$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/C2A46ED64FFD11F085A32C7CC4F9AE02.roa File: C2A46ED64FFD11F085A32C7CC4F9AE02.roa (raw, json) Hash identifier: kAJy+kbDfHSxGirPMu77eyrxHf+CDgBjh/BH4GL9KVs= Subject key identifier: 16:D1:BE:BE:4A:DC:3A:FB:52:DD:BA:E9:2C:27:E2:A7:48:C6:E3:89 Certificate issuer: /CN=A9169E54/serialNumber=EA603DF2BCA9ED5BB7BD20C1F4BC51D797C0A63F Certificate serial: 02 Authority key identifier: EA:60:3D:F2:BC:A9:ED:5B:B7:BD:20:C1:F4:BC:51:D7:97:C0:A6:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6mA98ryp7Vu3vSDB9LxR15fApj8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/C2A46ED64FFD11F085A32C7CC4F9AE02.roa Signing time: Mon 23 Jun 2025 06:46:16 +0000 ROA not before: Mon 23 Jun 2025 06:46:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153981 IP address blocks: 165.101.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/6mA98ryp7Vu3vSDB9LxR15fApj8.crl rsync://rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/6mA98ryp7Vu3vSDB9LxR15fApj8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6mA98ryp7Vu3vSDB9LxR15fApj8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E54, serialNumber=EA603DF2BCA9ED5BB7BD20C1F4BC51D797C0A63F Validity Not Before: Jun 23 06:46:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858f838-a8c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b6:78:ff:81:ab:97:bc:6f:f0:c1:f0:c8:c6: 71:24:3d:97:99:cf:21:54:80:5e:33:e4:49:3a:80: 76:5c:18:88:fd:f1:02:d5:50:8d:63:ff:71:44:38: df:15:f6:79:bf:3c:1d:37:c7:64:4f:43:e1:1d:bb: 14:40:48:77:b8:90:70:79:5d:07:cc:75:f0:66:99: 42:1d:6f:70:22:8d:84:c3:5b:dc:67:11:48:06:2c: 27:6d:e0:18:57:8b:6d:7a:cb:8e:fd:dd:70:65:34: 89:e9:b3:46:0c:d4:e4:dc:96:16:89:a9:eb:88:83: fe:7c:66:07:e8:88:19:c9:73:c4:de:ef:9d:e8:05: 44:6e:fb:08:b2:08:2c:f9:2e:52:ee:49:6d:d9:70: 20:61:c1:e1:5d:e0:08:1c:e8:f0:ca:98:c5:bd:b8: 1e:06:b7:70:34:9b:5d:a3:70:b3:b3:6a:7d:b9:18: 39:8b:95:54:d2:c7:c2:18:12:d7:73:b7:b1:4c:7e: 04:4b:09:89:9b:c3:4c:80:11:60:c9:4c:8c:6a:84: f7:6a:a4:2c:3a:6f:8c:b6:06:4a:3d:d0:51:9b:29: c8:46:0a:3b:34:f4:8f:38:71:98:2b:17:02:46:c0: aa:76:4a:ef:97:03:ef:b5:7c:61:65:5d:72:34:c7: 63:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D1:BE:BE:4A:DC:3A:FB:52:DD:BA:E9:2C:27:E2:A7:48:C6:E3:89 X509v3 Authority Key Identifier: keyid:EA:60:3D:F2:BC:A9:ED:5B:B7:BD:20:C1:F4:BC:51:D7:97:C0:A6:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/6mA98ryp7Vu3vSDB9LxR15fApj8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6mA98ryp7Vu3vSDB9LxR15fApj8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E54/D9EED1004FFB11F0AAEB3877C4F9AE02/C2A46ED64FFD11F085A32C7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.22.