$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa File: A5E6E422A8E511F0A46A7729C4F9AE02.roa (raw, json) Hash identifier: I9mTloe+CBVyT9j1b2vknypKCm7MYiUBGA2nLvqI+nE= Subject key identifier: 17:D0:2F:06:74:8D:42:0D:BA:CB:09:B9:77:5E:CD:5D:A9:73:FA:DA Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 3B Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa Signing time: Tue 14 Oct 2025 11:55:50 +0000 ROA not before: Tue 14 Oct 2025 11:55:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134732 IP address blocks: 165.101.132.0/23 maxlen: 23 165.101.132.0/24 maxlen: 24 165.101.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Oct 14 11:55:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ee3a46-de1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:aa:69:91:d6:59:74:80:1c:ef:f3:8a:36:ea: 40:7c:09:18:50:87:e1:af:ab:09:94:d2:b5:cb:67: b5:07:2f:75:f1:1b:9c:07:5d:30:8a:ff:ae:ca:5c: c2:32:df:ae:da:e4:60:be:4d:a4:45:8c:57:61:25: c8:e3:f1:b8:c9:ba:7a:ed:bf:d2:09:de:27:d6:8f: 0f:60:76:12:92:28:a4:38:6a:c6:36:73:48:38:12: b0:81:39:3b:1d:57:6e:a5:ae:b3:66:2d:ba:06:23: d9:30:07:18:e2:9a:f2:5b:ee:25:5c:57:73:d6:1a: 43:4d:61:36:63:25:22:7a:18:a5:c5:cc:61:5c:f0: 46:29:e6:34:bd:c4:b1:7a:86:11:67:35:cb:2e:d8: fb:31:b0:22:cd:c0:07:14:62:2d:c1:aa:aa:bf:d8: 88:87:48:a4:1f:a4:46:ea:ca:80:de:58:aa:04:6d: 3f:4f:fe:e8:16:16:2d:6d:71:21:51:98:40:0e:59: 97:0e:b0:ad:fd:b9:ae:f4:7b:c2:79:f6:81:45:bf: 90:08:9c:5a:4e:1a:7b:8d:9d:5a:86:45:2b:ce:b6: bb:2e:8f:ea:56:b8:71:ac:f7:c5:81:76:8a:77:0a: f6:3c:59:4e:23:65:85:69:d8:72:c0:b2:13:0a:05: 15:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D0:2F:06:74:8D:42:0D:BA:CB:09:B9:77:5E:CD:5D:A9:73:FA:DA X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.132.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:bc:82:9c:e6:e4:ae:02:f0:13:87:b7:36:1e:d5:d4:32:c1: 4b:15:95:bb:29:2e:7e:a3:20:2a:f5:65:9f:29:e5:0b:c9:74: 09:bd:a8:f2:79:2a:4f:57:67:f5:7b:b5:ee:50:75:0b:56:ac: 58:80:53:e9:01:7f:ad:28:ea:a0:fb:a6:aa:67:15:cb:09:21: 70:89:0a:ae:04:fb:52:ae:5b:81:a5:a0:10:93:f9:40:73:70: aa:1f:e6:81:3e:b8:b6:2a:e4:76:35:1d:ca:41:67:ce:d5:6a: 9e:ae:a4:7c:e9:36:46:d5:d8:19:b1:73:2c:90:a7:a0:e9:40: 1e:00:a9:aa:95:d5:0e:56:6f:f0:51:b2:36:56:26:aa:b4:90: 9f:09:00:3f:2c:99:65:60:1b:34:29:16:a5:f2:6c:a6:89:dc: d1:80:6e:2e:7d:8e:b0:2c:0f:04:aa:f5:cc:0d:1e:11:2e:e3: 0e:41:ac:bd:7f:73:10:1f:bd:49:9f:6e:9f:90:80:83:1d:df: 7e:65:b9:01:66:61:62:d0:bd:db:e8:c8:e1:c0:a6:65:13:2a: 6d:21:0f:24:41:33:53:4e:66:b4:ef:2b:37:73:9b:d0:89:02: 77:40:75:2d:c4:f3:07:9d:eb:04:26:b1:98:ac:10:ed:34:d3: 06:88:57:4a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTEwMTQxMTU1NTBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWUzYTQ2LWRlMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjqmmR1ll0gBzv84o26kB8CRhQh+GvqwmU0rXLZ7UHL3XxG5wHXTCK/67KXMIy 367a5GC+TaRFjFdhJcjj8bjJunrtv9IJ3ifWjw9gdhKSKKQ4asY2c0g4ErCBOTsd V26lrrNmLboGI9kwBxjimvJb7iVcV3PWGkNNYTZjJSJ6GKXFzGFc8EYp5jS9xLF6 hhFnNcsu2PsxsCLNwAcUYi3Bqqq/2IiHSKQfpEbqyoDeWKoEbT9P/ugWFi1tcSFR mEAOWZcOsK39ua70e8J59oFFv5AInFpOGnuNnVqGRSvOtrsuj+pWuHGs98WBdop3 CvY8WU4jZYVp2HLAshMKBRWNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF9AvBnSN Qg26ywm5d17NXalz+towHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNBQS80OUExQTg3ODU5NjcxMUYwOEM0MDc5MkNDNEY5QUUwMi9BNUU2RTQyMkE4 RTUxMUYwQTQ2QTc3MjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlhDANBgkqhkiG9w0BAQsFAAOCAQEAjLyCnObkrgLwE4e3 Nh7V1DLBSxWVuykufqMgKvVlnynlC8l0Cb2o8nkqT1dn9Xu17lB1C1asWIBT6QF/ rSjqoPumqmcVywkhcIkKrgT7Uq5bgaWgEJP5QHNwqh/mgT64tirkdjUdykFnztVq nq6kfOk2RtXYGbFzLJCnoOlAHgCpqpXVDlZv8FGyNlYmqrSQnwkAPyyZZWAbNCkW pfJsponc0YBuLn2OsCwPBKr1zA0eES7jDkGsvX9zEB+9SZ9un5CAgx3ffmW5AWZh YtC92+jI4cCmZRMqbSEPJEEzU05mtO8rN3Ob0IkCd0B1LcTzB53rBCaxmKwQ7TTT BohXSg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:49:44 2025 by rpki-client