$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/E7F6F23C4B1911F08F30867AC4F9AE02.roa File: E7F6F23C4B1911F08F30867AC4F9AE02.roa (raw, json) Hash identifier: pc9zaEWdjAnZt0C64GBckmKPloXU3OegJwZo/Bz4Q+U= Subject key identifier: 2F:C7:A8:4C:18:3B:48:09:4F:49:85:82:85:96:A1:02:2C:B0:8A:EE Certificate issuer: /CN=A91B8A86/serialNumber=FB08769288795F5D504B940994057311668B6297 Certificate serial: 03 Authority key identifier: FB:08:76:92:88:79:5F:5D:50:4B:94:09:94:05:73:11:66:8B:62:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-wh2koh5X11QS5QJlAVzEWaLYpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/E7F6F23C4B1911F08F30867AC4F9AE02.roa Signing time: Tue 17 Jun 2025 01:25:09 +0000 ROA not before: Tue 17 Jun 2025 01:25:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133113 IP address blocks: 165.99.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/-wh2koh5X11QS5QJlAVzEWaLYpc.crl rsync://rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/-wh2koh5X11QS5QJlAVzEWaLYpc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-wh2koh5X11QS5QJlAVzEWaLYpc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8A86, serialNumber=FB08769288795F5D504B940994057311668B6297 Validity Not Before: Jun 17 01:25:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6850c3f4-fa69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:51:bb:14:45:22:79:33:9f:6f:5a:28:89:e1: 7a:e1:61:c7:65:08:b4:98:ee:2f:66:28:1d:d7:69: 82:df:ed:f7:24:65:ec:11:ee:ba:07:54:87:c6:0f: 31:ef:0d:a0:26:5a:68:3d:e5:ab:82:90:10:60:c5: a9:79:60:ff:02:e2:1e:a9:0b:23:29:1a:ba:b5:d0: 4e:64:7c:0a:f2:5b:5d:b1:04:23:f2:b1:d4:44:75: 9a:a8:ec:4f:05:1d:b3:ae:bd:f3:6b:2b:62:b7:e2: 1e:25:87:5c:dc:02:8d:64:b0:ce:6d:2d:a0:a6:05: 6d:ee:de:c0:b4:f9:99:c1:82:a4:eb:02:ca:d7:0c: 72:41:5c:47:73:97:9e:72:12:26:cd:b6:9e:6b:c1: d8:78:5a:db:70:70:6a:36:b8:cb:63:08:88:b0:92: 32:91:86:96:5e:0c:5c:4f:c9:3e:f7:12:3e:13:a5: 5c:47:ae:d1:d1:7d:90:15:cb:7d:98:02:4b:d4:46: 72:8f:64:53:a9:fe:70:37:38:a7:d5:44:03:15:2d: 7c:f2:02:e4:e2:9a:05:69:df:49:95:2d:72:21:5c: 59:0a:a8:d0:2f:14:4e:ff:f1:e3:05:d4:b4:3e:cb: 98:60:16:f0:4e:e5:90:94:8a:a1:8c:76:4c:c0:24: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C7:A8:4C:18:3B:48:09:4F:49:85:82:85:96:A1:02:2C:B0:8A:EE X509v3 Authority Key Identifier: keyid:FB:08:76:92:88:79:5F:5D:50:4B:94:09:94:05:73:11:66:8B:62:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/-wh2koh5X11QS5QJlAVzEWaLYpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-wh2koh5X11QS5QJlAVzEWaLYpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8A86/AC704C6C4B1511F0AC3AA248C4F9AE02/E7F6F23C4B1911F08F30867AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.198.