$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa File: 0827E4147F7911EC86DE4B56C4F9AE02.roa (raw, json) Hash identifier: tjqskq9N3o/egf3xRNWQ42djlqYwKoTyXRLEqPg8Ljw= Subject key identifier: 6A:2A:A8:B8:5C:7A:5D:84:47:FE:A4:9A:12:C9:8D:29:FD:1B:8E:73 Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Certificate serial: 0C94 Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa Signing time: Fri 02 May 2025 18:56:48 +0000 ROA not before: Fri 02 May 2025 18:56:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141731 IP address blocks: 202.83.125.0/24 maxlen: 24 2400:4fc0:3ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3220 (0xc94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F9C, serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Validity Not Before: May 2 18:56:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815156f-8289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:db:87:b7:1a:9c:70:2f:3e:98:df:80:bc:75: 86:52:0e:1a:f0:19:15:39:c2:11:04:0c:e6:2e:5d: 72:3a:7b:59:0a:ed:34:13:45:dd:d8:cd:60:d0:61: 66:07:a6:23:92:8b:a3:95:1b:8c:a7:bc:3e:59:b2: 6c:ee:09:7d:8f:e0:00:a3:93:92:0c:06:70:9e:40: 6f:6e:33:88:4a:54:e1:e7:de:65:cd:17:0b:f2:54: 6b:54:28:45:7d:33:2d:1a:dd:80:e6:97:0e:9b:36: 47:14:99:0e:2e:8a:d4:28:c9:0d:62:da:e7:8d:c8: 13:2f:9c:88:37:47:53:97:b5:21:74:6f:73:55:fb: eb:6d:92:93:cc:06:43:d9:f2:fb:0e:eb:a3:30:fe: 84:58:7d:45:8b:87:46:a0:74:05:9c:06:26:ba:0e: 26:f3:41:53:fe:84:7f:45:b5:4c:d3:6b:c3:6e:9e: 23:b2:0f:3a:85:b6:b7:00:3d:5e:7e:e8:43:b6:72: e0:33:d4:bb:af:45:74:5c:6b:ac:01:46:dd:cc:58: 42:4b:aa:f6:1d:c9:bf:38:ea:5a:85:4b:aa:7d:b6: aa:22:19:bd:9c:52:2e:1f:81:96:c6:8b:8a:23:3e: 2a:9a:98:48:34:04:4c:5f:09:de:45:61:42:23:78: 77:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2A:A8:B8:5C:7A:5D:84:47:FE:A4:9A:12:C9:8D:29:FD:1B:8E:73 X509v3 Authority Key Identifier: keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.125.0/24 IPv6: 2400:4fc0:3ff::/48 Signature Algorithm: sha256WithRSAEncryption cd:c0:fd:7b:da:6f:02:f3:d3:3b:49:fc:95:59:59:74:63:d8: 9a:a9:e3:d6:77:fa:26:42:8c:52:4f:b1:cc:ff:d8:56:da:8c: 73:39:d1:77:07:f0:ad:23:15:9f:20:67:58:ee:3c:3b:29:40: 33:5d:46:c2:3c:5c:ee:84:61:ca:82:a5:c8:53:00:f1:a4:fe: bc:30:a1:86:4d:08:d5:c3:33:e0:ad:ef:89:85:6c:11:b6:5f: d9:25:88:7c:05:60:1e:64:41:d6:d2:bd:91:80:88:61:ee:ba: 62:8a:b0:6b:17:63:15:e9:97:1f:b1:f8:f1:f7:44:99:2f:74: 41:4d:93:f1:c8:37:53:c1:60:d4:df:53:ca:e5:c1:fa:b1:3c: 8f:25:68:7c:7c:da:3f:19:5d:5d:31:a0:c6:30:e7:da:54:b4: b9:00:aa:75:ea:07:98:a1:f1:0f:7b:43:de:96:8f:cd:de:73: fe:d9:d6:12:5e:84:34:0b:20:23:42:db:57:6f:5c:7b:73:07: 70:90:22:2f:94:41:cc:c1:ea:88:7c:a7:c8:33:44:f5:23:cf: a9:40:1c:e2:37:1f:3b:32:ef:5e:9d:da:fd:cc:a7:1b:28:07: b5:9d:a0:91:be:13:56:14:bc:b8:5d:71:7c:4a:82:a6:9e:65: 75:c2:5e:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC MjFDNERCMDkwHhcNMjUwNTAyMTg1NjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MTU2Zi04Mjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9uHtxqccC8+mN+AvHWGUg4a8BkVOcIRBAzmLl1yOntZCu00E0Xd2M1g0GFm B6YjkoujlRuMp7w+WbJs7gl9j+AAo5OSDAZwnkBvbjOISlTh595lzRcL8lRrVChF fTMtGt2A5pcOmzZHFJkOLorUKMkNYtrnjcgTL5yIN0dTl7UhdG9zVfvrbZKTzAZD 2fL7DuujMP6EWH1Fi4dGoHQFnAYmug4m80FT/oR/RbVM02vDbp4jsg86hba3AD1e fuhDtnLgM9S7r0V0XGusAUbdzFhCS6r2Hcm/OOpahUuqfbaqIhm9nFIuH4GWxouK Iz4qmphINARMXwneRWFCI3h3zQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGoqqLhc el2ER/6kmhLJjSn9G45zMB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvMDgyN0U0MTQ3 Rjc5MTFFQzg2REU0QjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKU30wDwQCAAIwCQMHACQAT8AD/zANBgkqhkiG9w0BAQsF AAOCAQEAzcD9e9pvAvPTO0n8lVlZdGPYmqnj1nf6JkKMUk+xzP/YVtqMcznRdwfw rSMVnyBnWO48OylAM11Gwjxc7oRhyoKlyFMA8aT+vDChhk0I1cMz4K3viYVsEbZf 2SWIfAVgHmRB1tK9kYCIYe66YoqwaxdjFemXH7H48fdEmS90QU2T8cg3U8Fg1N9T yuXB+rE8jyVofHzaPxldXTGgxjDn2lS0uQCqdeoHmKHxD3tD3paPzd5z/tnWEl6E NAsgI0LbV29ce3MHcJAiL5RBzMHqiHynyDNE9SPPqUAc4jcfOzLvXp3a/cynGygH tZ2gkb4TVhS8uF1xfEqCpp5ldcJezw== -----END CERTIFICATE-----Generated at Fri May 16 17:56:05 2025 by rpki-client