$ rpki-client -vvf rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/A78653B2561F11F09624D128C4F9AE02.roa File: A78653B2561F11F09624D128C4F9AE02.roa (raw, json) Hash identifier: v13B1iQ4hhFI0k63jpGnWfr1WzzOqwI0W1kZRI7DnNY= Subject key identifier: 4D:B0:B9:0A:2B:D8:67:D4:2F:3C:70:44:CA:8E:9F:14:36:85:95:73 Certificate issuer: /CN=A917DFDA/serialNumber=81A657EAAC7554CAB7A1A288F5B3FEEDD8A5CC4B Certificate serial: 04 Authority key identifier: 81:A6:57:EA:AC:75:54:CA:B7:A1:A2:88:F5:B3:FE:ED:D8:A5:CC:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gaZX6qx1VMq3oaKI9bP-7dilzEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/A78653B2561F11F09624D128C4F9AE02.roa Signing time: Tue 01 Jul 2025 02:04:00 +0000 ROA not before: Tue 01 Jul 2025 02:04:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152692 IP address blocks: 165.101.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/gaZX6qx1VMq3oaKI9bP-7dilzEs.crl rsync://rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/gaZX6qx1VMq3oaKI9bP-7dilzEs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gaZX6qx1VMq3oaKI9bP-7dilzEs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DFDA, serialNumber=81A657EAAC7554CAB7A1A288F5B3FEEDD8A5CC4B Validity Not Before: Jul 1 02:04:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68634210-e71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:37:c0:c4:77:c1:2b:c8:8c:2d:d0:66:83: 6b:4b:f8:b7:e7:9f:61:d1:32:7e:1d:86:97:3c:3f: 67:f5:8d:ad:8d:d5:9b:b5:5a:96:e1:c4:44:f4:ad: fc:0d:50:ad:cb:87:51:f8:52:53:7c:5d:04:fc:95: e8:be:9c:a6:8d:90:df:ee:00:c3:81:8e:54:ab:fd: ca:e6:50:25:ad:f2:fb:5e:40:59:c2:42:6a:90:cf: 10:ee:9c:8f:21:38:6c:04:d1:26:9a:d7:80:02:fb: 09:5d:d5:73:ca:bc:27:50:bc:f4:1c:69:7d:38:3b: bb:17:3e:40:29:0f:18:63:7d:e7:d1:0a:64:57:0a: bb:b6:40:ae:32:28:b5:8a:17:d8:1a:f4:34:33:de: c8:62:b7:24:9a:59:10:4c:cb:80:0d:5e:b8:c0:72: 1c:7b:82:40:82:4e:8d:c9:88:e3:98:a4:4c:96:7e: 65:5c:7f:c4:aa:09:82:43:a4:42:a1:ee:22:5b:8e: 29:e7:42:fe:fd:a1:32:06:1c:d1:11:2b:f9:2b:30: 98:6c:08:9e:88:fc:1f:5a:c7:83:98:52:fe:9e:d9: 18:1c:e0:9e:91:1c:f0:da:9c:4b:1a:e2:a3:f5:f0: bf:9b:e3:68:44:68:d6:4d:fc:65:41:30:70:4f:d7: 80:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B0:B9:0A:2B:D8:67:D4:2F:3C:70:44:CA:8E:9F:14:36:85:95:73 X509v3 Authority Key Identifier: keyid:81:A6:57:EA:AC:75:54:CA:B7:A1:A2:88:F5:B3:FE:ED:D8:A5:CC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/gaZX6qx1VMq3oaKI9bP-7dilzEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gaZX6qx1VMq3oaKI9bP-7dilzEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DFDA/7613F316531311F085DECE79C4F9AE02/A78653B2561F11F09624D128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.83.0/24 