$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C490944ADF6C11ECB4B9B26AC4F9AE02.roa File: C490944ADF6C11ECB4B9B26AC4F9AE02.roa (raw, json) Hash identifier: O7AWtzUoaGBtdCrmhF891Qy6EOdSx75LfqjKtvxAzdo= Subject key identifier: 2F:B0:EF:A0:83:9A:A5:FF:E2:C1:B7:00:A6:88:1E:6C:08:92:BF:87 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 064A Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C490944ADF6C11ECB4B9B26AC4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:36 +0000 ROA not before: Wed 27 Aug 2025 01:05:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133956 IP address blocks: 27.254.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:05:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59df-86b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:1f:5c:fc:e9:34:c7:69:b8:15:88:4e:b6: e1:91:c9:dd:db:09:f9:a8:c3:36:35:ab:cb:07:b2: 15:1b:7d:e4:b5:4c:14:dc:bd:3e:f9:6a:59:3b:0c: 93:65:bc:49:69:b8:4d:11:06:dd:a3:d2:dc:f6:64: 55:b3:c5:33:e8:1d:4c:da:dd:a9:7c:fa:94:33:c3: 37:73:42:fa:35:ac:4c:11:f7:a9:63:0b:e9:74:dc: a3:f5:0e:f1:15:99:bb:24:2c:bd:b0:24:f5:a6:39: 8e:1d:42:64:80:b1:c3:48:06:68:cd:aa:e0:b0:23: 10:9a:81:71:a4:c4:16:f5:4e:3c:b5:fb:64:89:e9: 89:0f:42:c0:67:cf:be:5d:61:c7:e9:2b:9d:bd:4e: ec:24:ac:15:ca:09:49:eb:63:3d:fc:24:5d:c3:c2: 0e:42:9e:0f:72:d7:c8:41:59:be:3b:57:65:b5:d9: 55:87:38:f5:af:67:e5:ba:a2:6b:8e:b1:98:88:ea: 34:4a:cf:be:88:c6:7d:9c:9e:a8:83:cd:14:cc:aa: 9b:0a:81:63:75:b9:70:13:fe:be:c2:f5:c7:6b:d8: 94:8a:51:84:ca:0c:07:20:f3:64:f9:40:be:45:e7: d6:9d:87:f8:c3:27:68:bd:0d:80:2e:49:23:32:7e: ae:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B0:EF:A0:83:9A:A5:FF:E2:C1:B7:00:A6:88:1E:6C:08:92:BF:87 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C490944ADF6C11ECB4B9B26AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.225.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:fa:4a:b7:ca:72:a9:74:a1:9c:d4:1e:e1:13:17:93:59:dd: 75:d2:ef:3c:ec:e4:7e:9f:7d:5e:79:60:17:8d:d4:b0:5e:e3: f2:c5:58:23:6e:f1:3e:4b:57:d9:28:e7:bf:f3:28:ee:15:e5: 46:d0:c4:a1:3c:e1:41:b9:f2:68:29:1d:23:6b:3f:c8:bb:3b: 35:06:85:76:4f:4c:53:8a:40:d6:b0:18:82:84:a6:b6:cf:29: c5:10:f5:ac:48:57:bf:06:0b:09:8e:3a:0c:b1:2a:9e:e4:de: 0e:26:4b:99:6c:d0:ca:f7:13:9f:b4:09:80:0e:f1:0d:f6:41: af:b4:5d:f5:ba:bd:f1:12:81:b9:28:41:61:81:a1:83:c5:fd: 90:e2:7d:0a:ef:eb:cd:5d:30:93:8c:9c:e0:08:cf:81:ef:39: 82:1a:d1:c8:b8:16:ec:f7:5e:3a:30:af:5c:ea:93:2e:96:c6: 10:44:91:d7:44:40:05:8b:52:51:ae:f9:03:00:9b:54:b1:8a: 3c:44:01:6c:99:c9:d7:b3:13:96:e9:1b:af:1c:41:b6:44:dc: 42:96:69:27:2b:f0:45:eb:5a:4b:a0:d4:a0:b2:3f:9f:81:14: 36:76:f7:b8:c3:22:b3:13:83:90:0e:53:d1:a8:3b:7a:d4:c5: f8:e7:1b:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNTM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlkZi04NmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhEfXPzpNMdpuBWITrbhkcnd2wn5qMM2NavLB7IVG33ktUwU3L0++WpZOwyT ZbxJabhNEQbdo9Lc9mRVs8Uz6B1M2t2pfPqUM8M3c0L6NaxMEfepYwvpdNyj9Q7x FZm7JCy9sCT1pjmOHUJkgLHDSAZozargsCMQmoFxpMQW9U48tftkiemJD0LAZ8++ XWHH6SudvU7sJKwVyglJ62M9/CRdw8IOQp4PctfIQVm+O1dltdlVhzj1r2fluqJr jrGYiOo0Ss++iMZ9nJ6og80UzKqbCoFjdblwE/6+wvXHa9iUilGEygwHIPNk+UC+ RefWnYf4wydovQ2ALkkjMn6ubwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+w76CD mqX/4sG3AKaIHmwIkr+HMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzQ5MDk0NEFE RjZDMTFFQ0I0QjlCMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAb/uEwDQYJKoZIhvcNAQELBQADggEBAJ76SrfKcql0oZzU HuETF5NZ3XXS7zzs5H6ffV55YBeN1LBe4/LFWCNu8T5LV9ko57/zKO4V5UbQxKE8 4UG58mgpHSNrP8i7OzUGhXZPTFOKQNawGIKEprbPKcUQ9axIV78GCwmOOgyxKp7k 3g4mS5ls0Mr3E5+0CYAO8Q32Qa+0XfW6vfESgbkoQWGBoYPF/ZDifQrv681dMJOM nOAIz4HvOYIa0ci4Fuz3Xjowr1zqky6WxhBEkddEQAWLUlGu+QMAm1SxijxEAWyZ ydezE5bpG68cQbZE3EKWaScr8EXrWkug1KCyP5+BFDZ297jDIrMTg5AOU9GoO3rU xfjnG+o= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:29 2025 by rpki-client