$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/27B9D8CE5A4911F096BE7C32C4F9AE02.roa File: 27B9D8CE5A4911F096BE7C32C4F9AE02.roa (raw, json) Hash identifier: nXEceLRdjptD3hMuu1Rrn7X5bxhPTnP5MRplqc2Qdl4= Subject key identifier: 49:11:90:B7:00:20:AC:D8:64:14:17:6E:A0:51:6F:2D:DF:2A:F8:0E Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06 Certificate serial: 0754 Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/27B9D8CE5A4911F096BE7C32C4F9AE02.roa Signing time: Sun 06 Jul 2025 09:11:10 +0000 ROA not before: Sun 06 Jul 2025 09:11:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150744 IP address blocks: 223.29.214.0/24 maxlen: 24 2401:b8c0:a::/48 maxlen: 48 2401:b8c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153646, serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06 Validity Not Before: Jul 6 09:11:10 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=686a3dad-d7be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9a:cf:7c:08:1e:a3:40:41:19:67:11:01:83: d6:79:c8:d8:3c:af:d9:30:24:4e:b2:ec:ba:e0:43: 79:29:1b:7d:8e:10:99:45:6a:c7:91:e6:75:89:b8: ac:34:d8:ac:b0:83:a1:2b:78:c9:d7:39:0b:5a:f4: f2:bd:83:aa:4d:bd:53:8a:99:4f:ab:fe:5f:86:f1: 6c:de:ff:dc:f1:9b:c9:a6:86:a6:08:f9:46:d2:ab: b7:ac:dd:76:dc:d6:5d:b8:72:73:0a:5b:02:a7:b1: 17:a0:1a:df:ff:a6:9a:05:d5:eb:94:c9:8f:a3:b0: d4:da:50:f4:d1:75:04:52:a5:0e:e5:d3:f6:22:49: d6:50:bd:6f:51:78:16:d8:99:0a:12:27:0d:54:e9: f8:bc:9b:09:69:73:d9:be:be:c7:cf:6b:6b:a4:ef: 05:42:66:28:9b:ff:02:ff:cc:3b:86:db:41:1e:a4: df:7c:a4:d3:7d:52:1d:60:af:75:6b:69:b2:9d:88: ee:33:3b:d5:20:78:2a:a6:31:a2:25:23:10:6a:73: 75:75:01:a5:ab:b6:30:4d:ee:cc:39:6e:b6:26:eb: 1a:d0:ca:8f:19:88:68:50:b1:3b:43:50:1e:23:ec: 6a:11:36:01:ad:40:26:2d:73:0c:87:7e:70:69:eb: b9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:11:90:B7:00:20:AC:D8:64:14:17:6E:A0:51:6F:2D:DF:2A:F8:0E X509v3 Authority Key Identifier: keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/27B9D8CE5A4911F096BE7C32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.214.0/24 IPv6: 2401:b8c0:a::/48 2401:b8c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 3d:85:69:95:ac:40:18:d1:ac:4c:f1:75:f9:22:3f:8d:98:ee: 22:1d:ec:14:55:bf:ca:99:dc:f5:e1:d1:c8:c3:86:86:76:96: 48:47:dd:ad:9a:0b:10:b2:23:66:ca:fe:02:69:af:3f:24:58: 01:c9:81:17:c6:f9:25:eb:cf:03:b6:c7:6b:69:4e:0e:a8:52: e1:14:2f:b4:73:84:3c:b0:64:82:fd:45:07:47:3c:a8:89:fe: d4:4a:cb:08:63:b9:71:e2:8e:b6:69:f8:8c:3c:e5:91:f2:68: b6:5d:f5:ed:2e:cf:5a:b6:5f:f3:54:f6:ec:bf:89:73:1c:ca: 8e:f6:01:31:c3:21:62:2b:ad:1d:96:a1:32:29:e0:1e:34:2e: 13:1a:85:14:38:ac:5f:a9:b1:79:e1:db:b1:3f:17:1d:e4:f1: d8:35:cf:bf:af:34:d0:42:73:fe:4f:76:bc:fb:9e:98:f8:6e: 05:af:ce:a6:7a:11:7c:49:15:9f:33:88:1e:e2:06:fb:dd:82: f8:0c:e7:1c:4d:4c:5c:6b:39:10:33:07:2e:58:20:bd:fe:af: c0:c9:b1:22:e5:c7:17:4d:a4:36:c1:7f:55:26:94:3f:a2:80: 1b:ee:75:c1:2b:c0:ef:64:fc:25:8d:32:a8:48:4c:fc:29:47: 2d:1d:a9:a0 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NDYxMTAvBgNVBAUTKDM0OTJFRkZFOTYyMkIxRkZGODgxNTk3MDAzNzYzQzFC QTI0QTFFMDYwHhcNMjUwNzA2MDkxMTEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZhM2RhZC1kN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5rPfAgeo0BBGWcRAYPWecjYPK/ZMCROsuy64EN5KRt9jhCZRWrHkeZ1ibis NNissIOhK3jJ1zkLWvTyvYOqTb1TiplPq/5fhvFs3v/c8ZvJpoamCPlG0qu3rN12 3NZduHJzClsCp7EXoBrf/6aaBdXrlMmPo7DU2lD00XUEUqUO5dP2IknWUL1vUXgW 2JkKEicNVOn4vJsJaXPZvr7Hz2trpO8FQmYom/8C/8w7httBHqTffKTTfVIdYK91 a2mynYjuMzvVIHgqpjGiJSMQanN1dQGlq7YwTe7MOW62Jusa0MqPGYhoULE7Q1Ae I+xqETYBrUAmLXMMh35waeu5TQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEkRkLcA IKzYZBQXbqBRby3fKvgOMB8GA1UdIwQYMBaAFDSS7/6WIrH/+IFZcAN2PBuiSh4G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY0Ni82QjhFRkE1QUZG OTgxMUU5ODdDODBBNkFDNEY5QUUwMi9OSkx2X3BZaXNmXzRnVmx3QTNZOEc2SktI Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KTHZfcFlpc2ZfNGdWbHdBM1k4RzZKS0hnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM2NDYvNkI4RUZBNUFGRjk4MTFFOTg3QzgwQTZBQzRGOUFFMDIvMjdCOUQ4Q0U1 QTQ5MTFGMDk2QkU3QzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBADfHdYwGAQCAAIwEgMHACQBuMAACgMHACQBuMAADTANBgkq hkiG9w0BAQsFAAOCAQEAPYVplaxAGNGsTPF1+SI/jZjuIh3sFFW/ypnc9eHRyMOG hnaWSEfdrZoLELIjZsr+AmmvPyRYAcmBF8b5JevPA7bHa2lODqhS4RQvtHOEPLBk gv1FB0c8qIn+1ErLCGO5ceKOtmn4jDzlkfJotl317S7PWrZf81T27L+JcxzKjvYB McMhYiutHZahMingHjQuExqFFDisX6mxeeHbsT8XHeTx2DXPv6800EJz/k92vPue mPhuBa/OpnoRfEkVnzOIHuIG+92C+AznHE1MXGs5EDMHLlggvf6vwMmxIuXHF02k NsF/VSaUP6KAG+51wSvA72T8JY0yqEhM/ClHLR2poA== -----END CERTIFICATE-----Generated at Sun Jul 20 14:03:37 2025 by rpki-client