$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/C265A63A571211F092B99F2AC4F9AE02.roa File: C265A63A571211F092B99F2AC4F9AE02.roa (raw, json) Hash identifier: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k= Subject key identifier: 50:F4:E1:C9:14:07:49:84:01:CC:A8:25:14:F8:FC:B3:1C:52:D9:79 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 04 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/C265A63A571211F092B99F2AC4F9AE02.roa Signing time: Wed 02 Jul 2025 07:04:13 +0000 ROA not before: Wed 02 Jul 2025 07:04:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 154005 IP address blocks: 165.101.98.0/23 maxlen: 23 165.101.98.0/24 maxlen: 24 165.101.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Jul 2 07:04:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6864d9ed-ab5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:58:bf:b1:ac:a1:1d:bc:2c:c6:e0:6c:c8: 3f:f2:dd:16:92:ec:95:ec:89:78:07:fb:f2:30:66: 79:54:43:72:d8:24:9c:31:2f:94:31:0e:4f:83:31: 48:e9:08:75:a7:ac:60:85:a7:0f:4b:2a:53:84:3d: 3c:fe:f2:6b:dc:b8:50:8d:42:5d:25:64:5f:4e:c6: e4:a6:6a:d6:54:0e:4f:2f:11:94:3b:1c:bf:b5:41: 27:dd:6d:09:c6:c0:64:3d:91:9b:76:2a:ea:80:6c: 56:b3:ce:36:f0:f3:9d:17:2d:04:d3:ce:d3:08:f3: 95:18:8d:9a:87:76:1b:7b:52:f5:91:ec:6d:1b:a3: 95:99:3b:b4:06:96:2d:01:dd:39:88:a3:9b:0d:3a: e4:04:ae:c9:e9:0d:1d:5c:5d:9c:59:52:9b:f8:30: f7:79:e9:2f:d6:33:4b:72:5f:c6:f8:51:83:a7:8f: 05:35:f5:96:d0:40:18:5c:0d:80:51:99:4c:be:b8: a0:eb:28:f8:29:87:4c:46:1c:cc:7d:d1:24:47:e7: fe:09:44:fb:f3:e5:0b:93:29:b0:93:76:3e:fb:7c: 79:82:41:4b:c8:3e:15:b4:b2:ef:26:08:2e:a8:30: 8b:e8:e7:dd:31:7b:ba:5d:9c:a5:e6:7e:19:01:4f: 41:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F4:E1:C9:14:07:49:84:01:CC:A8:25:14:F8:FC:B3:1C:52:D9:79 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/C265A63A571211F092B99F2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.98.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:63:71:4b:bd:4e:7e:51:59:2b:23:70:4c:bb:db:55:e3:05: cf:85:56:4d:88:6f:e9:49:e0:d1:f0:8f:42:d5:e4:af:d6:12: aa:ea:55:27:75:bf:08:ed:d8:70:22:58:9d:51:a3:8d:f2:11: 82:e7:8d:f7:97:e9:4a:f1:44:91:99:9a:2b:6d:79:6f:aa:88: c3:a2:cb:48:fc:9b:e7:ab:76:a9:27:b2:3d:19:75:4e:7c:a2: 3e:1c:0e:9e:b0:6e:f8:66:31:63:73:e9:8a:22:7e:1c:02:e8: 59:5a:df:38:74:e9:ec:73:88:d3:41:b2:e7:ea:5a:63:2d:83: e0:dd:1b:f3:b6:b3:dd:c9:1f:e9:d5:eb:ef:ca:12:c4:af:42: f8:03:a7:eb:9e:3b:28:98:56:b1:24:f6:b9:73:10:09:d5:46: 66:52:99:df:a3:f2:43:1c:8f:01:00:21:54:05:b3:bd:98:77: c6:3c:5a:a9:10:69:8d:57:1a:d4:ed:77:ec:78:6d:1d:09:39: 98:ba:3d:7d:f3:d1:e9:53:99:aa:cf:79:e5:ce:f2:59:c4:a3: 96:68:62:06:c5:b7:38:3d:79:ea:4c:54:27:0f:77:11:de:1e: 93:0e:ad:1d:1b:d6:c6:57:23:84:aa:78:49:b5:76:a7:b5:d1: da:4a:62:a4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTA3MDIwNzA0MTNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjRkOWVkLWFiNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDyVi/sayhHbwsxuBsyD/y3RaS7JXsiXgH+/IwZnlUQ3LYJJwxL5QxDk+DMUjp CHWnrGCFpw9LKlOEPTz+8mvcuFCNQl0lZF9OxuSmatZUDk8vEZQ7HL+1QSfdbQnG wGQ9kZt2KuqAbFazzjbw850XLQTTztMI85UYjZqHdht7UvWR7G0bo5WZO7QGli0B 3TmIo5sNOuQErsnpDR1cXZxZUpv4MPd56S/WM0tyX8b4UYOnjwU19ZbQQBhcDYBR mUy+uKDrKPgph0xGHMx90SRH5/4JRPvz5QuTKbCTdj77fHmCQUvIPhW0su8mCC6o MIvo590xe7pdnKXmfhkBT0GvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUPThyRQH SYQBzKglFPj8sxxS2XkwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODdDMS8yNjMxQzhCNDU3MEExMUYwQjUzOENGNjVDNEY5QUUwMi9DMjY1QTYzQTU3 MTIxMUYwOTJCOTlGMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlYjANBgkqhkiG9w0BAQsFAAOCAQEAm2NxS71OflFZKyNw TLvbVeMFz4VWTYhv6Ung0fCPQtXkr9YSqupVJ3W/CO3YcCJYnVGjjfIRgueN95fp SvFEkZmaK215b6qIw6LLSPyb56t2qSeyPRl1TnyiPhwOnrBu+GYxY3PpiiJ+HALo WVrfOHTp7HOI00Gy5+paYy2D4N0b87az3ckf6dXr78oSxK9C+AOn6547KJhWsST2 uXMQCdVGZlKZ36PyQxyPAQAhVAWzvZh3xjxaqRBpjVca1O137HhtHQk5mLo9ffPR 6VOZqs955c7yWcSjlmhiBsW3OD156kxUJw93Ed4ekw6tHRvWxlcjhKp4SbV2p7XR 2kpipA== -----END CERTIFICATE-----Generated at Fri Jul 4 18:28:52 2025 by rpki-client