$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa File: 3CD29BF4D46911EE8B36431CC4F9AE02.roa (raw, json) Hash identifier: eRh3STMZAaCuqDqQZCMcnNT2rNeo5Bk/5FuTVp0jQRg= Subject key identifier: 41:E3:38:B9:D2:92:6B:FC:DB:1D:82:77:3E:63:90:6D:A6:27:FC:D5 Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 07AC Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa Signing time: Fri 06 Jun 2025 21:41:01 +0000 ROA not before: Fri 06 Jun 2025 21:41:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23879 IP address blocks: 27.123.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:41:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843606d-7538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:62:a7:e4:49:db:73:f0:29:c8:f3:bc:62:b0: dc:e2:01:e0:5e:33:8a:dc:5f:8a:94:21:24:d7:09: 08:e2:d2:99:d4:d9:f4:34:61:55:94:09:69:58:76: 6c:2d:46:a8:22:71:e8:15:7c:4f:4d:34:e2:00:15: 39:7d:9d:3f:a1:a9:ca:6e:9a:4b:60:3c:23:52:21: 2b:ae:7d:bd:bd:c3:ad:25:90:8f:3f:05:20:77:a4: 26:0a:16:9c:7b:3d:9d:48:25:9d:09:ab:7f:5f:cb: 3f:50:04:c0:b5:6a:2c:23:a5:2c:d6:08:03:65:c9: f5:22:54:86:69:96:99:a8:95:a8:d1:c4:49:fe:69: 62:e8:cb:ce:2f:24:60:23:ca:a3:70:b7:9a:22:0f: c9:38:98:0c:80:90:36:6b:7b:22:97:0d:5a:1c:35: 85:67:45:d3:20:52:30:73:29:4a:33:41:24:53:e4: 30:01:2e:65:73:a6:ed:6f:d8:36:86:3a:f4:19:d6: aa:0f:b8:62:37:92:56:c8:ce:90:ca:3d:8c:c0:f0: db:1b:19:9b:2e:1d:7e:08:eb:f9:57:b5:95:a7:61: 8d:6d:5b:4a:1d:be:88:1b:ac:9a:71:3f:88:40:44: 2a:f8:51:34:a1:36:87:b4:5d:25:7b:7c:e4:31:2e: 04:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E3:38:B9:D2:92:6B:FC:DB:1D:82:77:3E:63:90:6D:A6:27:FC:D5 X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.42.0/24 Signature Algorithm: sha256WithRSAEncryption 83:1e:86:38:0b:7b:8c:e4:be:d4:a2:5d:37:ba:69:3c:44:b0: 39:57:24:bc:ef:c7:92:f1:8b:10:ce:87:0e:fd:04:c1:4d:78: 42:34:da:31:66:24:5e:59:3c:66:64:2b:7a:6c:31:04:59:e2: eb:c6:e9:ac:aa:f1:53:c7:79:46:99:b9:d8:f1:0a:ec:ff:98: 02:01:a5:99:03:98:50:0b:0d:53:11:f3:b5:59:62:b6:d8:62: c3:8b:80:42:10:dc:7e:24:c6:4c:89:87:d1:28:b3:80:dc:0a: 39:a7:35:d7:7e:d3:93:f8:6d:56:1b:e1:36:4a:77:60:e9:f8: fa:2e:93:44:ae:11:af:5a:31:82:ab:1f:b4:7e:09:5c:a7:b1: 4f:c9:0f:53:33:2e:d4:a2:10:7b:29:28:26:58:68:8b:2c:2a: 09:af:3f:fd:64:be:15:3d:b6:ce:a6:1c:a4:ab:e1:4f:ca:24: 2f:af:cc:9e:97:92:d5:35:a0:41:9d:4f:4b:4e:01:4e:a8:3f: 90:5f:96:f4:e0:9d:16:0d:70:8f:36:dd:79:ad:55:16:0a:2d: 62:14:20:d3:46:ee:e2:ac:67:db:a1:e8:33:2c:03:4e:fa:48: 40:b5:b5:2c:30:d4:a6:59:e9:e9:65:05:2a:5f:b4:01:d0:58: 55:97:5f:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjUwNjA2MjE0MTAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzNjA2ZC03NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2Kn5Enbc/ApyPO8YrDc4gHgXjOK3F+KlCEk1wkI4tKZ1Nn0NGFVlAlpWHZs LUaoInHoFXxPTTTiABU5fZ0/oanKbppLYDwjUiErrn29vcOtJZCPPwUgd6QmChac ez2dSCWdCat/X8s/UATAtWosI6Us1ggDZcn1IlSGaZaZqJWo0cRJ/mli6MvOLyRg I8qjcLeaIg/JOJgMgJA2a3silw1aHDWFZ0XTIFIwcylKM0EkU+QwAS5lc6btb9g2 hjr0GdaqD7hiN5JWyM6Qyj2MwPDbGxmbLh1+COv5V7WVp2GNbVtKHb6IG6yacT+I QEQq+FE0oTaHtF0le3zkMS4EdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHjOLnS kmv82x2Cdz5jkG2mJ/zVMB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvM0NEMjlCRjRE NDY5MTFFRThCMzY0MzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbeyowDQYJKoZIhvcNAQELBQADggEBAIMehjgLe4zkvtSi XTe6aTxEsDlXJLzvx5LxixDOhw79BMFNeEI02jFmJF5ZPGZkK3psMQRZ4uvG6ayq 8VPHeUaZudjxCuz/mAIBpZkDmFALDVMR87VZYrbYYsOLgEIQ3H4kxkyJh9Eos4Dc CjmnNdd+05P4bVYb4TZKd2Dp+Pouk0SuEa9aMYKrH7R+CVynsU/JD1MzLtSiEHsp KCZYaIssKgmvP/1kvhU9ts6mHKSr4U/KJC+vzJ6XktU1oEGdT0tOAU6oP5BflvTg nRYNcI823XmtVRYKLWIUINNG7uKsZ9uh6DMsA076SEC1tSww1KZZ6ellBSpftAHQ WFWXX9M= -----END CERTIFICATE-----Generated at Wed Jun 18 23:16:28 2025 by rpki-client