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:40:d7:ab:17:71:b6:bd:3d:a1:f5:9a:83:f4:0f:0b:3e:ec: 54:93:bf:6c:d6:7b:2f:3e:e9:44:d9:db:b2:e2:f0:8d:9a:0e: c5:85:37:88:bd:e7:2b:e4:04:f4:d7:24:e9:f6:32:6a:48:db: 00:2a:11:f7:de:0e:cb:dd:8d:ca:10:15:62:b1:10:ec:54:36: cc:94:ca:28:c3:c0:16:25:0a:e7:50:f0:b1:55:86:0e:86:be: 27:9e:eb:19:27:ac:28:f0:10:5b:56:0e:e9:e8:8e:53:8b:d1: 45:f1:20:f6:4f:09:41:3c:eb:c6:33:51:0f:85:4b:7c:89:d8: 58:46:4b:f9:09:5c:7d:96:d4:58:fa:0d:a8:43:db:a0:e1:9e: 35:fa:c4:91:3e:54:6a:44:cc:f7:01:99:8e:75:7f:f2:aa:73: 17:0c:a2:2a:a0:46:c3:5d:f4:0d:08:14:7e:d3:92:56:14:3a: 2c:c4:3d:cc:6a:cc:16:e8:04:0f:03:51:da:ca:47:07:23:e8: 9a:8b:24:35:0e:f3:c5:70:43:26:a5:73:2d:e1:32:a2:e7:72: c1:5e:84:fc:de:20:e7:60:0c:01:01:bb:25:d1:8f:0b:8b:ae: c5:29:ac:0f:3c:6e:57:9c:13:6b:e3:e9:45:09:b0:0d:54:1d: 1d:93:cb:07 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUU1NDExMC8GA1UEBRMoRUE2MDNERjJCQ0E5RUQ1QkI3QkQyMEMxRjRCQzUxRDc5 N0MwQTYzRjAeFw0yNTA2MjMwNjQ2MTZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NThmODM4LWE4YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCatnj/gauXvG/wwfDIxnEkPZeZzyFUgF4z5Ek6gHZcGIj98QLVUI1j/3FEON8V 9nm/PB03x2RPQ+EduxRASHe4kHB5XQfMdfBmmUIdb3AijYTDW9xnEUgGLCdt4BhX i216y4793XBlNInps0YM1OTclhaJqeuIg/58ZgfoiBnJc8Te753oBURu+wiyCCz5 LlLuSW3ZcCBhweFd4Agc6PDKmMW9uB4Gt3A0m12jcLOzan25GDmLlVTSx8IYEtdz t7FMfgRLCYmbw0yAEWDJTIxqhPdqpCw6b4y2Bko90FGbKchGCjs09I84cZgrFwJG wKp2Su+XA++1fGFlXXI0x2PPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFtG+vkrc OvtS3brpLCfip0jG44kwHwYDVR0jBBgwFoAU6mA98ryp7Vu3vSDB9LxR15fApj8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RTU0L0Q5RUVEMTAwNEZG QjExRjBBQUVCMzg3N0M0RjlBRTAyLzZtQTk4cnlwN1Z1M3ZTREI5THhSMTVmQXBq OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNm1BOThyeXA3VnUzdlNEQjlMeFIxNWZBcGo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUU1NC9EOUVFRDEwMDRGRkIxMUYwQUFFQjM4NzdDNEY5QUUwMi9DMkE0NkVENjRG RkQxMUYwODVBMzJDN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlFjANBgkqhkiG9w0BAQsFAAOCAQEALkDXqxdxtr09ofWa g/QPCz7sVJO/bNZ7Lz7pRNnbsuLwjZoOxYU3iL3nK+QE9Nck6fYyakjbACoR994O y92NyhAVYrEQ7FQ2zJTKKMPAFiUK51DwsVWGDoa+J57rGSesKPAQW1YO6eiOU4vR RfEg9k8JQTzrxjNRD4VLfInYWEZL+QlcfZbUWPoNqEPboOGeNfrEkT5UakTM9wGZ jnV/8qpzFwyiKqBGw130DQgUftOSVhQ6LMQ9zGrMFugEDwNR2spHByPomoskNQ7z xXBDJqVzLeEyoudywV6E/N4g52AMAQG7JdGPC4uuxSmsDzxuV5wTa+PpRQmwDVQd HZPLBw== -----END CERTIFICATE-----Generated at Fri Jul 4 13:34:29 2025 by rpki-client