:39:7c:eb:ee:ce:59:16:9b: f5:4f:b6:da:13:28:3d:0b:5a:ce:bb:92:cb:67:8d: 13:26:d7:86:25:05:52:7f:3b:24:bb:bc:bd:78:9a: 69:93:e2:81:b3:15:fb:c2:72:8a:d9:c6:6b:83:b9: 9a:23:8b:f0:29:50:be:ad:91:9c:34:59:d2:d8:05: 9c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3A:21:98:2C:AB:26:B8:B3:5D:49:D8:49:56:DE:FE:10:6B:00:16 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.149.0/24 103.43.172.0/23 Signature Algorithm: sha256WithRSAEncryption a9:c9:68:3f:75:e7:99:a4:99:e0:f3:fc:e0:2b:52:3b:d8:77: 7c:d4:54:01:8f:62:f2:10:2f:22:4b:a2:65:8c:55:d3:78:9f: 83:f2:ce:e1:d9:8d:67:eb:8b:4f:75:9c:96:c3:3a:9f:36:cc: 2f:6b:e8:a9:fc:2e:58:7b:39:ae:cf:07:6e:b7:54:57:72:e5: 98:be:e4:d6:f6:04:76:7f:09:96:46:14:c5:0b:f8:d0:c5:f7: 86:3e:fc:79:d0:77:4b:18:97:95:cb:47:d6:fb:bd:93:33:20: 12:37:6e:16:70:8f:88:9a:9b:93:b3:a6:cc:21:6e:4f:43:59: 93:e9:cf:ec:54:4c:4c:85:4a:39:67:4e:9d:02:24:b7:a0:40: 7b:f8:49:6b:a3:ff:84:d7:c7:04:2a:39:4f:72:db:34:3d:8d: 5a:f6:cc:eb:76:d6:c0:15:2b:de:0b:5a:a3:98:bf:4c:54:d5: db:fd:8a:51:93:7d:b0:d4:fb:2f:46:16:89:26:80:ae:a2:43: 14:c5:a5:21:76:7a:d6:6c:80:0d:bd:9e:f0:28:2c:ad:17:c0: 5c:a1:f8:7b:30:b7:ba:61:3b:f2:3c:a5:52:0c:63:53:69:ed: 87:37:cd:19:d7:f8:b0:7a:66:94:c2:f4:9b:d1:c4:3b:b9:ea: f5:34:8d:a5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUwNDEyMDE1NTI5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y5YzgxMS0xNDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01UcZB8Vs0+yabkmm+3PxHSmLVpdNTecNS4+qvx7A1fiZJh9gQNrlSBRLIUL fKKpKKnDh+i+FcxZyC2fAGNzrV11bu+fsmhj0wJSnDH4v4YqxzJjJo9lo9Xvued3 PXQO7xu0d0pjs7cH6XeF9F+GeH7bDgOQJGULF95S9eRdPuHIJVxGsJTrjDdaBNR+ 5kUibJlaIEMb3Slv5wUYB6uKac+heEReE02smntw1+54SZ9F4+yGIenI2NUsOXzr 7s5ZFpv1T7baEyg9C1rOu5LLZ40TJteGJQVSfzsku7y9eJppk+KBsxX7wnKK2cZr g7maI4vwKVC+rZGcNFnS2AWcaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJA6IZgs qya4s11J2ElW3v4QawAWMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvMUE2QzJBREUx NzNGMTFGMDhFNEQ1OTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4JUDBAFnK6wwDQYJKoZIhvcNAQELBQADggEBAKnJaD91 55mkmeDz/OArUjvYd3zUVAGPYvIQLyJLomWMVdN4n4PyzuHZjWfri091nJbDOp82 zC9r6Kn8Llh7Oa7PB263VFdy5Zi+5Nb2BHZ/CZZGFMUL+NDF94Y+/HnQd0sYl5XL R9b7vZMzIBI3bhZwj4iam5Ozpswhbk9DWZPpz+xUTEyFSjlnTp0CJLegQHv4SWuj /4TXxwQqOU9y2zQ9jVr2zOt21sAVK94LWqOYv0xU1dv9ilGTfbDU+y9GFokmgK6i QxTFpSF2etZsgA29nvAoLK0XwFyh+Hswt7phO/I8pVIMY1Np7Yc3zRnX+LB6ZpTC 9JvRxDu56vU0jaU= -----END CERTIFICATE-----Generated at Wed Apr 23 06:36:04 2025 by rpki-client on console.sobornost.net