$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa File: EC1B43EA393111EAA1873746C4F9AE02.roa (raw, json) Hash identifier: 3515yyoHz/OpGxhQJVW0uZ09F4a0FPsq5rPkaEYDZbk= Subject key identifier: 69:5D:52:F0:34:8A:31:D4:65:62:59:76:F2:06:C3:97:41:91:A9:B2 Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1C26 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa Signing time: Mon 10 Feb 2025 16:33:37 +0000 ROA not before: Mon 10 Feb 2025 16:33:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45773 IP address blocks: 45.64.24.0/22 maxlen: 24 103.4.92.0/22 maxlen: 24 111.68.96.0/20 maxlen: 24 121.52.144.0/20 maxlen: 24 2400:fc00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7206 (0x1c26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Feb 10 16:33:37 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67aa2a60-2261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:bd:fb:85:1e:ff:03:65:19:01:fe:86:7a: 83:a1:50:f7:e6:e8:83:bc:4e:f8:bd:1e:30:60:48: a3:91:d3:f8:0e:c6:78:52:3f:45:6f:24:1a:99:6d: 22:60:a9:46:1e:6b:ce:26:40:8b:a4:f7:8f:9b:ce: 26:ea:c5:6b:db:f6:66:93:d9:dd:c5:18:e2:c6:97: 0f:00:20:da:06:77:1f:f4:b3:aa:16:42:f0:b5:e1: 67:13:13:62:af:30:7a:22:e6:ea:f3:dd:de:93:9a: ee:cd:a4:c3:36:21:b2:14:6a:26:00:69:c6:5c:86: d7:43:d5:6d:1b:31:84:21:5a:da:c4:1e:d6:73:af: 90:b2:d0:ed:85:7b:b4:55:f3:e5:9b:aa:2a:de:48: 04:2e:77:f8:d1:56:c6:31:2e:e9:2f:84:8e:58:72: 5a:46:66:90:9f:25:1b:3d:32:1d:62:a9:6b:ef:15: cc:de:98:f9:2d:89:f4:cb:24:5b:76:88:14:db:55: d7:04:70:5f:66:e9:bd:86:35:c4:ed:53:e9:d6:8c: 6e:f4:4e:58:36:a9:a2:eb:36:22:ee:27:bc:34:7c: 6c:84:43:ea:9f:b4:fd:22:b4:55:f7:bc:1d:23:19: 0a:c1:bb:d4:16:b0:e6:3a:28:78:29:d8:94:a9:57: f3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5D:52:F0:34:8A:31:D4:65:62:59:76:F2:06:C3:97:41:91:A9:B2 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.24.0/22 103.4.92.0/22 111.68.96.0/20 121.52.144.0/20 IPv6: 2400:fc00::/32 Signature Algorithm: sha256WithRSAEncryption 72:ec:52:b3:f4:76:6c:97:c8:c3:3b:a4:0a:c6:b2:e2:ee:fd: 1d:a8:40:b8:5d:d0:39:89:0d:98:a5:8b:e9:17:22:9d:7c:eb: b8:79:6e:d3:9a:b1:f3:05:53:3c:78:fd:57:6f:c8:39:0f:c3: 60:c2:fd:d9:8e:f4:a7:63:ef:d1:79:ff:9f:57:7f:8c:ae:78: d9:d4:b2:75:cd:cc:7f:fd:4e:73:04:46:16:45:40:da:4a:44: af:4a:f6:4f:10:ff:62:d7:b3:ba:4e:70:1c:6f:6b:65:b4:4c: e8:48:b6:ee:b5:2b:bd:c5:c2:84:dd:d4:e7:21:96:da:87:9d: 4f:0d:f6:59:ad:8f:7a:48:60:ec:13:c8:7a:90:7a:91:21:f1: fe:20:6d:a5:75:a4:17:5b:1b:85:94:af:6a:1c:90:68:f9:a4: d3:0f:b4:cd:c9:1b:5b:41:13:e6:6a:1d:2e:ad:c3:6c:08:77: d3:ef:74:1f:b4:66:56:8d:8a:d0:93:bc:30:e4:44:e4:eb:98: d2:a7:f4:8c:90:bb:02:2b:d2:0b:5e:1a:28:da:2e:d5:dc:7c: a0:4f:17:f5:0a:01:c2:71:d7:cc:97:fc:37:ad:d1:24:cc:cb: fa:18:2f:bf:8d:f6:a0:5c:93:5a:f3:75:40:3f:a5:4f:e3:e6: 34:85:3b:56 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICHCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUwMjEwMTYzMzM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhMmE2MC0yMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/W9+4Ue/wNlGQH+hnqDoVD35uiDvE74vR4wYEijkdP4DsZ4Uj9FbyQamW0i YKlGHmvOJkCLpPePm84m6sVr2/Zmk9ndxRjixpcPACDaBncf9LOqFkLwteFnExNi rzB6Iubq893ek5ruzaTDNiGyFGomAGnGXIbXQ9VtGzGEIVraxB7Wc6+QstDthXu0 VfPlm6oq3kgELnf40VbGMS7pL4SOWHJaRmaQnyUbPTIdYqlr7xXM3pj5LYn0yyRb dogU21XXBHBfZum9hjXE7VPp1oxu9E5YNqmi6zYi7ie8NHxshEPqn7T9IrRV97wd IxkKwbvUFrDmOih4KdiUqVfzPQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFGldUvA0 ijHUZWJZdvIGw5dBkamyMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcwRkEvNjRGQjdFMUNFM0E3MTFFNkE1QjIwMTc4QzRGOUFFMDIvRUMxQjQzRUEz OTMxMTFFQUExODczNzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItQBgDBAJnBFwDBARvRGADBAR5NJAwDQQCAAIwBwMFACQA /AAwDQYJKoZIhvcNAQELBQADggEBAHLsUrP0dmyXyMM7pArGsuLu/R2oQLhd0DmJ DZili+kXIp1867h5btOasfMFUzx4/VdvyDkPw2DC/dmO9Kdj79F5/59Xf4yueNnU snXNzH/9TnMERhZFQNpKRK9K9k8Q/2LXs7pOcBxva2W0TOhItu61K73FwoTd1Och ltqHnU8N9lmtj3pIYOwTyHqQepEh8f4gbaV1pBdbG4WUr2ockGj5pNMPtM3JG1tB E+ZqHS6tw2wId9PvdB+0ZlaNitCTvDDkROTrmNKn9IyQuwIr0gteGijaLtXcfKBP F/UKAcJx18yX/Det0STMy/oYL7+N9qBck1rzdUA/pU/j5jSFO1Y= -----END CERTIFICATE-----Generated at Sat Apr 26 08:18:37 2025 by rpki-client