$ rpki-client -vvf rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa File: DE0EF67CB0F811E595E0F761C4F9AE02.roa (raw, json) Hash identifier: UqX9c9LLoIvVH1794mXP6T0vE+zC8ZKzhsccgA6TkpI= Subject key identifier: 9A:54:C8:31:FE:2E:D5:9D:70:A1:AC:9A:BF:F9:2B:AA:BB:5F:51:5B Certificate issuer: /CN=A91474C3/serialNumber=F3FEF462A4D8E2F7FA0735A6AB645EE5635DA8F2 Certificate serial: 34E7 Authority key identifier: F3:FE:F4:62:A4:D8:E2:F7:FA:07:35:A6:AB:64:5E:E5:63:5D:A8:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa Signing time: Thu 10 Apr 2025 14:50:14 +0000 ROA not before: Thu 10 Apr 2025 14:50:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9535 IP address blocks: 27.50.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.crl rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91474C3, serialNumber=F3FEF462A4D8E2F7FA0735A6AB645EE5635DA8F2 Validity Not Before: Apr 10 14:50:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f7daa6-9dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2e:aa:62:58:eb:60:35:e0:1f:53:e8:71:05: 4a:b9:a8:91:1d:6e:fd:d5:b0:d4:be:ff:77:bb:4b: f2:78:c3:39:6a:86:56:72:74:d2:5a:ef:49:dc:cb: 08:e4:13:0c:d8:8e:a9:1b:5c:b8:0e:77:62:94:67: d5:d9:21:7d:cf:a9:fb:fc:38:57:2e:f5:33:e6:de: ef:b9:bc:2b:9c:cb:fd:50:69:9f:33:b2:1f:96:c1: cd:82:ea:fb:84:ba:cf:14:70:c8:52:8e:64:fc:6a: ac:b2:a7:12:cc:47:96:c1:38:81:97:fc:03:59:3a: 13:56:0b:46:f7:d3:f7:2f:86:0d:93:4e:a7:c9:76: da:74:74:40:ff:5a:27:74:2f:bc:4a:b3:34:82:cf: 6e:f8:26:b3:94:5c:83:ef:b2:74:01:f0:07:02:10: b5:bd:ff:8b:02:bb:29:70:2f:29:df:3a:ae:08:34: 1f:38:47:2f:ef:78:66:29:a3:82:af:99:69:2b:c7: 91:52:3a:29:f5:5b:39:84:61:97:6c:c8:9b:a1:eb: b5:3e:6a:22:9d:da:41:2b:8f:ac:fe:67:da:62:78: b1:25:a5:7b:df:e4:35:f5:47:d1:a5:87:cd:9c:10: 69:88:24:c2:1e:8a:98:bd:57:ab:1a:a6:0a:d8:31: 77:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:54:C8:31:FE:2E:D5:9D:70:A1:AC:9A:BF:F9:2B:AA:BB:5F:51:5B X509v3 Authority Key Identifier: keyid:F3:FE:F4:62:A4:D8:E2:F7:FA:07:35:A6:AB:64:5E:E5:63:5D:A8:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.50.36.0/24 Signature Algorithm: sha256WithRSAEncryption 09:09:69:b1:b0:37:af:4f:69:28:6e:30:fb:68:3b:82:f9:bc: 71:71:85:38:b4:a4:76:29:33:fe:5f:80:e7:71:57:ae:ef:af: ba:de:34:cf:3f:ff:46:be:5a:4d:02:31:e8:fc:fc:f7:06:39: c7:84:87:6b:84:08:ac:4a:31:59:ff:9b:05:8b:ca:2b:4f:88: ab:3b:19:2f:50:52:a2:43:e0:19:e8:01:f1:27:1c:ab:aa:01: 11:88:3f:20:f2:7a:14:4b:4c:b6:c2:20:ee:0f:df:95:51:d9: 1d:51:3a:cc:90:93:53:42:2a:1e:9c:df:2e:ee:61:77:e1:90: 61:e7:f8:a4:dd:48:53:8f:ae:7e:e9:22:d6:a2:07:b6:61:01: 70:d6:5d:3f:d0:b6:75:42:0f:70:6f:3f:01:68:c5:30:c4:33: d2:05:25:64:24:6c:50:91:fc:d6:f0:a9:0c:89:33:9b:54:f9: 0f:70:ca:e4:44:97:13:f9:6a:90:ed:d1:12:7d:09:ad:08:6f: 70:bc:66:de:c0:17:36:0f:86:ac:6d:32:1f:ee:99:da:b9:ff: 8f:eb:7d:ab:0a:0c:6d:bb:9a:49:1b:f5:89:56:bf:f1:35:34: 9f:06:f1:43:b6:2e:61:c9:5e:33:2e:99:ea:32:44:20:95:f9: ff:02:9a:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0QzMxMTAvBgNVBAUTKEYzRkVGNDYyQTREOEUyRjdGQTA3MzVBNkFCNjQ1RUU1 NjM1REE4RjIwHhcNMjUwNDEwMTQ1MDE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3ZGFhNi05ZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC6qYljrYDXgH1PocQVKuaiRHW791bDUvv93u0vyeMM5aoZWcnTSWu9J3MsI 5BMM2I6pG1y4DndilGfV2SF9z6n7/DhXLvUz5t7vubwrnMv9UGmfM7IflsHNgur7 hLrPFHDIUo5k/GqssqcSzEeWwTiBl/wDWToTVgtG99P3L4YNk06nyXbadHRA/1on dC+8SrM0gs9u+CazlFyD77J0AfAHAhC1vf+LArspcC8p3zquCDQfOEcv73hmKaOC r5lpK8eRUjop9Vs5hGGXbMiboeu1PmoindpBK4+s/mfaYnixJaV73+Q19UfRpYfN nBBpiCTCHoqYvVerGqYK2DF3YQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJpUyDH+ LtWdcKGsmr/5K6q7X1FbMB8GA1UdIwQYMBaAFPP+9GKk2OL3+gc1pqtkXuVjXajy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzRDMy82RjhCNTJBMDFE NzAxMUUyQkMxMURBQjQwOEIwMkNEMi84XzcwWXFUWTR2ZjZCeldtcTJSZTVXTmRx UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhfNzBZcVRZNHZmNkJ6V21xMlJlNVdOZHFQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0QzMvNkY4QjUyQTAxRDcwMTFFMkJDMTFEQUI0MDhCMDJDRDIvREUwRUY2N0NC MEY4MTFFNTk1RTBGNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbMiQwDQYJKoZIhvcNAQELBQADggEBAAkJabGwN69PaShu MPtoO4L5vHFxhTi0pHYpM/5fgOdxV67vr7reNM8//0a+Wk0CMej8/PcGOceEh2uE CKxKMVn/mwWLyitPiKs7GS9QUqJD4BnoAfEnHKuqARGIPyDyehRLTLbCIO4P35VR 2R1ROsyQk1NCKh6c3y7uYXfhkGHn+KTdSFOPrn7pItaiB7ZhAXDWXT/QtnVCD3Bv PwFoxTDEM9IFJWQkbFCR/NbwqQyJM5tU+Q9wyuRElxP5apDt0RJ9Ca0Ib3C8Zt7A FzYPhqxtMh/umdq5/4/rfasKDG27mkkb9YlWv/E1NJ8G8UO2LmHJXjMumeoyRCCV +f8Cmk8= -----END CERTIFICATE-----Generated at Sat Apr 26 08:23:12 2025 by rpki-client