$ rpki-client -vvf rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa File: 0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa (raw, json) Hash identifier: kpR0s/alzHJxJv4b8Y4mih9UUNQwPIfKSjlw3hDfeWQ= Subject key identifier: 5D:6B:66:31:D2:54:9C:37:A6:C1:40:13:C5:91:55:98:75:F2:51:89 Certificate issuer: /CN=A9182502/serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Certificate serial: 0A5A Authority key identifier: 8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa Signing time: Wed 12 Feb 2025 03:03:29 +0000 ROA not before: Wed 12 Feb 2025 03:03:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137969 IP address blocks: 39.109.66.0/23 maxlen: 23 39.109.66.0/24 maxlen: 24 39.109.67.0/24 maxlen: 24 39.109.68.0/22 maxlen: 22 39.109.68.0/24 maxlen: 24 39.109.69.0/24 maxlen: 24 39.109.70.0/24 maxlen: 24 39.109.71.0/24 maxlen: 24 39.109.72.0/21 maxlen: 21 39.109.72.0/24 maxlen: 24 39.109.73.0/24 maxlen: 24 39.109.74.0/24 maxlen: 24 39.109.75.0/24 maxlen: 24 39.109.79.0/24 maxlen: 24 39.109.80.0/21 maxlen: 21 39.109.80.0/24 maxlen: 24 39.109.88.0/22 maxlen: 22 39.109.88.0/24 maxlen: 24 39.109.89.0/24 maxlen: 24 103.82.216.0/24 maxlen: 24 103.82.217.0/24 maxlen: 24 103.82.218.0/24 maxlen: 24 103.82.219.0/24 maxlen: 24 103.98.14.0/24 maxlen: 24 103.119.132.0/23 maxlen: 23 103.119.132.0/24 maxlen: 24 103.119.133.0/24 maxlen: 24 2403:e840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182502 Validity Not Before: Feb 12 03:03:29 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67ac0f81-1ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e7:fe:3f:54:e9:5d:4e:37:dd:49:79:e5:7c: d7:68:49:80:db:8e:45:cc:89:56:d3:ee:da:cb:a7: dc:33:ce:52:b5:68:ad:fd:37:49:1c:69:6c:f4:03: 7e:62:f2:91:06:be:9f:0a:6c:e5:f7:f1:51:ca:fe: c1:20:7c:a8:92:ea:00:02:69:62:cc:a0:67:82:40: 46:57:bd:6f:21:ae:a2:74:de:ed:a8:ee:0d:96:a6: 5d:53:aa:db:5d:83:53:74:43:4e:10:f2:14:cf:d6: 73:21:2f:dd:bc:a5:5b:49:d6:a9:94:a7:c3:e8:d9: 4d:4a:75:d5:f0:bf:3c:a2:ed:7c:a2:7e:da:f1:e3: 1a:ea:da:1f:34:e1:14:bd:aa:c0:8a:93:32:b5:f5: eb:17:d0:a2:c2:06:06:7d:15:6a:72:0b:85:f0:d2: c6:f5:18:f2:e4:f7:9a:76:e8:3a:cf:15:b6:39:21: 95:db:86:55:b0:63:3a:8e:02:34:4f:72:ea:d5:15: 83:94:ef:a7:50:94:b8:30:b5:e7:70:01:43:c8:b4: 21:73:8b:f3:df:3d:ae:03:ac:5e:6e:d7:0a:24:fb: af:8b:39:20:cd:0c:8e:87:37:2c:99:f4:b3:cb:b9: 7a:ab:40:f8:c4:4c:f2:ef:aa:77:72:68:8c:53:1f: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6B:66:31:D2:54:9C:37:A6:C1:40:13:C5:91:55:98:75:F2:51:89 X509v3 Authority Key Identifier: keyid:8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.109.66.0-39.109.91.255 