$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa File: 27A1A5A2174911EC896AD61BC4F9AE02.roa (raw, json) Hash identifier: 5NREv/7guHmK9QuLdFXX3blUCgKmaa/v+/K4YSsJKhM= Subject key identifier: B8:A9:6B:D3:0D:8B:E8:96:A0:1B:AA:D9:45:A5:F7:BC:D3:DC:77:03 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F8 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:27 +0000 ROA not before: Sun 03 Aug 2025 00:06:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17719 IP address blocks: 2405:9000:80::/48 maxlen: 48 2405:9000:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea802-fa73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8e:fd:bd:b3:c4:15:9b:b0:44:8f:24:ec:3d: bc:30:10:60:10:82:48:10:47:14:d1:cd:17:57:bc: 56:f4:12:99:ae:1e:78:3a:e1:e5:57:fa:48:2e:e5: 29:f8:08:65:40:a5:f0:39:08:37:65:cb:9f:ad:2e: 3c:20:c6:0e:a7:52:09:ad:c4:22:30:61:e0:d0:d8: e3:1f:92:28:02:3e:e8:17:65:4d:78:ce:2b:00:b5: c4:fd:bb:65:77:51:c7:aa:3e:bd:b9:2f:b9:b4:99: d1:64:6e:4d:2c:8a:24:cd:3d:aa:79:b5:76:7b:e2: 41:e5:bc:bb:8f:76:2c:1c:23:ae:8e:25:a7:eb:44: 36:b0:c4:fa:02:2d:d5:f0:82:9f:8f:99:43:cd:2d: cb:03:00:50:b5:31:e5:f8:38:7e:41:22:1e:17:5d: 40:95:16:d4:35:85:28:39:40:86:b1:1f:bd:5e:41: 6d:3a:ca:fe:50:f0:3c:d3:94:20:d8:c1:91:05:8b: ae:86:c6:4f:57:22:90:22:2e:04:ce:04:ee:fb:3c: 5b:3a:3a:aa:4f:2f:18:2e:9c:09:8c:01:82:22:ab: 50:53:04:33:e1:11:a0:51:23:81:bf:e7:99:c3:2d: ad:31:20:b3:0c:0b:67:4c:3a:aa:f5:ca:54:43:ea: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A9:6B:D3:0D:8B:E8:96:A0:1B:AA:D9:45:A5:F7:BC:D3:DC:77:03 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9000:80::/48 2405:9000:90::/48 Signature Algorithm: sha256WithRSAEncryption 32:90:a7:0c:1b:1b:0b:17:22:2d:c3:e6:1d:3f:cd:71:fd:db: cd:d0:3d:09:4d:57:95:eb:76:2c:a3:57:bf:ae:15:96:56:62: fd:18:e3:40:3a:49:48:16:cf:1c:99:5a:f0:9c:6e:92:d5:ed: 43:1a:49:ba:59:2b:94:f9:2e:85:a2:b3:d9:89:7f:11:9f:35: 94:fa:91:8d:85:15:75:4a:a4:a9:08:20:9b:ef:0a:82:f4:04: d4:9f:99:ec:e2:59:03:73:87:f1:ea:cd:aa:bd:32:18:4b:08: 66:e2:39:62:d8:da:cf:a3:b2:97:05:8c:30:0b:a6:ad:14:12: 30:1d:1e:f3:be:2f:c2:20:ad:c8:71:de:be:bd:b5:ee:e9:8e: e9:d2:90:48:aa:cc:d3:77:93:c4:da:6a:92:9b:98:fa:dc:10: 58:9d:e7:c4:6f:ab:39:e7:8e:d0:4f:4b:48:db:58:41:7c:43: a7:6b:6d:f6:d9:18:bd:00:23:5a:31:27:a5:4c:30:2f:3f:ce: ee:63:7c:4d:b3:d6:e4:c9:d4:c1:21:70:b8:ac:98:49:1d:2d: 0c:45:52:4b:10:6e:eb:c4:0d:5d:71:12:c6:c7:69:93:fe:7c: 97:b4:0a:29:d8:58:94:77:1f:9f:eb:ac:39:77:c2:13:ff:eb: af:29:4c:b4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTgwMi1mYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY79vbPEFZuwRI8k7D28MBBgEIJIEEcU0c0XV7xW9BKZrh54OuHlV/pILuUp +AhlQKXwOQg3ZcufrS48IMYOp1IJrcQiMGHg0NjjH5IoAj7oF2VNeM4rALXE/btl d1HHqj69uS+5tJnRZG5NLIokzT2qebV2e+JB5by7j3YsHCOujiWn60Q2sMT6Ai3V 8IKfj5lDzS3LAwBQtTHl+Dh+QSIeF11AlRbUNYUoOUCGsR+9XkFtOsr+UPA805Qg 2MGRBYuuhsZPVyKQIi4EzgTu+zxbOjqqTy8YLpwJjAGCIqtQUwQz4RGgUSOBv+eZ wy2tMSCzDAtnTDqq9cpUQ+phGwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLipa9MN i+iWoBuq2UWl97zT3HcDMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMjdBMUE1QTIx NzQ5MTFFQzg5NkFENjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBZAAAIADBwAkBZAAAJAwDQYJKoZIhvcNAQELBQADggEB ADKQpwwbGwsXIi3D5h0/zXH9283QPQlNV5XrdiyjV7+uFZZWYv0Y40A6SUgWzxyZ WvCcbpLV7UMaSbpZK5T5LoWis9mJfxGfNZT6kY2FFXVKpKkIIJvvCoL0BNSfmezi WQNzh/Hqzaq9MhhLCGbiOWLY2s+jspcFjDALpq0UEjAdHvO+L8Igrchx3r69te7p junSkEiqzNN3k8TaapKbmPrcEFid58RvqznnjtBPS0jbWEF8Q6drbfbZGL0AI1ox J6VMMC8/zu5jfE2z1uTJ1MEhcLismEkdLQxFUksQbuvEDV1xEsbHaZP+fJe0CinY WJR3H5/rrDl3whP/668pTLQ= -----END CERTIFICATE-----Generated at Wed Aug 13 04:27:14 2025 by rpki-client