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:91:86:4f:ca:fb:af:4a:6a:2c:36:cb:5b:c7:43:fb:88:51: 36:ca:5b:de:8d:58:f3:0e:eb:2a:59:a4:15:b1:e9:71:bc:14: 37:55:f9:f4:1e:64:60:9f:46:ce:21:dd:5d:90:cb:7c:09:bb: 12:12:b0:cb:b2:dc:9e:16:db:16:09:09:81:aa:54:38:da:08: 2c:87:61:30:91:84:c6:f5:ad:30:e9:73:ca:2d:e2:c6:22:b6: 45:2c:88:31:0a:8b:2a:f8:3a:33:85:3f:47:6a:51:d9:65:57: 63:8c:dd:6f:29:80:32:3e:b4:cd:cb:f2:3a:5b:06:bb:26:fb: 4e:d1:69:a6:29:6a:e1:61:83:cc:ee:4c:93:34:74:de:6d:0a: 64:55:ae:5c:53:84:d4:8f:99:fd:ad:08:6c:36:57:a6:2d:dd: 24:ba:49:ae:56:9e:12:6d:78:1c:34:f3:53:3c:00:ae:98:3a: 91:42:ad:fb:0f:5d:2d:fc:36:42:51:8d:ef:95:14:5f:42:c0: d3:bf:88:af:48:f7:6b:3e:54:01:2e:60:04:4c:dc:41:fd:81: b2:a3:9d:8e:7a:e4:c9:9f:46:d3:00:5f:49:a3:89:4c:b2:c0: f4:f5:2f:fd:e2:59:cb:91:bb:9b:67:e6:1c:d5:66:ac:af:62: 4d:e4:da:dd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEE4NjExMC8GA1UEBRMoRkIwODc2OTI4ODc5NUY1RDUwNEI5NDA5OTQwNTczMTE2 NjhCNjI5NzAeFw0yNTA2MTcwMTI1MDlaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTBjM2Y0LWZhNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxUbsURSJ5M59vWiiJ4XrhYcdlCLSY7i9mKB3XaYLf7fckZewR7roHVIfGDzHv DaAmWmg95auCkBBgxal5YP8C4h6pCyMpGrq10E5kfAryW12xBCPysdREdZqo7E8F HbOuvfNrK2K34h4lh1zcAo1ksM5tLaCmBW3u3sC0+ZnBgqTrAsrXDHJBXEdzl55y EibNtp5rwdh4WttwcGo2uMtjCIiwkjKRhpZeDFxPyT73Ej4TpVxHrtHRfZAVy32Y AkvURnKPZFOp/nA3OKfVRAMVLXzyAuTimgVp30mVLXIhXFkKqNAvFE7/8eMF1LQ+ y5hgFvBO5ZCUiqGMdkzAJJ8jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUL8eoTBg7 SAlPSYWChZahAiywiu4wHwYDVR0jBBgwFoAU+wh2koh5X11QS5QJlAVzEWaLYpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QTg2L0FDNzA0QzZDNEIx NTExRjBBQzNBQTI0OEM0RjlBRTAyLy13aDJrb2g1WDExUVM1UUpsQVZ6RVdhTFlw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLXdoMmtvaDVYMTFRUzVRSmxBVnpFV2FMWXBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEE4Ni9BQzcwNEM2QzRCMTUxMUYwQUMzQUEyNDhDNEY5QUUwMi9FN0Y2RjIzQzRC MTkxMUYwOEYzMDg2N0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjxjANBgkqhkiG9w0BAQsFAAOCAQEAnJGGT8r7r0pqLDbL W8dD+4hRNspb3o1Y8w7rKlmkFbHpcbwUN1X59B5kYJ9GziHdXZDLfAm7EhKwy7Lc nhbbFgkJgapUONoILIdhMJGExvWtMOlzyi3ixiK2RSyIMQqLKvg6M4U/R2pR2WVX Y4zdbymAMj60zcvyOlsGuyb7TtFppilq4WGDzO5MkzR03m0KZFWuXFOE1I+Z/a0I bDZXpi3dJLpJrlaeEm14HDTzUzwArpg6kUKt+w9dLfw2QlGN75UUX0LA07+Ir0j3 az5UAS5gBEzcQf2BsqOdjnrkyZ9G0wBfSaOJTLLA9PUv/eJZy5G7m2fmHNVmrK9i TeTa3Q== -----END CERTIFICATE-----Generated at Fri Jul 4 17:58:29 2025 by rpki-client