$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AC4DF5AE54D411F0A181951CC4F9AE02.roa File: AC4DF5AE54D411F0A181951CC4F9AE02.roa (raw, json) Hash identifier: iBi58Q1dU/3I57/fNGt+yhK0pHyjYZliFm4XQcSQ4ik= Subject key identifier: 73:A1:11:C9:F5:E2:E0:0E:30:0D:9A:A3:D1:EC:6D:F8:3F:96:11:00 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0610 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AC4DF5AE54D411F0A181951CC4F9AE02.roa Signing time: Sun 29 Jun 2025 10:34:45 +0000 ROA not before: Sun 29 Jun 2025 10:34:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153941 IP address blocks: 165.99.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jun 29 10:34:45 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=686116c5-470d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:51:9c:db:2e:9c:42:3b:6f:0a:db:82:e3:7f: df:aa:0a:6d:c3:f8:ce:29:69:a6:e4:99:b0:21:52: a9:7f:c0:0a:38:9c:17:cf:24:70:8d:b3:ea:d9:73: 16:62:a4:f2:e1:35:4c:79:1b:32:49:f0:b7:3d:10: a9:fb:b3:35:ce:4b:f6:ad:5b:92:5d:b6:ef:e4:e2: 7c:bf:e2:63:98:bf:2f:fd:bd:1b:a6:d5:bc:28:8f: e9:59:05:82:e9:45:73:31:af:1e:36:b6:d6:57:ee: 1c:61:30:ec:c8:ed:40:d7:bf:0f:ca:cd:d4:7f:07: b8:a8:9a:fd:97:9c:91:5d:76:54:2c:9e:25:7e:a4: 45:80:ef:5a:3b:41:6c:54:b9:f3:d1:08:18:ea:9b: 04:02:39:ff:fe:6a:de:cf:e5:11:a0:c2:f3:91:21: 73:cd:24:07:9d:a5:d6:22:3c:6d:90:4f:74:a6:1c: 6c:4f:65:fe:e6:01:ac:09:82:93:f9:1c:7c:15:2d: e5:fc:a1:da:80:50:8c:36:56:53:5a:20:74:21:21: 48:27:0c:b0:21:26:98:d9:8d:02:93:e4:20:67:f5: bc:9f:a8:d8:94:46:1b:76:ae:ba:43:49:3a:73:28: 57:f9:c8:1c:64:ce:68:21:ea:3a:0d:79:fa:d3:88: 1b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A1:11:C9:F5:E2:E0:0E:30:0D:9A:A3:D1:EC:6D:F8:3F:96:11:00 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AC4DF5AE54D411F0A181951CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.182.0/23 Signature Algorithm: sha256WithRSAEncryption b0:77:5c:48:53:14:a3:01:80:89:63:88:4e:ee:40:60:6b:6f: f8:85:0c:89:aa:1f:d2:5e:76:c0:a8:0d:e2:41:fa:2a:2f:32: 45:75:d2:52:9b:3b:3d:6c:b6:13:1b:b1:9d:70:e1:c0:0b:b7: b4:e6:23:6c:5a:70:ef:28:1e:a4:ec:8a:7e:e6:66:fa:1d:a6: 7f:0c:af:f2:62:e3:96:90:94:99:bf:d9:3b:31:0b:f7:58:a3: 85:d5:9e:a1:96:60:d5:d8:83:6b:7a:dd:46:2a:b2:4c:97:2f: bc:80:75:75:c1:d4:23:47:b4:fe:11:d7:0e:21:9d:d3:de:ed: 96:64:5f:9f:37:04:64:0f:06:87:7f:8e:a4:82:11:d5:6c:ef: 50:31:a3:ee:5a:9c:64:6c:a4:a2:57:40:5d:52:49:80:d1:5c: f5:f4:e6:bf:18:74:f2:b6:ec:25:07:db:2f:0e:52:e4:b7:54: 25:3d:ed:bf:ba:a9:74:86:49:9d:7a:7c:1b:90:91:7e:4e:18: 49:fb:f2:1b:b9:75:0f:11:b2:34:df:55:c8:88:7d:03:3e:92: f6:0f:6a:ca:89:8c:ed:b8:aa:c6:2f:16:07:af:39:7b:e8:2a: 81:53:21:07:66:6a:a0:d6:61:dc:13:43:cd:bc:4e:f7:27:d9: 46:fb:6c:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwNjI5MTAzNDQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYxMTZjNS00NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FGc2y6cQjtvCtuC43/fqgptw/jOKWmm5JmwIVKpf8AKOJwXzyRwjbPq2XMW YqTy4TVMeRsySfC3PRCp+7M1zkv2rVuSXbbv5OJ8v+JjmL8v/b0bptW8KI/pWQWC 6UVzMa8eNrbWV+4cYTDsyO1A178Pys3Ufwe4qJr9l5yRXXZULJ4lfqRFgO9aO0Fs VLnz0QgY6psEAjn//mrez+URoMLzkSFzzSQHnaXWIjxtkE90phxsT2X+5gGsCYKT +Rx8FS3l/KHagFCMNlZTWiB0ISFIJwywISaY2Y0Ck+QgZ/W8n6jYlEYbdq66Q0k6 cyhX+cgcZM5oIeo6DXn604gbJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHOhEcn1 4uAOMA2ao9Hsbfg/lhEAMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQUM0REY1QUU1 NEQ0MTFGMEExODE5NTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY7YwDQYJKoZIhvcNAQELBQADggEBALB3XEhTFKMBgIlj iE7uQGBrb/iFDImqH9JedsCoDeJB+iovMkV10lKbOz1sthMbsZ1w4cALt7TmI2xa cO8oHqTsin7mZvodpn8Mr/Ji45aQlJm/2TsxC/dYo4XVnqGWYNXYg2t63UYqskyX L7yAdXXB1CNHtP4R1w4hndPe7ZZkX583BGQPBod/jqSCEdVs71Axo+5anGRspKJX QF1SSYDRXPX05r8YdPK27CUH2y8OUuS3VCU97b+6qXSGSZ16fBuQkX5OGEn78hu5 dQ8RsjTfVciIfQM+kvYPasqJjO24qsYvFgevOXvoKoFTIQdmaqDWYdwTQ828Tvcn 2Ub7bA0= -----END CERTIFICATE-----Generated at Thu Jul 3 23:48:15 2025 by rpki-client