$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/95B5855C18CE11EFBCD58454C4F9AE02.roa File: 95B5855C18CE11EFBCD58454C4F9AE02.roa (raw, json) Hash identifier: PcZXGp5zvO/A3lEsDn884MTZ2FtXJ7tXRCkkHLH+i5g= Subject key identifier: D5:74:62:D4:42:F6:81:5B:B3:09:A2:64:2B:57:4E:6B:EC:A4:A8:23 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 09F9 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/95B5855C18CE11EFBCD58454C4F9AE02.roa Signing time: Wed 02 Jul 2025 20:29:37 +0000 ROA not before: Wed 02 Jul 2025 20:29:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10103 IP address blocks: 138.19.0.0/16 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2553 (0x9f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jul 2 20:29:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686596b1-6302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:50:cd:cd:ca:9e:b2:f6:a5:54:a7:3a:08: 89:3f:62:4b:be:f4:4e:de:23:f4:b1:fe:46:0e:8e: 45:20:bd:d0:84:32:bc:51:28:19:c5:1e:49:7a:3f: db:3a:6c:4e:c8:54:c6:83:fb:8d:6c:7d:96:55:de: bc:df:fb:b3:75:a6:3e:3f:7d:8f:39:ca:29:14:81: 36:19:1b:10:ed:a7:25:b8:91:f2:7d:19:ea:c9:77: c5:b7:f2:e9:c2:f8:e1:5d:c4:81:36:a0:0e:39:55: 2a:1e:53:da:e9:55:ee:c8:ba:49:17:d8:f0:61:49: af:4a:34:00:d2:fa:94:ef:27:b3:f0:f8:cb:35:34: fb:c0:47:23:49:d8:e5:47:9f:4e:90:97:a5:db:8c: 6d:84:76:11:9f:9c:43:25:ff:fd:41:a1:cc:a0:db: 5c:e9:15:8a:8b:dd:29:71:44:59:8b:2d:73:d3:3b: cb:46:57:63:2c:28:f1:ce:90:5c:9d:14:b3:f6:2c: 48:ed:bf:be:83:1e:24:32:1b:1a:05:ac:93:86:a7: 02:a1:ab:25:33:be:5f:02:f3:de:77:c1:d5:7c:8b: 8e:ff:70:31:8e:c6:49:75:58:67:f4:16:7e:79:7d: f1:44:87:f4:ab:4e:fb:f5:5a:ff:cc:03:e5:f1:25: 5c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:74:62:D4:42:F6:81:5B:B3:09:A2:64:2B:57:4E:6B:EC:A4:A8:23 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/95B5855C18CE11EFBCD58454C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption 74:0f:0c:8e:5a:68:b2:58:a5:e3:75:31:ea:ad:3b:40:52:96: b7:69:e0:49:a0:6a:4e:5c:8b:ee:03:07:e3:b2:22:59:9c:0f: e1:ce:e1:dd:9a:ed:34:89:4c:b2:e2:dc:68:7c:66:11:7b:54: a6:09:e5:ec:b7:d8:3c:6c:88:e8:0c:2c:e0:6d:13:c9:69:de: 62:96:36:04:77:7b:1d:b6:a2:34:b5:74:63:d2:1f:25:4d:c1: 2e:08:4f:ae:8a:0d:5c:bd:77:e7:46:96:99:c6:20:a3:7d:7d: 83:68:df:f5:d8:76:65:18:13:f2:83:2b:fb:f0:46:e3:81:6a: 3d:3e:f3:50:a9:79:e1:b0:bf:15:c9:c5:66:38:5e:e3:71:38: 24:39:d6:2c:57:25:41:fc:37:13:8b:91:97:92:4e:ba:7a:41: ac:87:58:42:81:9b:a0:63:5a:78:bc:3e:0e:61:28:91:51:c4: e9:59:18:f3:5b:22:79:9b:bc:9f:97:2c:0e:23:80:8b:b6:b9: d7:b4:58:64:a5:32:4b:e7:12:b8:e6:f8:ee:28:52:f3:fe:1e: 8f:12:db:54:48:2f:10:7f:2f:28:65:f6:c9:1c:66:68:1a:1e: 32:02:cb:e0:b5:fe:14:5c:6d:fe:8f:14:a4:6c:7c:a1:f0:a6: 48:40:24:36 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwNzAyMjAyOTM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZiMS02MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySxQzc3KnrL2pVSnOgiJP2JLvvRO3iP0sf5GDo5FIL3QhDK8USgZxR5Jej/b OmxOyFTGg/uNbH2WVd683/uzdaY+P32POcopFIE2GRsQ7acluJHyfRnqyXfFt/Lp wvjhXcSBNqAOOVUqHlPa6VXuyLpJF9jwYUmvSjQA0vqU7yez8PjLNTT7wEcjSdjl R59OkJel24xthHYRn5xDJf/9QaHMoNtc6RWKi90pcURZiy1z0zvLRldjLCjxzpBc nRSz9ixI7b++gx4kMhsaBayThqcCoaslM75fAvPed8HVfIuO/3AxjsZJdVhn9BZ+ eX3xRIf0q0779Vr/zAPl8SVcXQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFNV0YtRC 9oFbswmiZCtXTmvspKgjMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvOTVCNTg1NUMx OENFMTFFRkJDRDU4NDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwCKEwMEBqVUgDANBgkqhkiG9w0BAQsFAAOCAQEAdA8Mjlpo slil43Ux6q07QFKWt2ngSaBqTlyL7gMH47IiWZwP4c7h3ZrtNIlMsuLcaHxmEXtU pgnl7LfYPGyI6Aws4G0TyWneYpY2BHd7HbaiNLV0Y9IfJU3BLghProoNXL1350aW mcYgo319g2jf9dh2ZRgT8oMr+/BG44FqPT7zUKl54bC/FcnFZjhe43E4JDnWLFcl Qfw3E4uRl5JOunpBrIdYQoGboGNaeLw+DmEokVHE6VkY81sieZu8n5csDiOAi7a5 17RYZKUyS+cSuOb47ihS8/4ejxLbVEgvEH8vKGX2yRxmaBoeMgLL4LX+FFxt/o8U pGx8ofCmSEAkNg== -----END CERTIFICATE-----Generated at Fri Jul 4 15:42:17 2025 by rpki-client