$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/68DAAA1A749711EFB4EDA45FC4F9AE02.roa File: 68DAAA1A749711EFB4EDA45FC4F9AE02.roa (raw, json) Hash identifier: lqYCCMlU2p+r8Vr8oCvHriQYj28R9n24bUWS9AQiTY0= Subject key identifier: FF:10:E8:4D:9F:1C:C2:FA:D2:C1:5B:7B:EB:CE:ED:2A:04:16:9F:13 Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 07AB Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/68DAAA1A749711EFB4EDA45FC4F9AE02.roa Signing time: Fri 06 Jun 2025 21:41:00 +0000 ROA not before: Fri 06 Jun 2025 21:41:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10310 IP address blocks: 27.123.33.0/24 maxlen: 24 27.123.34.0/23 maxlen: 23 183.177.76.0/22 maxlen: 22 202.43.216.0/23 maxlen: 23 202.43.216.0/24 maxlen: 24 202.43.216.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:41:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843606c-aaa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:6d:cd:76:3c:58:1a:32:5f:49:68:1a:a9: 7e:d5:db:a5:af:58:4a:07:3c:08:5a:73:62:37:cd: 39:5a:9c:97:1d:dc:8d:3b:24:6d:68:51:1c:e8:44: 34:6c:47:a2:9f:f0:0c:19:c5:20:6c:a9:d0:e6:84: ee:0d:d4:ec:be:34:fb:4b:70:2a:76:ec:b0:bf:c4: 64:cc:b5:3f:a2:58:04:9d:7c:8e:7c:eb:4c:0a:e6: c9:00:60:e0:ed:70:de:01:68:61:8c:fb:2c:1e:e4: 5f:28:2e:84:24:27:c6:65:e0:54:b5:c2:de:e4:f6: 3c:27:f6:07:f0:7a:15:27:58:4c:98:50:8b:ae:42: 00:2b:7c:0b:2b:ae:34:89:36:6e:f4:05:e4:37:48: 5c:ef:e6:66:21:d8:14:ba:f0:a1:8c:df:87:86:79: c3:e7:34:47:3d:f4:98:0b:33:c5:4b:9a:50:c2:79: 46:2a:00:db:64:1b:64:d2:16:fe:29:42:18:76:82: 34:5e:76:b8:32:dc:db:cb:54:e4:9a:66:23:ed:96: c0:a8:dd:29:5d:f6:85:b0:48:45:c0:99:49:6e:31: 33:ce:9c:9d:34:94:46:ec:3f:6f:a8:49:f6:13:8b: 57:a1:53:86:2e:4b:bc:31:2c:9b:36:d9:bb:57:4e: 3f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:10:E8:4D:9F:1C:C2:FA:D2:C1:5B:7B:EB:CE:ED:2A:04:16:9F:13 X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/68DAAA1A749711EFB4EDA45FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.33.0-27.123.35.255 183.177.76.0/22 202.43.216.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:ad:d4:9a:dd:1c:e9:3b:15:5d:d5:79:2c:ba:df:8e:19:79: c7:9d:b9:d2:b3:97:09:0d:df:00:3e:33:cf:b7:e4:4e:6b:7c: 5b:81:72:93:28:11:f5:0b:e0:9c:53:bc:49:f9:9c:b4:09:dd: 9d:33:17:61:33:7f:b1:a1:a5:8e:55:ae:c7:a5:77:4d:e1:c8: 04:03:66:be:de:9b:f9:4f:15:ff:03:de:26:5f:03:cc:5c:86: 07:51:79:44:dd:aa:69:67:dd:db:ac:8d:9d:6a:63:05:2f:5e: 76:12:6e:91:25:97:21:cb:dd:9b:ed:19:f4:c4:9b:ce:97:c0: c9:db:66:8e:e6:14:21:c3:40:32:58:d0:56:d9:cd:5d:85:95: 0c:ab:74:4b:71:47:16:00:e5:36:ac:cd:e0:4f:ab:5c:b1:f6: c1:7d:e5:2f:cc:2f:0b:e2:c4:2e:40:fc:3a:ed:69:cc:04:48: 7f:28:db:11:34:b3:2b:57:c8:ba:4a:6f:e7:f6:5e:b4:5f:52: cc:8a:1f:20:dd:d0:34:37:75:d8:86:26:da:fa:38:b7:90:8b: b0:09:c7:3d:f5:d5:f0:00:d3:ee:fd:be:a2:9e:96:5b:f9:bb: 2d:61:45:fb:0c:a4:ec:c6:c2:b0:05:13:79:2a:90:5b:e8:0a: ae:66:f8:8d -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjUwNjA2MjE0MTAwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzNjA2Yy1hYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOdtzXY8WBoyX0loGql+1dulr1hKBzwIWnNiN805WpyXHdyNOyRtaFEc6EQ0 bEein/AMGcUgbKnQ5oTuDdTsvjT7S3Aqduywv8RkzLU/olgEnXyOfOtMCubJAGDg 7XDeAWhhjPssHuRfKC6EJCfGZeBUtcLe5PY8J/YH8HoVJ1hMmFCLrkIAK3wLK640 iTZu9AXkN0hc7+ZmIdgUuvChjN+HhnnD5zRHPfSYCzPFS5pQwnlGKgDbZBtk0hb+ KUIYdoI0Xna4Mtzby1TkmmYj7ZbAqN0pXfaFsEhFwJlJbjEzzpydNJRG7D9vqEn2 E4tXoVOGLku8MSybNtm7V04/5wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFP8Q6E2f HML60sFbe+vO7SoEFp8TMB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvNjhEQUFBMUE3 NDk3MTFFRkI0RURBNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEABt7IQMEAht7IAMEArexTAMEAcor2DANBgkqhkiG9w0B AQsFAAOCAQEAiq3Umt0c6TsVXdV5LLrfjhl5x5250rOXCQ3fAD4zz7fkTmt8W4Fy kygR9QvgnFO8SfmctAndnTMXYTN/saGljlWux6V3TeHIBANmvt6b+U8V/wPeJl8D zFyGB1F5RN2qaWfd26yNnWpjBS9edhJukSWXIcvdm+0Z9MSbzpfAydtmjuYUIcNA MljQVtnNXYWVDKt0S3FHFgDlNqzN4E+rXLH2wX3lL8wvC+LELkD8Ou1pzARIfyjb ETSzK1fIukpv5/ZetF9SzIofIN3QNDd12IYm2vo4t5CLsAnHPfXV8ADT7v2+op6W W/m7LWFF+wyk7MbCsAUTeSqQW+gKrmb4jQ== -----END CERTIFICATE-----Generated at Tue Jun 17 01:32:15 2025 by rpki-client