$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa File: 7DF6251A74B311F0A365281CC4F9AE02.roa (raw, json) Hash identifier: ni8ytUAWwdbtGIc+iXlEFG+5N/RDCdFk/BOjShyc/2A= Subject key identifier: 1A:5F:2F:F8:20:F0:BC:F3:71:94:80:A9:93:C4:10:86:16:5D:F3:BF Certificate issuer: /CN=A91F0BDE/serialNumber=19F2A46E2C490387535E945F6B14867000685761 Certificate serial: 02 Authority key identifier: 19:F2:A4:6E:2C:49:03:87:53:5E:94:5F:6B:14:86:70:00:68:57:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa Signing time: Fri 08 Aug 2025 23:57:51 +0000 ROA not before: Fri 08 Aug 2025 23:57:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 54309 IP address blocks: 165.101.218.0/24 maxlen: 24 165.101.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.crl rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0BDE, serialNumber=19F2A46E2C490387535E945F6B14867000685761 Validity Not Before: Aug 8 23:57:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68968eff-095f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:48:95:f1:d2:ae:ab:b8:55:72:ac:8d:61:05: 27:1c:ce:27:1b:60:85:08:4c:0e:f4:93:a8:50:3b: 8e:42:03:9e:cf:ec:a7:eb:21:19:6d:df:fa:f8:24: e8:a5:6d:33:b6:bd:c0:d8:c6:86:43:f2:c1:f1:d4: 89:ed:e3:48:57:c9:a8:66:bf:8d:01:f3:c1:3b:75: 4a:db:53:10:1b:79:fb:33:13:4c:85:b1:c2:53:4a: 15:c6:b9:64:9c:03:f9:a0:ee:5a:34:1d:60:57:3f: a1:53:59:6d:88:a1:62:26:2d:94:99:a1:be:60:f6: 16:16:9f:20:44:a4:2b:cf:ba:3d:f9:f9:cf:3b:5c: ce:f1:e5:f5:54:83:cc:80:7e:95:17:72:e8:cf:6c: 80:0a:6c:9b:a2:9d:13:71:2c:b8:45:ef:92:36:f3: d2:42:ce:42:60:f6:dd:31:67:65:b7:98:5d:fc:2b: b8:7b:92:80:48:ea:23:20:26:72:b1:33:a1:24:e6: e6:a1:e4:07:ad:a0:ac:1f:9f:0b:60:51:10:85:78: b4:63:8d:a4:71:6c:c1:a9:4a:c3:e1:36:99:0d:b7: 4e:81:b3:c0:36:fb:e4:da:a1:c3:c3:c6:7b:2e:97: 44:ee:ad:11:1e:e1:fa:f8:d9:0e:6a:c6:0b:ce:b8: f0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5F:2F:F8:20:F0:BC:F3:71:94:80:A9:93:C4:10:86:16:5D:F3:BF X509v3 Authority Key Identifier: keyid:19:F2:A4:6E:2C:49:03:87:53:5E:94:5F:6B:14:86:70:00:68:57:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.218.0/23 Signature Algorithm: sha256WithRSAEncryption 33:17:e1:8c:36:b8:6f:57:05:f4:db:3e:a2:0e:a6:21:70:55: 42:52:0b:49:c6:93:db:a1:76:ef:5c:96:dc:ce:d7:33:5a:72: 74:10:a5:4f:02:6a:51:b9:f0:79:22:86:be:b3:11:13:4d:3a: fc:b6:53:52:95:d8:b5:c6:4d:90:35:3c:cd:0c:db:90:ba:6e: 6c:64:99:ff:7b:23:87:ca:f6:a9:a2:f7:5f:01:31:6a:b3:e9: 49:2d:9b:2f:55:e9:4b:13:8d:f2:33:74:1a:16:cc:03:29:29: 2f:ee:fc:e9:be:40:cb:bb:98:a9:56:8f:f7:c6:24:45:49:ae: 59:ee:cb:67:e6:cb:a0:b8:68:44:cb:83:d8:b4:66:74:1b:f4: 44:a7:03:1c:07:bc:70:ce:03:eb:fd:0c:f3:7a:f7:4f:4d:00: ee:f6:7e:55:a2:5e:c2:00:77:10:b6:ea:56:91:24:29:f5:29: 10:2f:76:c7:e8:25:fe:d0:41:9d:62:ad:76:73:4c:68:b1:29: 7b:30:ac:45:db:cc:17:39:76:df:32:71:61:fc:e7:91:12:a1: 08:50:2a:d1:b1:c9:6b:75:86:ca:91:fe:6d:6e:88:55:f1:e2: c8:12:04:6a:f2:14:42:e8:a6:29:bf:87:26:43:21:8d:32:b3: 51:d7:aa:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEJERTExMC8GA1UEBRMoMTlGMkE0NkUyQzQ5MDM4NzUzNUU5NDVGNkIxNDg2NzAw MDY4NTc2MTAeFw0yNTA4MDgyMzU3NTFaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTY4ZWZmLTA5NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlSJXx0q6ruFVyrI1hBScczicbYIUITA70k6hQO45CA57P7KfrIRlt3/r4JOil bTO2vcDYxoZD8sHx1Int40hXyahmv40B88E7dUrbUxAbefszE0yFscJTShXGuWSc A/mg7lo0HWBXP6FTWW2IoWImLZSZob5g9hYWnyBEpCvPuj35+c87XM7x5fVUg8yA fpUXcujPbIAKbJuinRNxLLhF75I289JCzkJg9t0xZ2W3mF38K7h7koBI6iMgJnKx M6Ek5uah5AetoKwfnwtgURCFeLRjjaRxbMGpSsPhNpkNt06Bs8A2++TaocPDxnsu l0TurREe4fr42Q5qxgvOuPCzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGl8v+CDw vPNxlICpk8QQhhZd878wHwYDVR0jBBgwFoAUGfKkbixJA4dTXpRfaxSGcABoV2Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQkRFLzI5RDFFNzZDNzRC MzExRjBBRTI5NTIxQkM0RjlBRTAyL0dmS2tiaXhKQTRkVFhwUmZheFNHY0FCb1Yy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2ZLa2JpeEpBNGRUWHBSZmF4U0djQUJvVjJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEJERS8yOUQxRTc2Qzc0QjMxMUYwQUUyOTUyMUJDNEY5QUUwMi83REY2MjUxQTc0 QjMxMUYwQTM2NTI4MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVl2jANBgkqhkiG9w0BAQsFAAOCAQEAMxfhjDa4b1cF9Ns+ og6mIXBVQlILScaT26F271yW3M7XM1pydBClTwJqUbnweSKGvrMRE006/LZTUpXY tcZNkDU8zQzbkLpubGSZ/3sjh8r2qaL3XwExarPpSS2bL1XpSxON8jN0GhbMAykp L+786b5Ay7uYqVaP98YkRUmuWe7LZ+bLoLhoRMuD2LRmdBv0RKcDHAe8cM4D6/0M 83r3T00A7vZ+VaJewgB3ELbqVpEkKfUpEC92x+gl/tBBnWKtdnNMaLEpezCsRdvM Fzl23zJxYfznkRKhCFAq0bHJa3WGypH+bW6IVfHiyBIEavIUQuimKb+HJkMhjTKz UdeqYA== -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:11 2025 by rpki-client