$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/BF341AF869A911EE8CB76452C4F9AE02.roa File: BF341AF869A911EE8CB76452C4F9AE02.roa (raw, json) Hash identifier: dRIa1L+Dk+ECeqLpFjf2uz44Cfej3F1HAm+B1Eo0OQQ= Subject key identifier: 25:47:94:19:AE:80:ED:F8:39:0A:E7:A3:3B:8B:6F:98:F0:7D:67:F4 Certificate issuer: /CN=A9172B7E/serialNumber=A43739BB5F20C14CC5FC49E375587DB3B72237AF Certificate serial: 0164 Authority key identifier: A4:37:39:BB:5F:20:C1:4C:C5:FC:49:E3:75:58:7D:B3:B7:22:37:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDc5u18gwUzF_EnjdVh9s7ciN68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/BF341AF869A911EE8CB76452C4F9AE02.roa Signing time: Thu 05 Jun 2025 03:52:38 +0000 ROA not before: Thu 05 Jun 2025 03:52:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55523 IP address blocks: 27.96.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/pDc5u18gwUzF_EnjdVh9s7ciN68.crl rsync://rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/pDc5u18gwUzF_EnjdVh9s7ciN68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDc5u18gwUzF_EnjdVh9s7ciN68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B7E, serialNumber=A43739BB5F20C14CC5FC49E375587DB3B72237AF Validity Not Before: Jun 5 03:52:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68411486-b608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cf:84:1f:e4:33:22:af:22:46:cf:fd:4f:98: 62:cc:28:f4:b8:ee:8d:30:1e:c1:15:02:07:37:45: f4:51:75:6d:30:11:4b:68:81:b5:be:21:75:b1:71: 4a:64:4b:10:3c:69:5b:e8:14:f5:ca:42:ec:bf:a6: 0d:10:f1:bb:dd:63:81:98:95:c4:33:3d:99:93:e4: 4b:47:73:1c:35:0d:08:02:81:8a:6e:96:be:9e:18: 20:07:a7:bc:55:c8:c5:7f:83:53:4c:1b:3e:14:f9: 95:d7:00:9a:5e:eb:f3:b9:a9:18:9b:77:d6:fa:13: db:d4:ba:99:13:dd:87:77:e0:54:89:bf:38:d9:d7: 35:40:78:91:c2:5c:a8:b7:9b:1f:dd:f8:7f:8f:74: 8e:36:3e:58:21:a5:56:c6:71:0a:cf:bc:94:99:b3: 3a:86:d5:8a:1a:d4:eb:5d:ce:26:64:92:7d:3f:cd: 9e:a9:52:a4:8d:07:9c:7f:07:5e:af:ca:b5:fc:83: e1:e3:c5:b8:eb:ae:3e:7a:b9:c1:82:f9:a6:2b:a4: f6:a5:a7:f0:71:08:43:a5:b6:09:6a:61:2f:a6:a7: 75:1f:21:d8:ad:c1:76:29:8a:95:39:89:a9:15:6f: 2c:6d:f0:dd:93:b8:14:87:71:a7:da:ea:be:e4:e6: 8e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:47:94:19:AE:80:ED:F8:39:0A:E7:A3:3B:8B:6F:98:F0:7D:67:F4 X509v3 Authority Key Identifier: keyid:A4:37:39:BB:5F:20:C1:4C:C5:FC:49:E3:75:58:7D:B3:B7:22:37:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/pDc5u18gwUzF_EnjdVh9s7ciN68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDc5u18gwUzF_EnjdVh9s7ciN68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B7E/73BC7AAC471711EEA446E346C4F9AE02/BF341AF869A911EE8CB76452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:2b:24:5e:e5:46:1a:4b:e2:32:95:e1:ac:e2:ef:2d:96:54: