$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa File: 3CD29BF4D46911EE8B36431CC4F9AE02.roa (raw, json) Hash identifier: hJLGe+zYrwYxwpdQvFaS8hi/p8W1GhibzXeCk3G6BNI= Subject key identifier: 20:B8:69:B4:90:71:9B:D3:BD:84:7D:F6:D9:A5:D4:B0:A5:38:CD:A5 Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 083C Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:44:34 +0000 ROA not before: Fri 06 Jun 2025 21:41:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23879 IP address blocks: 27.123.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:41:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45ee2-5319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:58:dd:f8:91:c1:c3:b5:8f:a3:47:ca:4a:00: a8:01:33:82:7f:51:61:86:e6:a7:db:c4:38:4b:d2: 03:49:cf:78:37:ca:ec:37:8a:40:28:cf:a5:03:1d: 56:25:44:71:ab:66:60:9c:cc:3f:c6:69:eb:eb:d1: ed:f2:c1:dd:f8:5a:e7:9b:60:05:63:ea:b0:be:f1: 27:ac:5d:51:9d:d9:2d:c3:9f:c0:50:18:fa:69:22: a1:14:50:80:de:ab:fb:ac:52:f0:b3:84:8d:2b:06: be:69:4d:3e:76:42:3c:5c:aa:46:45:82:5b:31:76: b7:43:59:21:d1:51:bd:dc:c1:82:6c:56:29:39:b0: 4b:b1:90:f5:6c:e5:09:8e:2d:9c:37:01:76:28:ff: d5:37:4f:ce:6c:39:55:77:60:fc:a1:1f:5f:a7:66: 13:61:99:05:7c:8b:5d:da:bb:87:36:1a:ec:d0:c3: c1:be:09:83:d9:fb:ab:b5:a4:dc:27:15:21:0b:27: 7d:52:63:51:95:07:e5:b6:a1:11:37:ad:3e:ea:63: d7:d1:8c:19:ac:c1:b7:50:67:2e:9e:f5:3c:bb:66: f9:8f:5b:7d:84:ef:0e:cb:10:46:da:a6:24:be:f5: eb:87:b8:a0:e7:83:24:2c:ad:e4:de:a8:4f:12:83: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B8:69:B4:90:71:9B:D3:BD:84:7D:F6:D9:A5:D4:B0:A5:38:CD:A5 X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/3CD29BF4D46911EE8B36431CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.123.42.0/24 Signature Algorithm: sha256WithRSAEncryption b1:7d:0e:47:ef:c4:e8:b2:f2:e6:da:0a:ad:71:4f:27:5a:11: 31:2c:07:f6:ad:b4:81:79:a8:aa:79:f7:d1:51:b6:4e:73:c9: a7:e4:dd:10:2e:d4:c2:ee:df:8d:29:99:40:e6:7b:5c:b2:d0: b7:f0:ab:87:e4:30:4a:7f:15:f6:87:55:0d:ef:c2:17:89:93: 83:1b:af:5d:d8:16:ee:1a:9c:f0:35:e8:ba:e0:3f:0e:37:51: b7:c8:4e:1b:e0:47:c1:d2:94:8b:05:4d:15:57:f9:7a:26:6a: c8:59:19:dc:63:60:24:e4:42:ea:08:f2:0b:0a:85:d4:4e:cc: f5:76:7c:a5:81:c3:6d:f6:fd:87:ac:3c:a8:a6:34:fe:ad:fb: fd:2f:ac:f0:b3:f2:89:55:75:1c:7f:58:9c:72:8d:4b:d1:f7: fc:7a:00:c7:64:96:51:9b:82:f5:02:4d:81:c3:3b:37:76:72: b2:5f:c1:8d:9f:6d:c4:7e:53:dd:7d:f6:b3:f9:a2:89:2c:68: cb:d9:e5:71:29:54:51:06:c4:4d:98:cb:ea:d6:cf:7a:11:4f: 24:f7:70:ac:1f:c1:22:56:34:b2:1b:a6:19:3c:a9:2f:a9:86: 4e:ea:17:e4:db:fa:83:74:a9:ce:2a:c5:8c:a6:40:a7:1c:1e: e4:41:85:c2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjUwNjA2MjE0MTAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWVlMi01MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuljd+JHBw7WPo0fKSgCoATOCf1Fhhuan28Q4S9IDSc94N8rsN4pAKM+lAx1W JURxq2ZgnMw/xmnr69Ht8sHd+Frnm2AFY+qwvvEnrF1Rndktw5/AUBj6aSKhFFCA 3qv7rFLws4SNKwa+aU0+dkI8XKpGRYJbMXa3Q1kh0VG93MGCbFYpObBLsZD1bOUJ ji2cNwF2KP/VN0/ObDlVd2D8oR9fp2YTYZkFfItd2ruHNhrs0MPBvgmD2furtaTc JxUhCyd9UmNRlQfltqERN60+6mPX0YwZrMG3UGcunvU8u2b5j1t9hO8OyxBG2qYk vvXrh7ig54MkLK3k3qhPEoPwQwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCC4abSQ cZvTvYR99tml1LClOM2lMB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvM0NEMjlCRjRE NDY5MTFFRThCMzY0MzFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAG3sqMA0GCSqGSIb3DQEBCwUAA4IBAQCxfQ5H78TosvLm2gqtcU8n WhExLAf2rbSBeaiqeffRUbZOc8mn5N0QLtTC7t+NKZlA5ntcstC38KuH5DBKfxX2 h1UN78IXiZODG69d2BbuGpzwNei64D8ON1G3yE4b4EfB0pSLBU0VV/l6JmrIWRnc Y2Ak5ELqCPILCoXUTsz1dnylgcNt9v2HrDyopjT+rfv9L6zws/KJVXUcf1icco1L 0ff8egDHZJZRm4L1Ak2Bwzs3dnKyX8GNn23EflPdffaz+aKJLGjL2eVxKVRRBsRN mMvq1s96EU8k93CsH8EiVjSyG6YZPKkvqYZO6hfk2/qDdKnOKsWMpkCnHB7kQYXC -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:53 2026 by rpki-client