Signature Algorithm: sha256WithRSAEncryption 81:85:23:1b:05:ab:30:a9:70:95:67:95:7e:9b:97:6f:5e:7d: 40:ae:d4:c4:52:af:74:af:15:c0:c2:61:c5:0d:9e:9d:3f:b6: 01:e1:b9:4f:f3:92:b8:31:14:bc:3b:ca:11:a1:84:3f:b3:00: f6:1b:96:1b:b2:02:b1:1b:32:a0:91:a5:79:1f:cf:18:9d:f8: 31:7e:9f:cc:ea:11:5d:69:c4:b0:40:9f:98:63:95:27:0f:2f: 64:b3:f1:ab:cb:28:75:5c:63:ac:f9:00:6e:cd:4b:0c:b6:c6: 6f:c4:62:25:49:f8:2c:16:5b:08:f5:ea:7f:15:35:fd:1f:5d: 77:3c:e1:21:a5:2e:dc:a4:3a:6d:3e:a7:d7:a0:77:29:ff:0f: d7:bf:66:22:85:57:fe:db:7b:54:0d:6e:ed:d4:42:34:60:9a: 25:6c:62:a6:d4:7e:63:e6:3c:75:52:af:c0:4b:6e:13:33:5e: 08:ea:2c:b1:95:b6:b1:8e:f0:ae:b7:2a:dd:90:61:61:a9:c9: ad:40:19:27:7a:37:1f:77:3f:8a:96:8e:12:13:aa:33:c1:d0: 5b:47:d5:2a:83:18:da:da:6c:83:74:cb:cd:da:5a:85:8f:40: 88:df:eb:8c:bf:45:a4:ef:8a:06:a7:33:63:3a:d8:f7:6e:01: d5:3d:d4:42 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REZEQTExMC8GA1UEBRMoODFBNjU3RUFBQzc1NTRDQUI3QTFBMjg4RjVCM0ZFRURE OEE1Q0M0QjAeFw0yNTA3MDEwMjA0MDBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjM0MjEwLWU3MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt5zfAxHfBK8iMLdBmg2tL+Lfnn2HRMn4dhpc8P2f1ja2N1Zu1WpbhxET0rfwN UK3Lh1H4UlN8XQT8lei+nKaNkN/uAMOBjlSr/crmUCWt8vteQFnCQmqQzxDunI8h OGwE0Saa14AC+wld1XPKvCdQvPQcaX04O7sXPkApDxhjfefRCmRXCru2QK4yKLWK F9ga9DQz3shitySaWRBMy4ANXrjAchx7gkCCTo3JiOOYpEyWfmVcf8SqCYJDpEKh 7iJbjinnQv79oTIGHNERK/krMJhsCJ6I/B9ax4OYUv6e2Rgc4J6RHPDanEsa4qP1 8L+b42hEaNZN/GVBMHBP14B1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTbC5CivY Z9QvPHBEyo6fFDaFlXMwHwYDVR0jBBgwFoAUgaZX6qx1VMq3oaKI9bP+7dilzEsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdERkRBLzc2MTNGMzE2NTMx MzExRjA4NURFQ0U3OUM0RjlBRTAyL2dhWlg2cXgxVk1xM29hS0k5YlAtN2RpbHpF cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ2FaWDZxeDFWTXEzb2FLSTliUC03ZGlsekVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REZEQS83NjEzRjMxNjUzMTMxMUYwODVERUNFNzlDNEY5QUUwMi9BNzg2NTNCMjU2 MUYxMUYwOTYyNEQxMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlUzANBgkqhkiG9w0BAQsFAAOCAQEAgYUjGwWrMKlwlWeV fpuXb159QK7UxFKvdK8VwMJhxQ2enT+2AeG5T/OSuDEUvDvKEaGEP7MA9huWG7IC sRsyoJGleR/PGJ34MX6fzOoRXWnEsECfmGOVJw8vZLPxq8sodVxjrPkAbs1LDLbG b8RiJUn4LBZbCPXqfxU1/R9ddzzhIaUu3KQ6bT6n16B3Kf8P179mIoVX/tt7VA1u 7dRCNGCaJWxiptR+Y+Y8dVKvwEtuEzNeCOossZW2sY7wrrcq3ZBhYanJrUAZJ3o3 H3c/ipaOEhOqM8HQW0fVKoMY2tpsg3TLzdpahY9AiN/rjL9FpO+KBqczYzrY924B 1T3UQg== -----END CERTIFICATE-----Generated at Thu Jul 3 13:24:39 2025 by rpki-client