da:01:32:f9:9b:70:d3:a5:9f:f5:10:4a:5f:0d:94:39:b3:b0: 9f:01:f9:45:3c:a7:33:fa:bc:41:0a:58:b0:23:cf:4e:be:e6: 4c:30:d7:8f:79:e7:dc:95:14:c4:c7:26:ea:1b:b7:02:ca:3a: 82:b9:19:7a:92:18:88:ad:ef:7c:49:a2:a6:e8:08:70:19:ef: cc:9b:f0:7f:9b:ea:c8:90:85:d9:09:aa:c1:4e:f1:52:14:85: a3:f3:36:d8:60:5a:c8:c0:e5:5f:4a:09:cf:4d:21:74:73:4e: 3e:d8:90:f1:91:3e:8c:a4:74:64:28:cc:3e:ba:5b:42:a2:37: d6:07:22:29:12:5c:36:b3:c0:cc:b6:42:0d:3a:b1:56:d8:2f: b3:c1:50:9a:25:12:23:62:bf:e1:97:34:e0:68:96:e4:f4:7f: 7f:85:dd:f4:2f:84:37:c6:b3:2e:53:aa:00:a6:b3:df:31:fb: 38:f6:52:39:ad:7c:18:e8:6a:e8:5f:bf:e2:22:ec:ea:cd:85: 8b:7a:79:d6:db:2f:e6:d6:75:08:11:6c:5d:04:de:f9:c1:76: 94:64:11:a1:72:c5:0c:b7:a4:88:1e:a5:3b:04:b6:b1:b0:5e: ec:a4:58:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCN0UxMTAvBgNVBAUTKEE0MzczOUJCNUYyMEMxNENDNUZDNDlFMzc1NTg3REIz QjcyMjM3QUYwHhcNMjUwNjA1MDM1MjM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMTQ4Ni1iNjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss+EH+QzIq8iRs/9T5hizCj0uO6NMB7BFQIHN0X0UXVtMBFLaIG1viF1sXFK ZEsQPGlb6BT1ykLsv6YNEPG73WOBmJXEMz2Zk+RLR3McNQ0IAoGKbpa+nhggB6e8 VcjFf4NTTBs+FPmV1wCaXuvzuakYm3fW+hPb1LqZE92Hd+BUib842dc1QHiRwlyo t5sf3fh/j3SONj5YIaVWxnEKz7yUmbM6htWKGtTrXc4mZJJ9P82eqVKkjQecfwde r8q1/IPh48W4664+ernBgvmmK6T2pafwcQhDpbYJamEvpqd1HyHYrcF2KYqVOYmp FW8sbfDdk7gUh3Gn2uq+5OaOUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCVHlBmu gO34OQrnozuLb5jwfWf0MB8GA1UdIwQYMBaAFKQ3ObtfIMFMxfxJ43VYfbO3Ijev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI3RS83M0JDN0FBQzQ3 MTcxMUVFQTQ0NkUzNDZDNEY5QUUwMi9wRGM1dTE4Z3dVekZfRW5qZFZoOXM3Y2lO NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BEYzV1MThnd1V6Rl9FbmpkVmg5czdjaU42OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCN0UvNzNCQzdBQUM0NzE3MTFFRUE0NDZFMzQ2QzRGOUFFMDIvQkYzNDFBRjg2 OUE5MTFFRThDQjc2NDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAMbYBgwDQYJKoZIhvcNAQELBQADggEBAA8rJF7lRhpL4jKV 4azi7y2WVNoBMvmbcNOln/UQSl8NlDmzsJ8B+UU8pzP6vEEKWLAjz06+5kww1495 59yVFMTHJuobtwLKOoK5GXqSGIit73xJoqboCHAZ78yb8H+b6siQhdkJqsFO8VIU haPzNthgWsjA5V9KCc9NIXRzTj7YkPGRPoykdGQozD66W0KiN9YHIikSXDazwMy2 Qg06sVbYL7PBUJolEiNiv+GXNOBoluT0f3+F3fQvhDfGsy5TqgCms98x+zj2Ujmt fBjoauhfv+Ii7OrNhYt6edbbL+bWdQgRbF0E3vnBdpRkEaFyxQy3pIgepTsEtrGw XuykWIg= -----END CERTIFICATE-----Generated at Mon Aug 11 12:52:33 2025 by rpki-client