$ rpki-client -vvf rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/AFC0FD50572F11F088461C69C4F9AE02.roa File: AFC0FD50572F11F088461C69C4F9AE02.roa (raw, json) Hash identifier: nfCf67vpjtYP68lx8zLFvTcNE+LlR0oj7S42csxphUU= Subject key identifier: BC:D7:54:66:AC:D5:30:CA:A0:9C:F2:FC:6A:63:AC:02:02:CF:32:99 Certificate issuer: /CN=A91410C5/serialNumber=578849C9B94A355A7620A9747973D21BBEDA3F53 Certificate serial: 02 Authority key identifier: 57:88:49:C9:B9:4A:35:5A:76:20:A9:74:79:73:D2:1B:BE:DA:3F:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V4hJyblKNVp2IKl0eXPSG77aP1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/AFC0FD50572F11F088461C69C4F9AE02.roa Signing time: Wed 02 Jul 2025 10:31:17 +0000 ROA not before: Wed 02 Jul 2025 10:31:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133551 IP address blocks: 165.99.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/V4hJyblKNVp2IKl0eXPSG77aP1M.crl rsync://rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/V4hJyblKNVp2IKl0eXPSG77aP1M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V4hJyblKNVp2IKl0eXPSG77aP1M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410C5, serialNumber=578849C9B94A355A7620A9747973D21BBEDA3F53 Validity Not Before: Jul 2 10:31:17 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68650a75-964e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:a8:01:4c:2e:c3:77:db:0a:25:b9:0c:a6: 4d:05:e2:03:8d:33:0f:e2:27:7e:d3:74:34:bd:84: 12:a2:5b:cc:f3:aa:fe:a4:73:15:92:fd:61:ff:ac: 6f:e5:84:6b:01:e5:8b:b5:7c:ba:31:cc:6d:9d:a9: 9b:9e:ae:4e:71:2f:1c:ad:ae:00:80:80:91:36:ec: bc:6e:af:7f:d9:ae:f9:c4:0b:b1:9c:16:0e:25:45: a2:65:4a:29:91:ef:a5:a1:e2:96:5d:82:07:b7:8e: bc:06:0b:58:ca:fb:f7:05:1e:2b:9e:07:3c:0e:0f: 1b:5d:b1:d5:ab:15:da:1c:98:42:36:71:c3:b0:4d: 7f:92:dd:42:f9:99:58:41:f1:b0:37:2b:63:19:42: 70:99:0a:b8:47:fc:22:c6:a4:4b:36:de:24:c1:45: dc:67:97:4f:d5:fe:a2:f0:2c:b4:13:05:27:26:70: 9f:f1:f5:d4:b5:94:c1:c5:f4:2c:b8:ab:81:43:cf: 95:84:be:1f:4a:52:b5:91:9f:8d:a3:26:0f:2f:bf: e5:6b:65:c5:33:e5:32:af:35:ee:cf:4e:2c:53:14: 53:61:a0:c8:0b:31:d5:3c:4b:7a:ae:01:7a:57:74: 80:8e:85:d2:c5:2e:06:b1:00:89:91:9b:f9:24:d3: 52:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D7:54:66:AC:D5:30:CA:A0:9C:F2:FC:6A:63:AC:02:02:CF:32:99 X509v3 Authority Key Identifier: keyid:57:88:49:C9:B9:4A:35:5A:76:20:A9:74:79:73:D2:1B:BE:DA:3F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/V4hJyblKNVp2IKl0eXPSG77aP1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V4hJyblKNVp2IKl0eXPSG77aP1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410C5/D109EBD0572E11F095F7FE48C4F9AE02/AFC0FD50572F11F088461C69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.254.0/24 