$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/7F27A9D6C88211EBB7A6F948C4F9AE02.roa File: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (raw, json) Hash identifier: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU= Subject key identifier: 8B:1E:53:46:77:BA:AD:F8:1C:BF:F8:42:13:1B:49:67:BE:12:7F:4D Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 05B9 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/7F27A9D6C88211EBB7A6F948C4F9AE02.roa Signing time: Wed 04 Jun 2025 23:03:40 +0000 ROA not before: Wed 04 Jun 2025 23:03:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56270 IP address blocks: 203.1.8.0/24 maxlen: 24 203.1.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 23:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Jun 4 23:03:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840d0cc-7cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:01:eb:5e:67:84:52:74:36:3d:e2:50:e1:cd: f2:e1:83:b6:fb:27:97:03:c9:72:ae:08:21:6f:2a: cd:02:3a:ce:dd:af:f6:71:8c:52:75:4e:17:c3:39: 9b:c6:30:8f:35:1a:92:34:3e:ca:a2:c4:51:50:da: 51:23:53:a7:b0:3d:9f:a7:2a:7b:5e:82:09:28:d0: 6e:c3:22:bf:40:9d:b9:d3:97:3e:ed:86:2c:1d:33: b1:8b:23:6b:8a:2e:d0:7e:94:e1:48:1c:a3:38:46: 34:89:fe:97:29:6f:88:ae:73:5c:44:2f:90:63:60: b6:d2:92:7d:04:24:00:2e:20:c4:9e:c0:42:c0:e7: 50:37:24:d4:e7:45:e4:01:e3:80:fd:60:69:0c:db: 75:72:e7:c5:f5:74:73:80:44:a1:20:29:e4:e8:d7: 81:f8:bc:32:46:7f:f0:04:1a:0e:43:5d:24:dd:3c: fd:a4:42:30:17:fc:bd:0b:81:45:4f:2b:27:c6:5f: c4:a8:32:20:d0:e1:d5:c8:5f:c5:77:30:5b:cc:5e: 9b:7a:fa:8f:60:6e:c2:84:00:8d:ba:99:5c:ec:6a: 17:0f:bb:f2:12:b2:a5:82:f2:80:c5:a5:e4:fd:b7: 62:75:84:65:ca:7a:cf:d8:b6:6d:01:10:fa:0b:35: 81:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1E:53:46:77:BA:AD:F8:1C:BF:F8:42:13:1B:49:67:BE:12:7F:4D X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/7F27A9D6C88211EBB7A6F948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.1.8.0/23 Signature Algorithm: sha256WithRSAEncryption 02:7d:0d:4b:d5:d9:58:ff:e0:4c:e6:ee:fb:ee:cb:8c:a4:e0: f2:27:14:2c:23:51:83:8e:2f:6a:c0:6a:fd:c6:09:a6:41:82: 8d:53:3f:bc:10:70:73:7e:e5:84:45:37:15:e2:b3:30:99:01: 40:b2:8a:6b:83:47:35:21:f8:e2:a3:5a:e4:ad:d1:43:9a:f4: 18:fb:3c:b6:90:25:34:ab:6a:00:de:8a:f1:c7:32:81:f1:85: 5f:5d:ad:8b:fc:0a:24:99:e2:a4:40:0f:13:88:b5:83:f4:16: 8b:47:6a:f6:15:f7:2b:5f:54:9d:21:4d:44:14:d7:6f:fe:3c: 09:e2:01:12:bb:ca:b1:f9:26:e9:0d:6a:27:21:81:b5:09:10: e1:2e:6b:76:8f:dd:27:c8:c5:92:30:ee:17:db:c3:fc:a4:79: b7:92:4c:77:39:db:64:22:6e:06:c8:40:08:ee:c8:ae:5a:b3: cc:1e:47:21:69:39:dd:52:57:3e:5f:37:ee:de:1d:c2:2b:26: 47:20:e7:9a:12:b0:f0:d6:a9:24:67:50:9b:f0:08:47:39:dd: 5e:29:64:5e:68:68:92:07:81:1c:e3:1f:45:6a:46:4d:90:58: fb:fd:48:93:66:0d:49:85:8d:a3:60:6a:9b:28:8c:95:55:8a: b9:a7:7e:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUwNjA0MjMwMzQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZDBjYy03Y2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QHrXmeEUnQ2PeJQ4c3y4YO2+yeXA8lyrgghbyrNAjrO3a/2cYxSdU4Xwzmb xjCPNRqSND7KosRRUNpRI1OnsD2fpyp7XoIJKNBuwyK/QJ2505c+7YYsHTOxiyNr ii7QfpThSByjOEY0if6XKW+IrnNcRC+QY2C20pJ9BCQALiDEnsBCwOdQNyTU50Xk AeOA/WBpDNt1cufF9XRzgEShICnk6NeB+LwyRn/wBBoOQ10k3Tz9pEIwF/y9C4FF Tysnxl/EqDIg0OHVyF/FdzBbzF6bevqPYG7ChACNuplc7GoXD7vyErKlgvKAxaXk /bdidYRlynrP2LZtARD6CzWBcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIseU0Z3 uq34HL/4QhMbSWe+En9NMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxQjkvQ0RCNzAyRjZDODdCMTFFQkFGQTY5NTNCQzRGOUFFMDIvN0YyN0E5RDZD ODgyMTFFQkI3QTZGOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLAQgwDQYJKoZIhvcNAQELBQADggEBAAJ9DUvV2Vj/4Ezm 7vvuy4yk4PInFCwjUYOOL2rAav3GCaZBgo1TP7wQcHN+5YRFNxXiszCZAUCyimuD RzUh+OKjWuSt0UOa9Bj7PLaQJTSragDeivHHMoHxhV9drYv8CiSZ4qRADxOItYP0 FotHavYV9ytfVJ0hTUQU12/+PAniARK7yrH5JukNaichgbUJEOEua3aP3SfIxZIw 7hfbw/ykebeSTHc522QibgbIQAjuyK5as8weRyFpOd1SVz5fN+7eHcIrJkcg55oS sPDWqSRnUJvwCEc53V4pZF5oaJIHgRzjH0VqRk2QWPv9SJNmDUmFjaNgapsojJVV irmnfsk= -----END CERTIFICATE-----Generated at Thu Jun 12 17:10:18 2025 by rpki-client