$ rpki-client -vvf rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/B240CFC23F8A11F0B3F03A67C4F9AE02.roa File: B240CFC23F8A11F0B3F03A67C4F9AE02.roa (raw, json) Hash identifier: sM8LsbsoEf9GFMasQUHdxFdj0W4Z3+oN5Sb3It4tBgc= Subject key identifier: 5A:95:BC:08:97:96:F0:F1:D4:21:AC:EF:48:3D:30:3D:9F:13:3D:E5 Certificate issuer: /CN=A91426E8/serialNumber=F3718957050C4BCE14A4EC38EAACEE9C74244C4F Certificate serial: 04 Authority key identifier: F3:71:89:57:05:0C:4B:CE:14:A4:EC:38:EA:AC:EE:9C:74:24:4C:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/B240CFC23F8A11F0B3F03A67C4F9AE02.roa Signing time: Mon 02 Jun 2025 08:22:18 +0000 ROA not before: Mon 02 Jun 2025 08:22:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132504 IP address blocks: 223.27.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.crl rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91426E8, serialNumber=F3718957050C4BCE14A4EC38EAACEE9C74244C4F Validity Not Before: Jun 2 08:22:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683d5f3a-9ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4d:db:a6:dc:f6:aa:69:31:8d:3b:28:24:32: 99:5f:5a:d2:0c:b1:e2:4d:a4:f4:7c:89:5f:b9:aa: af:63:53:42:62:b3:3a:0d:f3:bd:81:34:19:6b:13: 16:65:89:77:d2:fb:7f:40:69:29:4d:70:f4:c0:c2: a6:3f:23:e7:81:e9:7c:21:67:a8:ae:e7:48:0c:ea: 04:d4:39:b5:b1:02:60:fe:ce:71:74:8b:b7:db:65: d8:98:b4:a1:99:a0:bd:eb:bb:ec:e4:a3:ef:4b:fd: 5c:a1:af:b3:ac:68:94:1d:03:51:de:dc:6d:d8:39: 62:2a:ce:78:ef:d4:45:4b:22:3d:ea:d4:ce:16:e5: 5b:e3:97:90:b0:bf:c7:87:55:4e:fd:17:9c:5a:23: 1c:a7:68:a2:70:63:01:6c:70:18:fb:ee:d8:21:22: aa:09:c8:df:0e:ae:c0:32:a6:ba:03:a4:72:18:1f: bd:d2:21:9a:c2:60:63:dc:bd:b7:91:05:8c:2d:d0: c6:5d:0e:5c:21:ed:a2:d4:95:a0:dc:d7:ad:ea:0a: 9d:ea:74:41:18:9f:f2:27:e0:49:8b:1f:38:19:1f: bb:dd:36:98:78:8b:90:0a:04:cd:48:3a:58:8a:c0: 71:2b:c8:5e:b1:ef:b0:53:c3:ae:9d:a5:eb:f9:c9: e5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:95:BC:08:97:96:F0:F1:D4:21:AC:EF:48:3D:30:3D:9F:13:3D:E5 X509v3 Authority Key Identifier: keyid:F3:71:89:57:05:0C:4B:CE:14:A4:EC:38:EA:AC:EE:9C:74:24:4C:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/B240CFC23F8A11F0B3F03A67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.27.118.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:ff:9e:ec:7c:01:a4:23:3f:20:3c:d6:af:8c:88:1c:85:bc: 92:bd:c5:1b:70:94:05:1d:99:78:8e:43:72:a7:85:ca:d9:c8: 74:59:34:ba:d5:5a:39:6b:d8:93:50:d4:53:37:fc:76:b3:61: 5a:f5:2f:85:50:50:c2:c5:eb:5b:91:93:d6:a5:bd:4a:b6:17: 52:70:c2:d3:2c:82:ed:54:07:c3:3f:c7:4b:07:3b:bf:c1:35: 5f:7f:09:aa:6c:49:9a:9f:ca:9d:f9:44:27:b8:1b:3f:12:bd: ce:88:53:3f:fa:27:bb:84:80:89:a4:01:5b:e4:91:4f:a0:ef: 98:5e:3f:a9:6b:aa:52:78:7a:6e:78:1c:20:1a:00:ad:33:df: 1d:d7:64:1d:24:ed:7b:3f:28:23:25:98:72:7b:a9:7a:c3:fd: c6:36:56:29:f0:3e:71:43:01:38:d3:cb:f2:09:1f:f0:a5:af: f9:9c:f2:d3:ef:52:9f:7f:d8:81:69:a8:7f:af:0e:db:6d:14: 4c:0f:08:b3:59:60:4e:4d:c3:85:02:10:fd:fc:59:02:bd:7a: 95:44:95:54:72:a4:19:88:28:e7:47:03:87:20:3a:cf:ed:92: 07:82:8b:7e:25:3b:89:2d:61:24:95:ab:81:17:c2:18:3f:51: f3:05:a8:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjZFODExMC8GA1UEBRMoRjM3MTg5NTcwNTBDNEJDRTE0QTRFQzM4RUFBQ0VFOUM3 NDI0NEM0RjAeFw0yNTA2MDIwODIyMThaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2Q1ZjNhLTllY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVTdum3PaqaTGNOygkMplfWtIMseJNpPR8iV+5qq9jU0JiszoN872BNBlrExZl iXfS+39AaSlNcPTAwqY/I+eB6XwhZ6iu50gM6gTUObWxAmD+znF0i7fbZdiYtKGZ oL3ru+zko+9L/Vyhr7OsaJQdA1He3G3YOWIqznjv1EVLIj3q1M4W5Vvjl5Cwv8eH VU79F5xaIxynaKJwYwFscBj77tghIqoJyN8OrsAyproDpHIYH73SIZrCYGPcvbeR BYwt0MZdDlwh7aLUlaDc163qCp3qdEEYn/In4EmLHzgZH7vdNph4i5AKBM1IOliK wHEryF6x77BTw66dpev5yeX7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWpW8CJeW 8PHUIazvSD0wPZ8TPeUwHwYDVR0jBBgwFoAU83GJVwUMS84UpOw46qzunHQkTE8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNkU4LzhENUFBMTdBM0Y3 NTExRjA5NjIzMkExMUM0RjlBRTAyLzgzR0pWd1VNUzg0VXBPdzQ2cXp1bkhRa1RF OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNHSlZ3VU1TODRVcE93NDZxenVuSFFrVEU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjZFOC84RDVBQTE3QTNGNzUxMUYwOTYyMzJBMTFDNEY5QUUwMi9CMjQwQ0ZDMjNG OEExMUYwQjNGMDNBNjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAd8bdjANBgkqhkiG9w0BAQsFAAOCAQEAPf+e7HwBpCM/IDzW r4yIHIW8kr3FG3CUBR2ZeI5DcqeFytnIdFk0utVaOWvYk1DUUzf8drNhWvUvhVBQ wsXrW5GT1qW9SrYXUnDC0yyC7VQHwz/HSwc7v8E1X38JqmxJmp/KnflEJ7gbPxK9 zohTP/onu4SAiaQBW+SRT6DvmF4/qWuqUnh6bngcIBoArTPfHddkHSTtez8oIyWY cnupesP9xjZWKfA+cUMBONPL8gkf8KWv+Zzy0+9Sn3/YgWmof68O220UTA8Is1lg Tk3DhQIQ/fxZAr16lUSVVHKkGYgo50cDhyA6z+2SB4KLfiU7iS1hJJWrgRfCGD9R 8wWobg== -----END CERTIFICATE-----Generated at Sat Jun 14 20:56:27 2025 by rpki-client