Signature Algorithm: sha256WithRSAEncryption b0:55:e7:35:8d:47:67:e5:08:d2:24:9b:09:c2:03:6d:72:6d: 38:4c:40:90:8a:4b:c7:92:37:b6:01:f4:a4:dd:7b:00:ed:bf: 60:b5:fc:7f:e0:f7:5a:19:94:aa:ec:9a:ce:eb:32:52:95:0d: db:69:1e:7b:0d:0c:d0:79:84:cf:39:ec:42:44:fe:b7:2a:c6: 72:fc:4a:45:ad:3e:c2:5c:10:0f:12:51:96:c3:f0:15:a7:84: a7:c2:ac:a7:2d:8f:cc:3c:95:dd:54:78:fe:10:76:b1:b3:fa: db:27:f4:95:fd:c6:ec:2b:97:99:ef:c0:9b:a3:87:e4:75:10: 82:d3:4c:20:3a:d4:3a:d9:a7:28:a6:23:46:d2:3b:d1:b3:ef: 76:f5:74:87:c4:c2:61:fb:9d:3f:92:b6:92:6e:74:09:ab:4c: de:5c:27:3d:1e:88:d9:49:3f:fa:98:3b:f2:a1:ba:0c:c4:35: 2b:57:23:2d:67:c5:44:e5:e1:b1:cd:57:dc:80:79:05:ef:55: b1:c2:00:dc:67:69:b9:2e:40:8a:e3:27:76:bb:c5:4c:73:3e: 56:25:fe:fc:05:e9:4f:23:ed:20:6b:88:d3:fc:21:b3:bc:dd: 10:c4:1c:df:91:44:c9:0e:39:b9:28:34:4b:84:8d:31:96:2e: a9:0d:c4:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTBDNTExMC8GA1UEBRMoNTc4ODQ5QzlCOTRBMzU1QTc2MjBBOTc0Nzk3M0QyMUJC RURBM0Y1MzAeFw0yNTA3MDIxMDMxMTdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjUwYTc1LTk2NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC09agBTC7Dd9sKJbkMpk0F4gONMw/iJ37TdDS9hBKiW8zzqv6kcxWS/WH/rG/l hGsB5Yu1fLoxzG2dqZuerk5xLxytrgCAgJE27Lxur3/ZrvnEC7GcFg4lRaJlSimR 76Wh4pZdgge3jrwGC1jK+/cFHiueBzwODxtdsdWrFdocmEI2ccOwTX+S3UL5mVhB 8bA3K2MZQnCZCrhH/CLGpEs23iTBRdxnl0/V/qLwLLQTBScmcJ/x9dS1lMHF9Cy4 q4FDz5WEvh9KUrWRn42jJg8vv+VrZcUz5TKvNe7PTixTFFNhoMgLMdU8S3quAXpX dICOhdLFLgaxAImRm/kk01JtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvNdUZqzV MMqgnPL8amOsAgLPMpkwHwYDVR0jBBgwFoAUV4hJyblKNVp2IKl0eXPSG77aP1Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxMEM1L0QxMDlFQkQwNTcy RTExRjA5NUY3RkU0OEM0RjlBRTAyL1Y0aEp5YmxLTlZwMklLbDBlWFBTRzc3YVAx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjRoSnlibEtOVnAySUtsMGVYUFNHNzdhUDFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTBDNS9EMTA5RUJEMDU3MkUxMUYwOTVGN0ZFNDhDNEY5QUUwMi9BRkMwRkQ1MDU3 MkYxMUYwODg0NjFDNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVj/jANBgkqhkiG9w0BAQsFAAOCAQEAsFXnNY1HZ+UI0iSb CcIDbXJtOExAkIpLx5I3tgH0pN17AO2/YLX8f+D3WhmUquyazusyUpUN22keew0M 0HmEzznsQkT+tyrGcvxKRa0+wlwQDxJRlsPwFaeEp8Kspy2PzDyV3VR4/hB2sbP6 2yf0lf3G7CuXme/Am6OH5HUQgtNMIDrUOtmnKKYjRtI70bPvdvV0h8TCYfudP5K2 km50CatM3lwnPR6I2Uk/+pg78qG6DMQ1K1cjLWfFROXhsc1X3IB5Be9VscIA3Gdp uS5AiuMndrvFTHM+ViX+/AXpTyPtIGuI0/whs7zdEMQc35FEyQ45uSg0S4SNMZYu qQ3E2w== -----END CERTIFICATE-----Generated at Fri Jul 4 14:39:54 2025 by rpki-client