$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa File: 27C8A978636311EEB35FEF77C4F9AE02.roa (raw, json) Hash identifier: Q6yyokRVP0IhCRAkDpyPFxGmFUlEicVPCqDjBJ8oTPE= Subject key identifier: 3E:95:AD:36:8A:F5:D9:7E:D8:A6:76:04:3F:CC:3B:0F:3A:2D:4C:ED Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39D9 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:45 +0000 ROA not before: Mon 14 Jul 2025 14:50:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151825 IP address blocks: 171.102.216.0/24 maxlen: 24 171.102.217.0/24 maxlen: 24 2001:fb0:10bb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14809 (0x39d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751944-5d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2c:e5:7e:cc:9e:c6:7d:cd:76:64:fb:1e:14: 77:14:33:35:41:b8:9f:cd:de:07:7a:9a:79:7e:63: c2:fb:9b:4a:1f:bd:c3:42:6b:67:f8:4a:9b:0d:d7: 1e:5d:8b:35:74:21:35:2b:67:08:e5:90:32:b3:38: 06:65:d0:9c:0b:ec:b9:f0:5b:8d:ab:55:d2:e0:da: b1:2e:e2:e6:14:66:02:83:9e:80:62:0e:80:af:47: 64:bd:b6:fd:dd:2a:88:00:54:65:24:14:8f:ca:5a: 57:ff:4a:b3:e0:4e:52:de:44:39:ae:22:1f:fb:6e: be:8d:fb:c4:42:d6:3d:27:f6:27:0b:5e:6a:a0:80: e0:17:b0:91:29:fe:78:ed:5f:5e:36:b0:68:49:8b: 03:5e:fc:de:85:b4:f3:d1:0b:08:38:8e:45:56:67: fd:d8:38:89:ed:06:35:19:fc:65:be:ed:0e:92:2a: b0:08:53:4f:69:9d:1e:03:b9:b1:5e:ad:70:14:e4: 92:20:4b:8f:5f:58:70:2d:c9:2e:0f:61:16:a2:2e: 2c:fc:4c:7d:eb:7f:88:d7:77:74:4a:2e:67:f7:35: 99:b8:19:98:78:80:a7:ac:41:53:a7:bb:09:0e:e0: 31:0a:3b:ac:9d:32:a3:c8:b2:27:9a:d6:92:e6:be: ee:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:95:AD:36:8A:F5:D9:7E:D8:A6:76:04:3F:CC:3B:0F:3A:2D:4C:ED X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/27C8A978636311EEB35FEF77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.216.0/23 IPv6: 2001:fb0:10bb::/48 Signature Algorithm: sha256WithRSAEncryption 9e:8f:b9:4d:73:d5:e5:8e:fd:fe:af:85:58:76:8a:62:ce:af: 0a:d7:f4:e1:be:70:8a:9a:63:0b:c5:0c:c9:d9:d3:2f:b5:c1: 84:e1:a3:5f:99:0d:92:5b:05:b6:07:f6:a4:c0:69:23:95:ac: dc:9f:8a:87:b7:d8:af:93:a3:5d:e7:18:7c:1a:d1:1e:14:ac: bc:0c:3e:49:61:13:ab:98:86:16:3b:d1:b4:d7:fc:01:04:a8: d7:38:38:5b:d8:8f:95:f2:d0:25:f2:7d:e3:8e:28:0a:18:1b: d3:f0:5c:d9:1d:60:0b:db:ec:83:c7:c6:ba:ba:f7:72:43:23: 9b:af:ff:6e:75:e1:52:5b:07:0d:d6:7f:ba:47:61:51:8d:f9: fa:81:cb:57:b3:f8:11:7c:b6:47:ad:22:05:eb:e3:ba:e1:54: cc:a6:ff:6e:5e:8a:59:c1:24:fe:bc:9c:48:a7:21:26:95:39: b3:15:60:ca:41:bd:0b:fe:05:3d:fb:b1:b8:d6:4a:c2:f5:c1: f2:1d:ca:51:16:46:53:e6:26:ce:3e:04:d3:fc:44:9e:3a:a1: a0:e0:16:d9:61:cb:11:fb:eb:fc:fe:15:45:b7:96:22:15:a0: 71:b7:68:0f:8a:2b:a5:e3:6f:46:36:98:6d:19:26:1a:aa:67: 58:c1:9b:42 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICOdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk0NC01ZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCzlfsyexn3NdmT7HhR3FDM1Qbifzd4Hepp5fmPC+5tKH73DQmtn+EqbDdce XYs1dCE1K2cI5ZAyszgGZdCcC+y58FuNq1XS4NqxLuLmFGYCg56AYg6Ar0dkvbb9 3SqIAFRlJBSPylpX/0qz4E5S3kQ5riIf+26+jfvEQtY9J/YnC15qoIDgF7CRKf54 7V9eNrBoSYsDXvzehbTz0QsIOI5FVmf92DiJ7QY1Gfxlvu0OkiqwCFNPaZ0eA7mx Xq1wFOSSIEuPX1hwLckuD2EWoi4s/Ex963+I13d0Si5n9zWZuBmYeICnrEFTp7sJ DuAxCjusnTKjyLInmtaS5r7ueQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD6VrTaK 9dl+2KZ2BD/MOw86LUztMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMjdDOEE5Nzg2 MzYzMTFFRUIzNUZFRjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAGrZtgwDwQCAAIwCQMHACABD7AQuzANBgkqhkiG9w0BAQsF AAOCAQEAno+5TXPV5Y79/q+FWHaKYs6vCtf04b5wippjC8UMydnTL7XBhOGjX5kN klsFtgf2pMBpI5Ws3J+Kh7fYr5OjXecYfBrRHhSsvAw+SWETq5iGFjvRtNf8AQSo 1zg4W9iPlfLQJfJ9444oChgb0/Bc2R1gC9vsg8fGurr3ckMjm6//bnXhUlsHDdZ/ ukdhUY35+oHLV7P4EXy2R60iBevjuuFUzKb/bl6KWcEk/rycSKchJpU5sxVgykG9 C/4FPfuxuNZKwvXB8h3KURZGU+Ymzj4E0/xEnjqhoOAW2WHLEfvr/P4VRbeWIhWg cbdoD4orpeNvRjaYbRkmGqpnWMGbQg== -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:18 2025 by rpki-client