$ rpki-client -vvf rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/559FC8C054F411F08DC15C53C4F9AE02.roa File: 559FC8C054F411F08DC15C53C4F9AE02.roa (raw, json) Hash identifier: Bm8WKhY+hNcg+fjUuluI2/RvbnR7gkU6ugwO04YyI/s= Subject key identifier: B4:25:70:1C:CC:53:9A:8A:62:FA:D0:49:3E:86:CE:B9:3D:FD:A6:D8 Certificate issuer: /CN=A91656C7/serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Certificate serial: 09 Authority key identifier: 58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/559FC8C054F411F08DC15C53C4F9AE02.roa Signing time: Sun 29 Jun 2025 14:21:23 +0000 ROA not before: Sun 29 Jun 2025 14:21:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153789 IP address blocks: 165.101.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91656C7, serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Validity Not Before: Jun 29 14:21:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68614be3-1018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:50:cd:ef:dd:1d:8f:bc:c6:0b:50:79:aa:78: 2b:b5:12:10:c8:b6:ff:47:fd:9e:99:b6:66:49:95: a8:b2:db:5b:b5:fd:20:13:e8:6c:f3:91:ed:64:de: e1:6e:cb:84:b0:93:62:91:2b:55:21:44:94:37:ae: 6b:70:19:94:5f:8c:c7:a4:db:01:78:c0:ad:2e:47: 0e:63:f3:6d:70:99:20:1f:78:ca:e3:0d:e4:e3:89: 0e:11:e2:b9:81:f9:f7:48:17:54:3a:23:ad:65:62: a7:15:f7:dd:9e:2b:8a:b9:51:d8:c6:a7:a9:69:1a: 8c:17:eb:3b:a5:cc:5c:dd:ab:d0:02:7e:59:1c:1a: 20:32:48:28:0b:25:ad:cc:df:5d:c0:aa:f5:33:6d: 52:8b:4a:76:03:87:ca:f1:74:5c:a0:fc:96:f3:86: 35:23:01:3b:45:d0:20:3f:38:68:e6:c6:8c:1b:2b: 76:07:cc:8d:d4:cc:93:f7:b5:36:f5:6c:49:cd:e7: 66:b1:d9:e3:91:58:1a:02:e8:82:88:db:91:3e:c2: c7:c9:b7:9f:28:26:c3:a1:e1:49:d5:80:dc:f1:84: f5:06:92:84:3f:4a:e6:de:d1:a1:05:ea:ef:3e:6c: c0:66:6d:03:c0:d0:17:85:f5:8b:37:e5:de:c2:e4: bc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:25:70:1C:CC:53:9A:8A:62:FA:D0:49:3E:86:CE:B9:3D:FD:A6:D8 X509v3 Authority Key Identifier: keyid:58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/559FC8C054F411F08DC15C53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.58.0/24 Signature Algorithm: sha256WithRSAEncryption 22:0a:30:13:c8:49:74:0c:a2:b9:59:c6:da:dc:f5:95:17:96: 60:a8:3a:db:c8:f4:28:a0:28:76:17:3d:29:c4:18:bb:67:f1: 3d:21:46:73:e8:04:a5:13:e7:6e:7d:15:83:ec:01:0f:99:64: 5e:60:54:b2:a7:b1:c1:ec:98:c1:d2:9f:79:96:8e:19:75:5d: 26:09:2b:dd:bb:b2:62:ae:c0:40:86:74:4d:cd:1b:cf:26:3c: ef:84:11:13:0b:7b:b4:0d:4c:4c:8f:11:76:c7:cf:cd:14:bd: 40:e2:40:95:19:cb:67:96:f6:c0:2b:3a:c6:a4:93:7b:8e:88: b2:3d:bd:3a:2e:83:00:c8:0a:47:96:d0:4a:65:a7:33:25:26: f0:1c:15:a2:be:2d:71:d1:ec:f1:98:b5:22:e4:29:b8:52:bc: 29:5d:8c:a4:39:b9:16:9b:df:c1:98:82:f2:bf:51:b7:85:cc: 46:58:62:cc:af:db:8b:a8:75:6f:6f:f4:85:42:a9:c7:a4:4c: a5:f4:d3:b9:c8:ef:f0:81:9e:dd:a2:eb:26:f2:2f:04:c7:1f: 7a:72:9d:d1:37:9b:c5:9e:0b:f9:13:38:09:69:3c:55:05:65: 90:00:90:71:fa:e5:62:29:76:39:cf:7b:d4:cb:5a:4b:a1:44: bb:b6:9b:7f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTZDNzExMC8GA1UEBRMoNThBMjFFN0IyM0ZBRjIxQjg5RDM0MjcwRUI1NkY3NDQ5 QzIzOTk4NjAeFw0yNTA2MjkxNDIxMjNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjE0YmUzLTEwMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHUM3v3R2PvMYLUHmqeCu1EhDItv9H/Z6ZtmZJlaiy21u1/SAT6Gzzke1k3uFu y4Swk2KRK1UhRJQ3rmtwGZRfjMek2wF4wK0uRw5j821wmSAfeMrjDeTjiQ4R4rmB +fdIF1Q6I61lYqcV992eK4q5UdjGp6lpGowX6zulzFzdq9ACflkcGiAySCgLJa3M 313AqvUzbVKLSnYDh8rxdFyg/JbzhjUjATtF0CA/OGjmxowbK3YHzI3UzJP3tTb1 bEnN52ax2eORWBoC6IKI25E+wsfJt58oJsOh4UnVgNzxhPUGkoQ/Sube0aEF6u8+ bMBmbQPA0BeF9Ys35d7C5LwVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtCVwHMxT mopi+tBJPobOuT39ptgwHwYDVR0jBBgwFoAUWKIeeyP68huJ00Jw61b3RJwjmYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NkM3Lzg1REVEQUQ4NTBB NTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1SjAwSnc2MWIzUkp3am1Z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0tJZWV5UDY4aHVKMDBKdzYxYjNSSndqbVlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTZDNy84NURFREFEODUwQTUxMUYwQjJEMURFNEZDNEY5QUUwMi81NTlGQzhDMDU0 RjQxMUYwOERDMTVDNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlOjANBgkqhkiG9w0BAQsFAAOCAQEAIgowE8hJdAyiuVnG 2tz1lReWYKg628j0KKAodhc9KcQYu2fxPSFGc+gEpRPnbn0Vg+wBD5lkXmBUsqex weyYwdKfeZaOGXVdJgkr3buyYq7AQIZ0Tc0bzyY874QREwt7tA1MTI8RdsfPzRS9 QOJAlRnLZ5b2wCs6xqSTe46Isj29Oi6DAMgKR5bQSmWnMyUm8BwVor4tcdHs8Zi1 IuQpuFK8KV2MpDm5FpvfwZiC8r9Rt4XMRlhizK/bi6h1b2/0hUKpx6RMpfTTucjv 8IGe3aLrJvIvBMcfenKd0TebxZ4L+RM4CWk8VQVlkACQcfrlYil2Oc971MtaS6FE u7abfw== -----END CERTIFICATE-----Generated at Thu Jul 3 23:04:28 2025 by rpki-client