$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/458F65E8572511F0BE0E492AC4F9AE02.roa File: 458F65E8572511F0BE0E492AC4F9AE02.roa (raw, json) Hash identifier: 8eHBf/IW6Kdn5rzP/J/PseLHB5iblvBzJEKUGKo/wC0= Subject key identifier: 33:2F:7F:62:F0:C9:5B:E8:0D:AE:E5:CE:52:79:29:CE:B9:FF:DE:80 Certificate issuer: /CN=A91A4543/serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Certificate serial: 15 Authority key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/458F65E8572511F0BE0E492AC4F9AE02.roa Signing time: Wed 02 Jul 2025 09:16:44 +0000 ROA not before: Wed 02 Jul 2025 09:16:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 8075 IP address blocks: 165.99.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Validity Not Before: Jul 2 09:16:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6864f8fc-7aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:c1:60:97:1e:9f:cd:93:17:56:55:85:c0: f0:21:7f:6a:77:83:df:c1:62:8b:54:73:37:19:6d: 7b:8b:c5:24:aa:a2:04:1d:2e:ca:9e:5a:4c:46:58: 0d:d2:25:ac:e4:04:c6:1a:5c:3f:2a:99:32:c5:94: 37:6f:3b:cd:e9:44:8d:c5:b8:10:d4:3c:45:64:da: c1:6e:a1:24:ef:25:9b:31:d6:4d:40:6c:72:c6:7c: 20:2f:d8:cd:f9:30:33:80:18:03:f9:1d:9d:a6:fb: 76:bc:96:5d:b4:37:53:ec:9b:72:c8:dd:c8:e0:d8: 73:87:71:85:92:43:79:ec:bf:29:44:71:13:ae:25: bf:99:5e:4d:95:a8:59:9b:4a:5f:3e:08:c3:94:c4: 28:0b:be:40:21:8c:d4:c9:08:9f:38:6f:16:2d:24: 18:70:c5:5b:94:54:cd:ef:7c:96:a4:82:63:09:fa: 1d:44:3d:e0:52:55:c4:10:1e:f0:16:96:07:3b:2f: e4:a0:25:1e:a2:2f:38:61:bb:fb:54:30:7e:cd:bd: 9c:49:07:c5:30:0e:09:84:09:2f:28:ac:3e:1c:97: 98:f4:ee:d0:39:97:3b:b9:1a:68:25:bc:06:5e:10: e1:9d:c5:9f:3f:1e:92:b6:fe:f5:3a:18:63:00:e9: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:2F:7F:62:F0:C9:5B:E8:0D:AE:E5:CE:52:79:29:CE:B9:FF:DE:80 X509v3 Authority Key Identifier: keyid:17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/458F65E8572511F0BE0E492AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.141.0/24 Signature Algorithm: sha256WithRSAEncryption 01:a7:3b:e2:b5:9e:7c:93:21:f8:59:c5:55:d8:64:d8:0c:22: 59:70:48:fa:43:0c:3c:86:f2:87:3e:a8:d1:08:31:2b:4c:b2: fe:6d:8a:e6:39:2f:d3:88:53:e7:e1:fe:1f:66:be:46:0b:a6: 1a:0c:b1:ae:3d:34:92:ac:75:3a:43:78:2c:49:ac:81:ae:44: f3:12:9f:78:9c:17:22:ed:d5:56:70:58:75:10:e8:95:ab:f7: 3c:31:10:ce:4d:33:ab:da:59:cb:d9:fc:8d:77:e6:7d:5e:dc: e4:08:ac:29:bf:4c:aa:bc:1b:0f:dd:74:53:ea:f7:0e:43:6b: 43:1a:7a:c3:8b:fd:56:ea:83:86:08:b8:e4:3e:ce:bc:5f:c6: fb:7a:e3:a1:4b:5e:c2:da:4f:3e:d7:ff:c9:ad:cc:54:b0:12: 7d:0a:87:b3:c8:d4:38:3f:b4:7b:fb:96:53:ad:64:b0:17:1e: ae:d7:c9:cb:96:8f:92:34:8e:e5:9c:1d:91:08:66:7c:57:0e: a3:06:cc:5e:7d:4a:7b:28:11:b9:8f:48:83:e0:97:1f:0d:ea: 2c:33:f9:e6:a7:ee:47:80:5e:a5:a1:bc:85:b0:bd:67:20:3b: e5:1f:52:31:df:c8:f3:c6:8d:44:bc:c1:58:52:39:68:1b:81: 03:b4:3b:11 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDU0MzExMC8GA1UEBRMoMTc4MDA5NkNDOTBBQjZBRUFGMDhENzlBQjE4QzU0QzdC NzdBNTNBMDAeFw0yNTA3MDIwOTE2NDRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjRmOGZjLTdhYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+9sFglx6fzZMXVlWFwPAhf2p3g9/BYotUczcZbXuLxSSqogQdLsqeWkxGWA3S JazkBMYaXD8qmTLFlDdvO83pRI3FuBDUPEVk2sFuoSTvJZsx1k1AbHLGfCAv2M35 MDOAGAP5HZ2m+3a8ll20N1Psm3LI3cjg2HOHcYWSQ3nsvylEcROuJb+ZXk2VqFmb Sl8+CMOUxCgLvkAhjNTJCJ84bxYtJBhwxVuUVM3vfJakgmMJ+h1EPeBSVcQQHvAW lgc7L+SgJR6iLzhhu/tUMH7NvZxJB8UwDgmECS8orD4cl5j07tA5lzu5GmglvAZe EOGdxZ8/HpK2/vU6GGMA6SiFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMy9/YvDJ W+gNruXOUnkpzrn/3oAwHwYDVR0jBBgwFoAUF4AJbMkKtq6vCNeasYxUx7d6U6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NTQzL0FCNzE5RkNFM0I2 NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtLdHE2dkNOZWFzWXhVeDdkNlU2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjRBSmJNa0t0cTZ2Q05lYXNZeFV4N2Q2VTZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU0My9BQjcxOUZDRTNCNjUxMUYwODc0MkRBMzlDNEY5QUUwMi80NThGNjVFODU3 MjUxMUYwQkUwRTQ5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjjTANBgkqhkiG9w0BAQsFAAOCAQEAAac74rWefJMh+FnF Vdhk2AwiWXBI+kMMPIbyhz6o0QgxK0yy/m2K5jkv04hT5+H+H2a+RgumGgyxrj00 kqx1OkN4LEmsga5E8xKfeJwXIu3VVnBYdRDolav3PDEQzk0zq9pZy9n8jXfmfV7c 5AisKb9MqrwbD910U+r3DkNrQxp6w4v9VuqDhgi45D7OvF/G+3rjoUtewtpPPtf/ ya3MVLASfQqHs8jUOD+0e/uWU61ksBcertfJy5aPkjSO5ZwdkQhmfFcOowbMXn1K eygRuY9Ig+CXHw3qLDP55qfuR4BepaG8hbC9ZyA75R9SMd/I88aNRLzBWFI5aBuB A7Q7EQ== -----END CERTIFICATE-----Generated at Fri Jul 4 22:03:36 2025 by rpki-client