$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C7052DC6DF6C11ECB4B9B26AC4F9AE02.roa File: C7052DC6DF6C11ECB4B9B26AC4F9AE02.roa (raw, json) Hash identifier: /Qfya4WWBhDqg9wY9Lt5XX/5+9UTwhK87AGPa7WJC8o= Subject key identifier: 7E:54:D1:B1:FC:FF:AF:77:29:0B:08:AB:34:60:E5:01:B1:BF:09:4A Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0669 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C7052DC6DF6C11ECB4B9B26AC4F9AE02.roa Signing time: Wed 27 Aug 2025 01:06:01 +0000 ROA not before: Wed 27 Aug 2025 01:06:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38718 IP address blocks: 27.254.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:06:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59f9-a38b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:b1:05:25:fa:6e:d2:15:94:b0:5e:da:4e: 1d:23:f4:f0:00:91:0e:ff:72:df:0b:0d:d3:98:35: b9:76:00:84:a7:fa:60:14:03:32:68:98:e2:a1:03: 98:86:12:d0:b0:e7:5a:23:36:d3:5a:c0:0f:b8:05: 45:04:94:c0:3c:c7:6a:e9:cc:44:b6:34:78:51:b1: 6f:68:7a:11:91:3b:9e:10:e4:26:e0:8f:ad:65:ab: 4c:c6:00:db:59:15:6d:73:10:61:30:d7:b3:44:d5: 0c:85:c2:83:b0:81:43:0d:d7:98:f9:a4:4d:91:0b: ad:01:ed:5b:37:a0:bd:1e:22:3d:78:ef:9b:18:3a: c4:94:99:3e:88:cc:37:ce:5c:13:5b:a4:ad:3e:c7: 27:08:3a:51:67:c7:2f:a8:a3:8a:9a:db:35:da:58: be:dc:2d:0c:e2:3a:a7:49:01:56:93:34:a8:60:cf: 90:d8:00:a2:6e:1d:dc:7e:9b:b2:23:5e:12:9a:db: 04:f0:0c:19:d6:8f:c6:13:66:d2:2a:57:97:e7:e0: 99:f1:3e:3c:5e:2e:86:5d:14:03:68:53:97:78:c3: 2b:f6:70:bd:96:cd:e5:8c:be:f3:12:a0:fd:c1:ad: f3:c1:c8:8b:d7:74:32:70:52:c7:6f:11:e6:1f:af: 71:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:54:D1:B1:FC:FF:AF:77:29:0B:08:AB:34:60:E5:01:B1:BF:09:4A X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C7052DC6DF6C11ECB4B9B26AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.252.0/24 Signature Algorithm: sha256WithRSAEncryption 58:d4:a3:9a:76:6d:a6:70:74:6b:e8:15:93:07:aa:2c:ec:3b: cd:3a:1f:4d:0c:4e:87:54:9e:4f:23:33:a6:ed:d2:68:0b:e3: db:40:4f:dd:df:54:3d:9e:5c:64:26:f7:7c:8f:9f:37:96:18: fc:74:d3:6a:e2:7e:37:81:71:d6:6c:24:38:ff:b6:ca:a7:e6: 7e:f4:a2:a4:dc:de:ab:39:1e:98:2e:84:24:b7:19:1a:59:a3: d3:49:db:02:4e:e7:0b:39:97:cf:18:eb:87:dd:2a:17:73:f1: ec:6f:ef:2e:25:9a:cb:6d:95:45:72:26:f2:d5:77:48:61:2a: 68:e7:c5:f9:f5:ec:ae:72:c0:9c:28:4a:57:5e:17:22:7a:b1: c6:b0:dd:b6:44:52:19:23:63:6a:35:5b:77:f5:12:39:4b:1f: 72:28:7f:3c:da:50:f0:8c:34:ae:34:5c:a3:9c:f5:00:24:8c: 1f:04:b6:06:ed:6c:46:53:db:31:43:8c:5f:ca:99:3d:63:37: 54:89:2e:65:3a:5a:3b:73:90:11:03:1f:7b:ca:87:b5:f2:3f: 77:87:c0:2b:3a:08:a9:51:b7:2e:e1:17:98:40:b0:63:db:25: 47:07:41:26:7a:0c:cd:58:e5:c7:46:32:41:9f:c5:91:f0:ab: 94:7c:cf:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNjAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlmOS1hMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4yxBSX6btIVlLBe2k4dI/TwAJEO/3LfCw3TmDW5dgCEp/pgFAMyaJjioQOY hhLQsOdaIzbTWsAPuAVFBJTAPMdq6cxEtjR4UbFvaHoRkTueEOQm4I+tZatMxgDb WRVtcxBhMNezRNUMhcKDsIFDDdeY+aRNkQutAe1bN6C9HiI9eO+bGDrElJk+iMw3 zlwTW6StPscnCDpRZ8cvqKOKmts12li+3C0M4jqnSQFWkzSoYM+Q2ACibh3cfpuy I14SmtsE8AwZ1o/GE2bSKleX5+CZ8T48Xi6GXRQDaFOXeMMr9nC9ls3ljL7zEqD9 wa3zwciL13QycFLHbxHmH69xeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH5U0bH8 /693KQsIqzRg5QGxvwlKMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzcwNTJEQzZE RjZDMTFFQ0I0QjlCMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAb/vwwDQYJKoZIhvcNAQELBQADggEBAFjUo5p2baZwdGvo FZMHqizsO806H00MTodUnk8jM6bt0mgL49tAT93fVD2eXGQm93yPnzeWGPx002ri fjeBcdZsJDj/tsqn5n70oqTc3qs5HpguhCS3GRpZo9NJ2wJO5ws5l88Y64fdKhdz 8exv7y4lmsttlUVyJvLVd0hhKmjnxfn17K5ywJwoSldeFyJ6scaw3bZEUhkjY2o1 W3f1EjlLH3IofzzaUPCMNK40XKOc9QAkjB8EtgbtbEZT2zFDjF/KmT1jN1SJLmU6 WjtzkBEDH3vKh7XyP3eHwCs6CKlRty7hF5hAsGPbJUcHQSZ6DM1Y5cdGMkGfxZHw q5R8z8Q= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:33 2025 by rpki-client