$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa File: 03C06766DC1211EC80AE816DC4F9AE02.roa (raw, json) Hash identifier: Utn78ATYCOJD2s8KH2tHbQkxop0M2VDIkapS9+XLIf0= Subject key identifier: 87:66:47:E3:84:44:22:08:EA:54:B7:EB:A0:20:77:03:FD:36:07:5F Certificate issuer: /CN=A914C4ED/serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Certificate serial: 02FE Authority key identifier: 3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa Signing time: Sat 17 May 2025 01:36:54 +0000 ROA not before: Sat 17 May 2025 01:36:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 8220 IP address blocks: 27.110.0.0/20 maxlen: 20 27.110.16.0/22 maxlen: 22 2400:81e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Validity Not Before: May 17 01:36:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6827e836-32f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:df:ec:18:92:20:8f:73:9a:a5:95:36:16:35: 13:81:df:d3:fc:90:5b:bf:d5:87:bc:9e:2b:cc:1c: e4:ae:75:0f:02:17:0e:2f:7d:bf:76:52:53:6e:fb: 49:40:0d:5f:11:8f:41:55:7a:f7:b9:30:cf:fd:87: 5d:db:cf:40:0a:11:e0:9e:60:62:e1:7e:e1:55:8d: 69:38:27:a2:34:17:e4:45:9b:6d:cb:0b:f3:61:6a: a4:30:75:e8:29:20:a3:3c:75:a1:d7:9a:5a:b2:67: 1e:3f:55:2c:61:9f:54:16:40:a1:9f:3b:33:6c:85: 81:2e:9f:12:ca:d0:d6:6c:f3:74:6f:1d:8e:4e:37: 4c:3f:f7:5a:78:8e:dc:b0:2e:65:28:c6:26:a2:be: 0d:58:b8:01:7d:52:3b:72:fa:64:f7:36:95:9f:d7: bd:a6:98:14:f3:f1:b1:09:2d:b9:7f:25:dd:10:30: 60:c7:95:79:43:92:1b:38:3e:d1:68:95:fa:69:50: c0:96:bd:0c:8c:46:7b:5d:d9:41:19:59:b1:64:1c: f6:84:51:ed:d4:48:b5:dd:9a:ba:32:c2:04:4c:c7: 98:bf:d2:e5:33:54:25:67:93:03:f8:9f:df:3c:55: 4a:27:19:0c:ed:4e:d5:99:3b:eb:9c:57:a2:3e:d3: a8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:66:47:E3:84:44:22:08:EA:54:B7:EB:A0:20:77:03:FD:36:07:5F X509v3 Authority Key Identifier: keyid:3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/03C06766DC1211EC80AE816DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.0.0-27.110.19.255 IPv6: 2400:81e0::/32 Signature Algorithm: sha256WithRSAEncryption 41:1f:e7:0e:d8:1c:01:16:c9:08:d4:d4:8e:c9:e1:9e:fb:83: ee:a3:e0:c9:1a:de:8a:40:0d:a4:4f:cb:a5:f3:36:a8:75:db: ad:87:e6:ee:90:5e:c4:0d:56:07:d4:68:ba:42:4f:7b:23:02: 18:25:7e:fc:1d:94:eb:81:e8:2b:43:23:21:55:b3:14:5a:eb: dd:91:a3:41:df:87:2b:1f:23:da:89:bd:64:f9:ed:01:95:d6: 8b:5a:6a:1e:4d:1f:c0:3b:7b:53:e1:27:86:c2:8d:d4:3b:f4: 4c:09:16:eb:ba:e6:3c:95:63:1c:a3:f8:ee:fc:ae:ef:b6:20: 80:fb:aa:25:44:dc:db:52:8b:68:e3:d8:20:16:da:88:b8:9a: 33:c4:80:d9:11:c8:5d:2e:e8:67:e2:04:b1:3b:65:82:f4:3d: 16:f0:f3:ed:03:00:97:4f:c4:9f:d2:0f:44:01:e3:04:15:48: a3:d4:05:65:b9:71:c9:70:10:1a:39:59:d0:0f:16:40:26:cc: b7:4a:ab:1f:e6:d2:67:1a:44:39:84:a1:b3:ec:88:a7:3c:7b: 44:5e:27:1d:ce:2c:17:0e:d1:3d:d0:70:f7:82:63:f8:80:24: a9:9f:c7:89:f1:46:7a:1b:93:00:df:5d:8c:c1:3f:c5:e4:fd: f2:44:c9:c3 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKDNCM0Q2QkE5RkJFRjQyNEFGQUJGRDJCQTMwQzhCODU3 RDQ1OUYwOUMwHhcNMjUwNTE3MDEzNjU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZTgzNi0zMmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmN/sGJIgj3OapZU2FjUTgd/T/JBbv9WHvJ4rzBzkrnUPAhcOL32/dlJTbvtJ QA1fEY9BVXr3uTDP/Ydd289AChHgnmBi4X7hVY1pOCeiNBfkRZttywvzYWqkMHXo KSCjPHWh15pasmceP1UsYZ9UFkChnzszbIWBLp8SytDWbPN0bx2OTjdMP/daeI7c sC5lKMYmor4NWLgBfVI7cvpk9zaVn9e9ppgU8/GxCS25fyXdEDBgx5V5Q5IbOD7R aJX6aVDAlr0MjEZ7XdlBGVmxZBz2hFHt1Ei13Zq6MsIETMeYv9LlM1QlZ5MD+J/f PFVKJxkM7U7VmTvrnFeiPtOoGwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFIdmR+OE RCII6lS366AgdwP9NgdfMB8GA1UdIwQYMBaAFDs9a6n770JK+r/SujDIuFfUWfCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC9CMzVFQjUwQ0RC RjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFrcjZ2OUs2TU1pNFY5Ulo4 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL096MXJxZnZ2UWtyNnY5SzZNTWk0VjlSWjhKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RUQvQjM1RUI1MENEQkY4MTFFQzkzMjQwRTVEQzRGOUFFMDIvMDNDMDY3NjZE QzEyMTFFQzgwQUU4MTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBMEAgABMA0wCwMDARtuAwQCG24QMA0EAgACMAcDBQAkAIHgMA0GCSqGSIb3 DQEBCwUAA4IBAQBBH+cO2BwBFskI1NSOyeGe+4Puo+DJGt6KQA2kT8ul8zaoddut h+bukF7EDVYH1Gi6Qk97IwIYJX78HZTrgegrQyMhVbMUWuvdkaNB34crHyPaib1k +e0BldaLWmoeTR/AO3tT4SeGwo3UO/RMCRbruuY8lWMco/ju/K7vtiCA+6olRNzb Uoto49ggFtqIuJozxIDZEchdLuhn4gSxO2WC9D0W8PPtAwCXT8Sf0g9EAeMEFUij 1AVluXHJcBAaOVnQDxZAJsy3Sqsf5tJnGkQ5hKGz7IinPHtEXicdziwXDtE90HD3 gmP4gCSpn8eJ8UZ6G5MA312MwT/F5P3yRMnD -----END CERTIFICATE-----Generated at Mon Jun 2 06:32:03 2025 by rpki-client