$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/6654FB224CDE11F092AD8884C4F9AE02.roa File: 6654FB224CDE11F092AD8884C4F9AE02.roa (raw, json) Hash identifier: liQT4xahQ5o7fJUAyQXDum5T6VsmCHKLCFUQqV7AJDM= Subject key identifier: 7B:00:F1:49:E9:71:7D:FC:6B:41:33:D5:3E:EE:9E:98:7C:8A:89:57 Certificate issuer: /CN=A916523A/serialNumber=501255E9017A6378926D36AEB5EFF19C45D6574E Certificate serial: 06 Authority key identifier: 50:12:55:E9:01:7A:63:78:92:6D:36:AE:B5:EF:F1:9C:45:D6:57:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UBJV6QF6Y3iSbTaute_xnEXWV04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/6654FB224CDE11F092AD8884C4F9AE02.roa Signing time: Thu 19 Jun 2025 07:26:43 +0000 ROA not before: Thu 19 Jun 2025 07:26:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153980 IP address blocks: 165.101.32.0/23 maxlen: 23 165.101.32.0/24 maxlen: 24 165.101.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/UBJV6QF6Y3iSbTaute_xnEXWV04.crl rsync://rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/UBJV6QF6Y3iSbTaute_xnEXWV04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UBJV6QF6Y3iSbTaute_xnEXWV04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=501255E9017A6378926D36AEB5EFF19C45D6574E Validity Not Before: Jun 19 07:26:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6853bbb3-96b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:43:71:22:e9:9b:77:b5:96:98:dc:fe:53:f8: 73:41:4f:4b:06:fd:4a:93:3e:0e:2b:c5:10:a1:41: d1:42:88:6a:64:8b:62:85:06:e9:2c:dc:a6:a8:0f: 1e:20:8c:91:24:81:f4:1f:90:6e:ef:12:0a:53:9e: ca:bd:3d:6d:75:05:4b:d8:00:9e:32:4f:d3:89:30: fc:d8:ed:23:5c:c8:23:b0:61:bc:f2:3d:2e:b7:b7: 86:0c:53:af:86:a8:7a:53:5f:c2:b2:26:db:52:41: af:40:96:80:b9:2f:31:bc:92:57:74:7f:d9:e6:3d: 54:f0:a9:5e:09:20:07:ca:5b:ce:e7:3d:33:c6:e2: 24:15:77:52:6f:c2:c6:61:b0:24:1a:ac:79:e1:fc: c0:65:5e:77:18:ee:7f:d1:d7:a6:c7:57:21:5d:79: 2d:86:52:4e:a0:79:78:52:c3:7e:f4:13:33:fe:11: 85:c1:c5:6c:b4:2e:4a:70:a4:3e:fa:a0:1f:98:94: da:91:15:57:e7:64:76:90:35:32:06:49:8d:89:c1: 76:b6:e5:e2:3d:98:d5:29:a7:a5:c2:cc:ae:65:6e: a2:57:36:a2:eb:bb:65:86:e8:10:8f:d9:37:d9:76: 9f:05:6d:d3:07:81:c3:f3:47:e0:01:7a:9e:42:d0: 0e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:00:F1:49:E9:71:7D:FC:6B:41:33:D5:3E:EE:9E:98:7C:8A:89:57 X509v3 Authority Key Identifier: keyid:50:12:55:E9:01:7A:63:78:92:6D:36:AE:B5:EF:F1:9C:45:D6:57:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/UBJV6QF6Y3iSbTaute_xnEXWV04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UBJV6QF6Y3iSbTaute_xnEXWV04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/DE82CB484CDD11F0BFA08F80C4F9AE02/6654FB224CDE11F092AD8884C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.32.0/23 