$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/3555D0B4459A11F097133A12C4F9AE02.roa File: 3555D0B4459A11F097133A12C4F9AE02.roa (raw, json) Hash identifier: nkSWh3cyl4fI1oSf90Vp/KLgY/jLoOROmv/FMSabOTU= Subject key identifier: 4C:F7:52:42:1D:89:8D:13:1E:6D:AD:AA:4C:ED:2F:8C:72:9F:EC:76 Certificate issuer: /CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Certificate serial: 9E Authority key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/3555D0B4459A11F097133A12C4F9AE02.roa Signing time: Tue 10 Jun 2025 01:28:27 +0000 ROA not before: Tue 10 Jun 2025 01:28:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 26658 IP address blocks: 27.0.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3E2, serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Validity Not Before: Jun 10 01:28:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68478a3b-a717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:bc:5b:b1:a5:3b:3e:de:04:7e:1f:ac:b3: 57:91:c2:d8:7f:40:69:18:27:3d:61:d0:c8:6d:e3: d3:b9:2c:18:49:9c:b1:84:74:86:ee:33:b4:20:ae: fd:d8:c3:7a:3d:7a:84:3e:cb:4b:c0:7f:35:28:62: e4:ea:dc:af:78:c5:c7:54:5b:78:d1:21:a2:24:79: 96:47:c1:c8:23:fb:b0:e9:9d:e2:4a:45:89:ab:aa: 9c:b1:d1:5e:d9:1d:53:6a:d6:99:a7:6c:e7:3b:39: c4:d6:30:e0:3a:d8:29:53:7f:21:f9:69:7c:2e:bb: 47:33:4c:57:f9:a1:36:10:b6:8e:98:55:1c:15:05: 39:5c:5b:54:bb:1d:61:a7:87:05:50:35:5b:86:78: 99:39:0f:4e:48:61:7e:d0:72:77:27:da:b3:f8:4c: 0d:c2:f9:b2:5f:d8:58:55:14:19:f4:b3:dc:16:89: ce:4c:36:e9:05:54:f0:73:d6:40:0a:cd:ab:f6:70: 2f:c1:ce:99:74:66:1e:10:13:d2:c6:42:c8:a1:b1: e5:e3:3f:26:24:ad:d5:96:e1:15:e8:dc:29:a9:c2: 4e:80:59:2f:cb:a6:24:48:31:df:49:8f:38:68:e3: 46:bf:8d:9d:9e:af:97:c0:0f:f8:f0:84:c6:d5:f7: 50:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F7:52:42:1D:89:8D:13:1E:6D:AD:AA:4C:ED:2F:8C:72:9F:EC:76 X509v3 Authority Key Identifier: keyid:F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/3555D0B4459A11F097133A12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.0.156.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:69:36:ba:96:1b:b8:47:48:3d:90:94:fc:46:2e:eb:6b:a5: f1:93:f0:64:41:de:ce:13:21:d2:21:cf:63:66:c8:67:3a:c9: a8:54:e3:75:8c:d6:8f:45:e1:83:a0:2d:6a:c5:ae:c4:e6:6a: 1f:cd:8a:f1:fc:da:fc:31:e0:18:b1:ca:1a:c1:37:8a:71:ad: 5b:07:90:30:df:4e:ca:42:f3:d1:24:47:18:82:2f:64:c8:e0: 40:a7:bb:d0:46:e0:cf:bf:42:41:cd:9c:a4:51:35:97:45:ff: 29:3d:cf:e5:dd:04:45:72:57:2f:6b:65:15:e3:1b:e3:8c:7e: 17:4e:d9:6b:19:80:62:a4:08:d2:f9:b5:65:09:15:0c:2a:3d: 45:89:c7:53:c9:04:3d:c9:64:bb:b3:b2:af:f1:a5:0d:a2:87: 26:6c:fd:48:a0:70:5d:29:8a:c2:da:2b:0d:d0:a4:52:05:6b: d0:83:2f:8d:bb:e7:dd:8c:29:e0:9f:0f:81:01:1f:db:a7:db: 47:b4:ed:71:a1:70:84:fe:f0:fd:cb:43:a9:3f:b3:99:34:37: 1e:ed:d4:ef:55:f3:9d:3c:40:b5:af:f7:0e:e3:37:79:7c:78: 52:c3:0c:f1:df:0e:f4:30:79:eb:48:f6:59:07:ae:86:c9:a1: 57:45:14:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzRTIxMTAvBgNVBAUTKEY2QkE2RTYzMEE2QUE5OEQ4MjE1NjgyNjRFMDI3Qjk4 OERGNUM5QkEwHhcNMjUwNjEwMDEyODI3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ3OGEzYi1hNzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49u8W7GlOz7eBH4frLNXkcLYf0BpGCc9YdDIbePTuSwYSZyxhHSG7jO0IK79 2MN6PXqEPstLwH81KGLk6tyveMXHVFt40SGiJHmWR8HII/uw6Z3iSkWJq6qcsdFe 2R1TataZp2znOznE1jDgOtgpU38h+Wl8LrtHM0xX+aE2ELaOmFUcFQU5XFtUux1h p4cFUDVbhniZOQ9OSGF+0HJ3J9qz+EwNwvmyX9hYVRQZ9LPcFonOTDbpBVTwc9ZA Cs2r9nAvwc6ZdGYeEBPSxkLIobHl4z8mJK3VluEV6NwpqcJOgFkvy6YkSDHfSY84 aONGv42dnq+XwA/48ITG1fdQfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEz3UkId iY0THm2tqkztL4xyn+x2MB8GA1UdIwQYMBaAFPa6bmMKaqmNghVoJk4Ce5iN9cm6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNFMi9EQTYyMkU5QTVC OUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdwcXFZMkNGV2dtVGdKN21JMzF5 Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlycHVZd3BxcVkyQ0ZXZ21UZ0o3bUkzMXliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYzRTIvREE2MjJFOUE1QjlFMTFFRkJDREJDNTVCQzRGOUFFMDIvMzU1NUQwQjQ0 NTlBMTFGMDk3MTMzQTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIbAJwwDQYJKoZIhvcNAQELBQADggEBAJ5pNrqWG7hHSD2Q lPxGLutrpfGT8GRB3s4TIdIhz2NmyGc6yahU43WM1o9F4YOgLWrFrsTmah/NivH8 2vwx4BixyhrBN4pxrVsHkDDfTspC89EkRxiCL2TI4ECnu9BG4M+/QkHNnKRRNZdF /yk9z+XdBEVyVy9rZRXjG+OMfhdO2WsZgGKkCNL5tWUJFQwqPUWJx1PJBD3JZLuz sq/xpQ2ihyZs/UigcF0pisLaKw3QpFIFa9CDL427592MKeCfD4EBH9un20e07XGh cIT+8P3LQ6k/s5k0Nx7t1O9V8508QLWv9w7jN3l8eFLDDPHfDvQweetI9lkHrobJ oVdFFME= -----END CERTIFICATE-----Generated at Wed Jun 18 08:46:19 2025 by rpki-client