$ rpki-client -vvf rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/8FD5A938522911F0AECD911AC4F9AE02.roa File: 8FD5A938522911F0AECD911AC4F9AE02.roa (raw, json) Hash identifier: Dtb6Fb2JpEd/Zi2+qi9cOHLUquodmN8UKkbWls/zEtM= Subject key identifier: 57:71:82:CB:B2:71:42:11:A5:6C:86:C3:8E:28:DD:27:01:EA:DF:00 Certificate issuer: /CN=A9148CCE/serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Certificate serial: 07 Authority key identifier: 4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/8FD5A938522911F0AECD911AC4F9AE02.roa Signing time: Thu 26 Jun 2025 01:04:52 +0000 ROA not before: Thu 26 Jun 2025 01:04:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153862 IP address blocks: 165.99.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148CCE, serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Validity Not Before: Jun 26 01:04:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685c9cb3-e0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e2:8b:45:32:18:a0:63:e7:2b:38:a9:6f:a4: d1:cd:80:2e:07:02:93:54:bc:98:c0:c0:99:29:ad: 9b:3f:a2:0c:e4:95:86:23:b5:ea:05:c5:88:f0:7c: 75:cb:05:24:fd:9a:d6:9e:b2:ad:9e:38:c2:62:a6: bf:1b:0b:a4:28:12:c8:81:e1:fd:c4:5c:8b:3a:23: e8:e5:a5:e7:0b:c8:f3:2a:f3:77:46:4a:18:ca:f4: 41:fa:16:28:10:e2:31:5d:b6:bf:6d:e3:2c:11:81: 2a:e4:82:12:2b:ca:78:2a:5d:64:79:c0:74:73:a3: 45:6e:9c:e0:08:3d:02:9e:05:07:0c:ae:15:32:79: 21:d1:38:8d:34:d6:dc:12:74:e9:7a:34:f0:aa:73: 89:cb:69:e3:93:61:11:46:5c:86:2e:c6:85:3f:2f: 6c:ed:4f:af:59:54:d5:64:4f:25:6a:4f:ac:12:7e: 93:85:b7:00:6d:dd:25:ea:0c:15:43:a1:9d:8b:d9: 48:16:46:e9:b0:39:72:94:f3:8d:b0:d9:5c:02:5d: de:7c:54:ca:84:e1:c8:96:68:c1:e9:7d:eb:0c:bc: 12:c2:32:3c:f4:a1:8c:91:0f:c8:40:6f:dd:31:a0: 08:dc:9b:6b:74:7f:45:3b:b7:43:5e:53:79:1d:86: 80:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:71:82:CB:B2:71:42:11:A5:6C:86:C3:8E:28:DD:27:01:EA:DF:00 X509v3 Authority Key Identifier: keyid:4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/8FD5A938522911F0AECD911AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.36.0/23 Signature Algorithm: sha256WithRSAEncryption 32:c7:8f:78:8f:dd:a2:0a:c5:d9:7d:77:fc:dc:99:21:b2:31: 37:f4:99:38:b7:13:2d:91:cd:2a:85:2c:ba:12:b3:48:78:06: fb:05:e6:87:56:3d:a0:a9:a9:8a:b3:e7:a6:3b:e7:7b:25:48: a6:88:49:fb:16:b2:f5:0d:75:77:a7:6e:4e:be:f9:a9:5e:73: 68:b0:1e:33:47:7e:fc:7e:e6:a8:a1:64:f4:85:7d:e2:47:c5: 2a:89:3b:79:d1:04:e8:af:75:37:22:f7:b3:24:db:9b:9d:78: 3c:20:bf:27:5b:f1:ee:de:c8:87:ce:c0:21:08:8c:b0:06:e4: af:b7:d2:ec:94:d7:72:69:63:86:bd:45:0a:ca:33:96:4d:40: ad:e1:32:03:d0:f5:ca:c2:20:7a:91:65:9b:5a:5d:34:70:95: ee:37:08:d5:bc:e4:b3:3b:2b:6e:dc:2d:e4:8f:36:28:36:bc: 9a:32:98:34:f9:6a:cb:8b:28:d6:d3:24:92:df:5f:f3:b5:cd: 52:31:4c:75:d8:d2:37:a3:35:b7:a0:12:29:c0:f5:65:40:59: e2:77:12:94:66:6d:fd:0c:47:a1:e3:50:17:56:c0:35:21:25: fe:3b:f8:ff:7d:84:e6:83:57:7c:5a:64:fa:42:40:e1:7a:ed: 90:31:c6:de -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OENDRTExMC8GA1UEBRMoNEU3RkVBNzFBNDQ3QTZBMTYxNzlDMjY5N0VCRUU1NTUx OTlEQjA5ODAeFw0yNTA2MjYwMTA0NTFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWM5Y2IzLWUwZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDg4otFMhigY+crOKlvpNHNgC4HApNUvJjAwJkprZs/ogzklYYjteoFxYjwfHXL BST9mtaesq2eOMJipr8bC6QoEsiB4f3EXIs6I+jlpecLyPMq83dGShjK9EH6FigQ 4jFdtr9t4ywRgSrkghIryngqXWR5wHRzo0VunOAIPQKeBQcMrhUyeSHROI001twS dOl6NPCqc4nLaeOTYRFGXIYuxoU/L2ztT69ZVNVkTyVqT6wSfpOFtwBt3SXqDBVD oZ2L2UgWRumwOXKU842w2VwCXd58VMqE4ciWaMHpfesMvBLCMjz0oYyRD8hAb90x oAjcm2t0f0U7t0NeU3kdhoD/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUV3GCy7Jx QhGlbIbDjijdJwHq3wAwHwYDVR0jBBgwFoAUTn/qcaRHpqFhecJpfr7lVRmdsJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4Q0NFLzhCMjE5MDlDNEZF RTExRjA4MDM3OTQ4MkM0RjlBRTAyL1RuX3FjYVJIcHFGaGVjSnBmcjdsVlJtZHNK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5fcWNhUkhwcUZoZWNKcGZyN2xWUm1kc0pnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OENDRS84QjIxOTA5QzRGRUUxMUYwODAzNzk0ODJDNEY5QUUwMi84RkQ1QTkzODUy MjkxMUYwQUVDRDkxMUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjJDANBgkqhkiG9w0BAQsFAAOCAQEAMsePeI/dogrF2X13 /NyZIbIxN/SZOLcTLZHNKoUsuhKzSHgG+wXmh1Y9oKmpirPnpjvneyVIpohJ+xay 9Q11d6duTr75qV5zaLAeM0d+/H7mqKFk9IV94kfFKok7edEE6K91NyL3syTbm514 PCC/J1vx7t7Ih87AIQiMsAbkr7fS7JTXcmljhr1FCsozlk1AreEyA9D1ysIgepFl m1pdNHCV7jcI1bzkszsrbtwt5I82KDa8mjKYNPlqy4so1tMkkt9f87XNUjFMddjS N6M1t6ASKcD1ZUBZ4ncSlGZt/QxHoeNQF1bANSEl/jv4/32E5oNXfFpk+kJA4Xrt kDHG3g== -----END CERTIFICATE-----Generated at Fri Jul 4 10:50:55 2025 by rpki-client