$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/F91ECAD6571B11F093AD0C10C4F9AE02.roa File: F91ECAD6571B11F093AD0C10C4F9AE02.roa (raw, json) Hash identifier: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA= Subject key identifier: 36:2C:57:F0:30:C6:32:82:D3:27:00:D7:58:2A:39:14:6E:5E:F4:3C Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 02 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/F91ECAD6571B11F093AD0C10C4F9AE02.roa Signing time: Wed 02 Jul 2025 08:10:10 +0000 ROA not before: Wed 02 Jul 2025 08:10:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154002 IP address blocks: 165.101.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Jul 2 08:10:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6864e962-6e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:74:4a:26:b8:f9:55:a3:11:6c:9b:76:7b: af:9e:39:0e:18:75:56:c0:c6:e0:43:39:dd:7e:f0: f5:7a:ae:3b:b8:9a:25:84:36:c2:71:e2:51:35:6c: 08:d3:52:8e:54:ad:13:52:8b:a4:04:69:63:df:91: d5:77:d9:8b:3f:ed:40:8a:e6:a0:5d:6c:85:b2:c5: eb:3f:b4:c9:e2:c8:1a:00:5b:9c:05:26:f4:42:5f: 49:3d:1a:cc:4a:7f:c6:10:10:71:de:9f:88:b8:c1: dc:45:8d:79:74:b3:5f:ee:d9:51:2e:83:8c:fc:b1: 23:7d:97:b1:cd:da:81:11:02:e4:14:9f:58:02:d2: 95:e3:ca:61:44:30:19:fe:cf:51:b7:09:b0:f0:31: 96:d2:2c:04:be:ba:3b:e8:81:b3:07:7b:bb:9d:c0: 3e:a3:bb:05:68:0e:eb:ff:6f:f8:9c:d5:ed:fc:57: 29:13:e8:4e:f1:9f:7e:98:d3:71:85:80:1a:e5:25: d2:1a:c6:28:2c:d3:40:c5:03:f5:c0:a2:bb:1e:27: 83:dd:36:39:d2:85:a0:f5:95:18:51:ab:26:ba:49: 1f:7d:7c:1b:6f:96:ee:29:9b:0c:b3:44:ad:16:f2: 44:f1:64:84:99:48:ca:6c:02:6d:2f:c7:6a:be:65: 81:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2C:57:F0:30:C6:32:82:D3:27:00:D7:58:2A:39:14:6E:5E:F4:3C X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/F91ECAD6571B11F093AD0C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.102.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:85:a4:fb:0c:4d:9f:c1:20:29:f7:01:6b:1f:31:59:4c:af: 24:37:cd:ce:0e:52:ee:99:be:26:a9:3f:19:04:a0:90:3a:e8: 56:41:a6:b5:31:9e:ce:03:b6:b5:0b:76:f4:c2:23:fa:b5:24: 05:46:7d:03:7e:24:27:0b:37:b4:97:a5:12:a7:8f:40:a6:c1: ee:f5:99:ac:c9:84:48:3a:ee:7b:57:57:8c:61:98:ec:2d:a8: 09:7e:49:4a:cf:9b:5e:69:27:46:0a:ff:d4:90:85:ee:3a:67: df:ba:bc:0f:18:f4:c1:9d:41:18:02:e4:61:3c:14:a6:1f:96: 45:1a:9b:f8:8d:3c:1f:fe:3b:94:95:47:0e:0e:10:dd:d9:96: 02:f7:27:ab:69:e1:a1:8e:9e:30:0a:47:ea:1a:67:70:55:2e: 31:c3:45:b5:28:c2:82:7a:fc:43:3a:6a:61:4c:a1:a0:f3:11: e7:70:ba:91:3d:85:be:15:6c:2d:b8:aa:59:a7:01:ad:90:6d: 51:15:89:f2:7d:24:75:00:04:02:4d:80:64:75:86:b8:94:fc: 29:61:c6:71:df:31:b6:56:98:d6:04:ff:66:cf:3e:28:22:1a: dc:f6:74:6c:29:e8:70:24:21:c7:33:c8:0f:3e:de:81:13:d8: 5a:af:43:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA3MDIwODEwMTBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjRlOTYyLTZlMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+bHRKJrj5VaMRbJt2e6+eOQ4YdVbAxuBDOd1+8PV6rju4miWENsJx4lE1bAjT Uo5UrRNSi6QEaWPfkdV32Ys/7UCK5qBdbIWyxes/tMniyBoAW5wFJvRCX0k9GsxK f8YQEHHen4i4wdxFjXl0s1/u2VEug4z8sSN9l7HN2oERAuQUn1gC0pXjymFEMBn+ z1G3CbDwMZbSLAS+ujvogbMHe7udwD6juwVoDuv/b/ic1e38VykT6E7xn36Y03GF gBrlJdIaxigs00DFA/XAorseJ4PdNjnShaD1lRhRqya6SR99fBtvlu4pmwyzRK0W 8kTxZISZSMpsAm0vx2q+ZYHnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNixX8DDG MoLTJwDXWCo5FG5e9DwwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DNTU5NDI0QTU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi9GOTFFQ0FENjU3 MUIxMUYwOTNBRDBDMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlZjANBgkqhkiG9w0BAQsFAAOCAQEAnoWk+wxNn8EgKfcB ax8xWUyvJDfNzg5S7pm+Jqk/GQSgkDroVkGmtTGezgO2tQt29MIj+rUkBUZ9A34k Jws3tJelEqePQKbB7vWZrMmESDrue1dXjGGY7C2oCX5JSs+bXmknRgr/1JCF7jpn 37q8Dxj0wZ1BGALkYTwUph+WRRqb+I08H/47lJVHDg4Q3dmWAvcnq2nhoY6eMApH 6hpncFUuMcNFtSjCgnr8QzpqYUyhoPMR53C6kT2FvhVsLbiqWacBrZBtURWJ8n0k dQAEAk2AZHWGuJT8KWHGcd8xtlaY1gT/Zs8+KCIa3PZ0bCnocCQhxzPIDz7egRPY Wq9DiA== -----END CERTIFICATE-----Generated at Fri Jul 4 06:44:54 2025 by rpki-client