103.82.216.0/22 103.98.14.0/24 103.119.132.0/23 IPv6: 2403:e840::/32 Signature Algorithm: sha256WithRSAEncryption 26:c9:89:b6:09:b7:4b:c0:12:ce:e6:de:f1:8f:53:bf:ce:5d: f9:81:d9:7d:df:b1:fc:b7:a0:76:2c:57:1a:c3:de:b1:6a:95: 0e:0b:fb:26:ec:f3:17:1d:fc:ae:26:35:ba:14:c9:7a:cc:a9: a8:9e:ab:34:f4:b8:c0:6a:d6:e5:fe:a8:07:60:7c:8d:38:02: 2d:73:d1:75:81:83:c8:8e:69:0b:03:32:62:c1:a2:8b:a5:d8: 49:04:35:3a:ab:aa:4c:b1:54:c9:7c:c9:2d:75:c6:5e:63:3b: b5:04:76:36:72:a6:54:b1:a4:a9:74:3f:b2:9a:2f:49:d9:41: 5d:8c:d7:7f:9f:3e:63:ab:8a:d5:b7:9d:2f:47:2b:33:6f:e3: d8:d3:4b:0d:41:2d:14:d7:19:3a:3f:c6:d6:4d:e0:bc:01:5f: 22:5b:87:21:ee:c5:9c:b7:4e:7f:04:8b:dc:57:b8:1f:a2:0c: 63:b9:c2:35:8a:58:00:86:1a:84:e2:88:c0:e8:67:43:53:0e: f1:7f:45:12:de:e5:96:0e:a0:14:04:4a:b6:2e:73:09:1d:6d: 6a:98:0f:55:ac:41:46:4e:3b:71:ab:40:cc:df:c0:ec:e6:fb: c7:17:a9:1c:fb:b1:5c:5a:71:ee:54:fd:ff:4b:51:f8:28:c3: 39:37:d6:4e -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1MDIxMTAvBgNVBAUTKDhDM0NDQjRGRkI4OTE4OUM2RUY1QjM0REZEQUFCRTE4 MDZBNTIxOEEwHhcNMjUwMjEyMDMwMzI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjMGY4MS0xZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+f+P1TpXU433Ul55XzXaEmA245FzIlW0+7ay6fcM85StWit/TdJHGls9AN+ YvKRBr6fCmzl9/FRyv7BIHyokuoAAmlizKBngkBGV71vIa6idN7tqO4NlqZdU6rb XYNTdENOEPIUz9ZzIS/dvKVbSdaplKfD6NlNSnXV8L88ou18on7a8eMa6tofNOEU varAipMytfXrF9CiwgYGfRVqcguF8NLG9Rjy5Peadug6zxW2OSGV24ZVsGM6jgI0 T3Lq1RWDlO+nUJS4MLXncAFDyLQhc4vz3z2uA6xebtcKJPuvizkgzQyOhzcsmfSz y7l6q0D4xEzy76p3cmiMUx8EEwIDAQABo4ICvjCCArowHQYDVR0OBBYEFF1rZjHS VJw3psFAE8WRVZh18lGJMB8GA1UdIwQYMBaAFIw8y0/7iRicbvWzTf2qvhgGpSGK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjUwMi9EQTE2QzYzQTcz Q0MxMUVBQTM5OTUzMjZDNEY5QUUwMi9qRHpMVF91SkdKeHU5Yk5OX2FxLUdBYWxJ WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEekxUX3VKR0p4dTliTk5fYXEtR0FhbElZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI1MDIvREExNkM2M0E3M0NDMTFFQUEzOTk1MzI2QzRGOUFFMDIvMEE1NzczRjZC QkJDMTFFQ0IyRTdGRjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCAwDAMEASdtQgMEAidtWAMEAmdS2AMEAGdiDgMEAWd3hDANBAIA AjAHAwUAJAPoQDANBgkqhkiG9w0BAQsFAAOCAQEAJsmJtgm3S8ASzube8Y9Tv85d +YHZfd+x/LegdixXGsPesWqVDgv7JuzzFx38riY1uhTJesypqJ6rNPS4wGrW5f6o B2B8jTgCLXPRdYGDyI5pCwMyYsGii6XYSQQ1OquqTLFUyXzJLXXGXmM7tQR2NnKm VLGkqXQ/spovSdlBXYzXf58+Y6uK1bedL0crM2/j2NNLDUEtFNcZOj/G1k3gvAFf IluHIe7FnLdOfwSL3Fe4H6IMY7nCNYpYAIYahOKIwOhnQ1MO8X9FEt7llg6gFARK ti5zCR1tapgPVaxBRk47catAzN/A7Ob7xxepHPuxXFpx7lT9/0tR+CjDOTfWTg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:50:12 2025 by rpki-client