Signature Algorithm: sha256WithRSAEncryption 33:ad:c4:00:5b:d9:68:00:b0:a9:ea:21:7d:53:7f:87:81:8f: c4:ec:c5:63:b4:3c:46:04:3f:51:45:b2:79:57:5d:2d:ec:2b: e5:66:67:0f:4e:6f:c7:08:30:49:e7:d1:b7:54:f7:46:83:1b: 65:69:3e:ce:6a:8d:bb:82:80:b7:38:c9:90:72:6d:d4:56:19: 58:9f:55:c5:c3:66:ee:ec:8b:7f:89:12:57:ee:01:7b:23:31: 12:e4:cc:2e:b0:97:54:3c:1e:d5:d7:eb:0a:2c:94:8b:cc:74: 78:6c:d4:8f:b2:ee:7e:79:98:9c:b9:5a:86:e4:d8:95:f5:5c: 87:20:f5:55:90:3d:51:1e:7b:7e:e0:52:3e:ec:aa:31:e9:3b: da:38:b0:75:20:fd:61:2e:92:f5:20:3b:3f:1e:9f:01:2a:5f: f8:28:0f:b9:f0:f4:75:f8:96:f0:d3:59:36:fe:ca:99:03:ce: 78:de:8d:41:5f:94:87:92:26:1a:6c:17:5a:35:14:b9:be:7b: 1a:b0:46:8d:19:69:31:eb:26:78:92:38:78:35:26:db:5e:b5: 5f:d3:cb:9e:e9:2f:57:26:3d:0a:c6:25:0e:cc:13:34:4e:57: ac:4b:f2:8e:d0:3f:33:59:2e:2c:82:53:56:78:0d:e4:8c:e3: 4d:b0:df:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoNTAxMjU1RTkwMTdBNjM3ODkyNkQzNkFFQjVFRkYxOUM0 NUQ2NTc0RTAeFw0yNTA2MTkwNzI2NDNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTNiYmIzLTk2YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOQ3Ei6Zt3tZaY3P5T+HNBT0sG/UqTPg4rxRChQdFCiGpki2KFBuks3KaoDx4g jJEkgfQfkG7vEgpTnsq9PW11BUvYAJ4yT9OJMPzY7SNcyCOwYbzyPS63t4YMU6+G qHpTX8KyJttSQa9AloC5LzG8kld0f9nmPVTwqV4JIAfKW87nPTPG4iQVd1JvwsZh sCQarHnh/MBlXncY7n/R16bHVyFdeS2GUk6geXhSw370EzP+EYXBxWy0LkpwpD76 oB+YlNqRFVfnZHaQNTIGSY2JwXa25eI9mNUpp6XCzK5lbqJXNqLru2WG6BCP2TfZ dp8FbdMHgcPzR+ABep5C0A4LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUewDxSelx ffxrQTPVPu6emHyKiVcwHwYDVR0jBBgwFoAUUBJV6QF6Y3iSbTaute/xnEXWV04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0RFODJDQjQ4NENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL1VCSlY2UUY2WTNpU2JUYXV0ZV94bkVYV1Yw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUJKVjZRRjZZM2lTYlRhdXRlX3huRVhXVjA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTIzQS9ERTgyQ0I0ODRDREQxMUYwQkZBMDhGODBDNEY5QUUwMi82NjU0RkIyMjRD REUxMUYwOTJBRDg4ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlIDANBgkqhkiG9w0BAQsFAAOCAQEAM63EAFvZaACwqeoh fVN/h4GPxOzFY7Q8RgQ/UUWyeVddLewr5WZnD05vxwgwSefRt1T3RoMbZWk+zmqN u4KAtzjJkHJt1FYZWJ9VxcNm7uyLf4kSV+4BeyMxEuTMLrCXVDwe1dfrCiyUi8x0 eGzUj7LufnmYnLlahuTYlfVchyD1VZA9UR57fuBSPuyqMek72jiwdSD9YS6S9SA7 Px6fASpf+CgPufD0dfiW8NNZNv7KmQPOeN6NQV+Uh5ImGmwXWjUUub57GrBGjRlp MesmeJI4eDUm2161X9PLnukvVyY9CsYlDswTNE5XrEvyjtA/M1kuLIJTVngN5Izj TbDfqg== -----END CERTIFICATE-----Generated at Fri Jul 4 08:25:54 2025 by rpki-client