$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/9E6151742A3211F08B6D152CC4F9AE02.roa File: 9E6151742A3211F08B6D152CC4F9AE02.roa (raw, json) Hash identifier: SXPw9FtUOZKmALyYX3RETzXAQ6ZVeiQPl3+u31EI2fc= Subject key identifier: 0F:10:62:16:9A:CC:6C:70:A2:F7:80:D4:41:C3:55:C2:E2:9C:DD:24 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2A13 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/9E6151742A3211F08B6D152CC4F9AE02.roa Signing time: Tue 06 May 2025 04:28:54 +0000 ROA not before: Tue 06 May 2025 04:28:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153746 IP address blocks: 27.254.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 10:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10771 (0x2a13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: May 6 04:28:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68199006-5384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:f1:27:e7:43:70:be:73:dd:12:3c:a5:fe: 6e:7a:63:61:2c:c7:e5:f5:8e:bb:d3:f8:88:d8:dc: 53:80:d7:47:50:7c:fd:a8:f9:7b:7a:1b:ac:68:e1: c1:b3:7f:95:1d:f2:3c:5b:b1:58:43:95:43:f3:28: 11:20:2f:67:d2:aa:26:6b:51:fe:af:5b:a6:2f:7b: f8:29:17:18:4c:f3:56:e3:25:c7:79:b7:68:05:45: 8e:76:3e:69:7a:32:bf:59:92:a3:8e:4e:89:02:5f: 07:3a:c4:5e:72:f2:49:7b:11:99:41:5f:ce:24:95: 81:10:c7:80:66:c8:4b:f2:f8:64:a3:cb:40:28:ad: e3:81:ee:62:13:62:be:a1:2d:0d:91:cf:e6:a3:a7: b5:4a:90:75:16:00:80:1a:4b:b2:c6:63:df:21:0a: 1c:09:84:73:68:f2:db:e3:62:8f:a1:6a:31:37:f6: aa:ce:6b:eb:0b:80:48:45:58:23:a0:c3:14:12:da: 66:f7:42:be:6c:57:65:96:c0:c6:0c:27:01:d4:2f: 04:3a:27:33:e3:9c:1e:5f:4e:ed:f3:83:fe:a7:7c: dd:11:a0:32:97:d8:8d:6d:51:5c:09:0d:19:9f:4a: 77:2b:8d:fa:86:bf:a6:9c:14:1e:ac:86:ae:bb:6f: 25:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:10:62:16:9A:CC:6C:70:A2:F7:80:D4:41:C3:55:C2:E2:9C:DD:24 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/9E6151742A3211F08B6D152CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.0.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:52:33:98:7e:22:4c:76:97:db:24:1f:71:49:2e:c3:05:ea: 9d:e0:28:90:5d:60:58:ac:6e:37:3a:91:3a:a4:05:ca:76:fc: a6:a5:65:71:ea:75:41:23:6f:4f:90:23:90:cc:c3:a0:3c:2f: e8:34:36:08:84:d8:e3:39:48:8f:9e:00:02:c2:d9:60:24:9a: ff:c9:10:03:dc:03:30:25:32:bd:5e:cc:d8:dd:22:3f:36:a3: a1:1f:9e:f4:44:42:1d:f0:ae:70:76:e4:8c:34:43:6e:73:2e: 9e:93:4c:5f:70:75:d5:0e:7f:84:66:5d:7a:bc:3c:20:eb:01: d7:1f:dd:19:cd:48:6c:13:f4:d3:41:58:f9:68:35:4d:b8:13: 4d:ee:81:f2:53:0c:17:dd:a4:06:7a:7a:56:d2:ab:36:92:17: 81:67:d0:7b:7c:f1:bc:6d:9e:14:9d:fe:c0:45:12:1f:d4:a4: cc:22:9a:52:69:76:9a:cd:af:65:36:a0:a2:f4:5c:9f:4f:9a: b7:b0:fd:6d:57:b8:88:b0:dd:cd:f6:77:ca:05:cd:1b:a3:60: 75:13:e0:f3:e7:b2:e8:7f:06:95:07:19:4a:16:30:e4:09:b6: fe:47:d1:f2:9b:92:75:10:dd:0c:42:6e:13:48:1b:3f:42:c6: bf:64:5d:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjUwNTA2MDQyODU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5OTAwNi01Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzzxJ+dDcL5z3RI8pf5uemNhLMfl9Y670/iI2NxTgNdHUHz9qPl7ehusaOHB s3+VHfI8W7FYQ5VD8ygRIC9n0qoma1H+r1umL3v4KRcYTPNW4yXHebdoBUWOdj5p ejK/WZKjjk6JAl8HOsRecvJJexGZQV/OJJWBEMeAZshL8vhko8tAKK3jge5iE2K+ oS0Nkc/mo6e1SpB1FgCAGkuyxmPfIQocCYRzaPLb42KPoWoxN/aqzmvrC4BIRVgj oMMUEtpm90K+bFdllsDGDCcB1C8EOicz45weX07t84P+p3zdEaAyl9iNbVFcCQ0Z n0p3K436hr+mnBQerIauu28lvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA8QYhaa zGxwoveA1EHDVcLinN0kMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvOUU2MTUxNzQy QTMyMTFGMDhCNkQxNTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAb/gAwDQYJKoZIhvcNAQELBQADggEBAGpSM5h+Ikx2l9sk H3FJLsMF6p3gKJBdYFisbjc6kTqkBcp2/KalZXHqdUEjb0+QI5DMw6A8L+g0NgiE 2OM5SI+eAALC2WAkmv/JEAPcAzAlMr1ezNjdIj82o6EfnvREQh3wrnB25Iw0Q25z Lp6TTF9wddUOf4RmXXq8PCDrAdcf3RnNSGwT9NNBWPloNU24E03ugfJTDBfdpAZ6 elbSqzaSF4Fn0Ht88bxtnhSd/sBFEh/UpMwimlJpdprNr2U2oKL0XJ9Pmrew/W1X uIiw3c32d8oFzRujYHUT4PPnsuh/BpUHGUoWMOQJtv5H0fKbknUQ3QxCbhNIGz9C xr9kXVY= -----END CERTIFICATE-----Generated at Wed May 14 04:32:38 2025 by rpki-client