$ rpki-client -vvf rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/1096927A646E11F08C8F9173C4F9AE02.roa File: 1096927A646E11F08C8F9173C4F9AE02.roa (raw, json) Hash identifier: Vi+X8eC77LW+19x04LHYzDEZAgS3KYmTg+MI+Li5Sts= Subject key identifier: 46:28:98:74:D5:3B:92:41:A9:4B:BF:9F:FD:0D:EF:68:E4:38:5D:1D Certificate issuer: /CN=A91585F0/serialNumber=AAD6A0BCC4DB057E1469F1DDB3019B165330CE42 Certificate serial: 08 Authority key identifier: AA:D6:A0:BC:C4:DB:05:7E:14:69:F1:DD:B3:01:9B:16:53:30:CE:42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/1096927A646E11F08C8F9173C4F9AE02.roa Signing time: Sat 19 Jul 2025 07:00:34 +0000 ROA not before: Sat 19 Jul 2025 07:00:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138998 IP address blocks: 165.101.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.crl rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91585F0, serialNumber=AAD6A0BCC4DB057E1469F1DDB3019B165330CE42 Validity Not Before: Jul 19 07:00:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687b4291-d7e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:3a:11:c3:fd:80:a3:4a:49:6a:3f:94:35: 4a:0f:09:4e:1a:6c:d7:14:31:ca:20:a5:0a:ba:b4: 2b:c6:c9:31:07:31:1d:f3:64:75:ec:8c:af:ce:11: 84:bb:63:b8:8b:7d:b8:fb:62:84:fc:1f:8f:d1:9d: 8a:9b:1b:c7:d4:56:9f:07:be:a4:fa:03:1d:90:ef: 0b:c1:ae:ab:77:a4:93:d4:53:ff:1d:72:a6:27:2d: 94:63:28:c2:0f:63:92:17:2e:1f:76:26:d7:a8:f7: 1e:e5:db:2b:cd:14:fb:b0:01:8a:41:d1:d5:39:d9: e8:87:25:65:bd:77:d9:d4:25:8c:ef:82:65:3a:e0: f0:35:2b:8f:29:9d:c1:d2:b6:e4:4a:d7:2f:1f:78: 16:91:07:51:b5:2c:c3:d7:c8:fc:c1:54:6d:5b:dd: 29:dc:a8:11:b7:d3:a1:ca:27:e4:ae:f4:31:e0:90: 4d:fd:69:72:b9:e6:ff:23:cb:68:4f:7a:3f:ed:c7: ce:43:03:38:63:26:5f:97:22:fc:de:69:5c:b2:0a: 43:2b:6a:a4:cf:d3:2f:01:76:1b:a2:29:10:93:ab: 22:eb:db:bc:02:31:33:2f:61:e7:08:bd:5c:52:6d: f4:2f:1e:10:de:bf:18:01:27:26:df:85:07:db:18: 8e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:28:98:74:D5:3B:92:41:A9:4B:BF:9F:FD:0D:EF:68:E4:38:5D:1D X509v3 Authority Key Identifier: keyid:AA:D6:A0:BC:C4:DB:05:7E:14:69:F1:DD:B3:01:9B:16:53:30:CE:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/1096927A646E11F08C8F9173C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.227.0/24 Signature Algorithm: sha256WithRSAEncryption 52:cf:1a:22:c1:d4:c2:58:b8:ee:44:c9:61:a3:82:e9:58:a0: 8c:5c:ab:7b:ad:30:8e:a8:78:5d:0b:da:ce:05:5c:af:6e:3a: 94:cf:b2:0e:64:10:94:98:83:40:24:84:e2:c9:f3:68:6c:57: ba:94:ba:8b:fa:43:92:79:05:86:e7:3c:99:61:e1:84:ac:b6: 78:82:3e:a9:aa:fb:72:fd:b2:a2:28:f0:14:7d:47:81:c9:a1: b2:1c:5a:a2:ff:20:fd:5f:ec:57:86:fd:53:76:c4:f1:48:97: 1b:36:a8:2a:55:49:99:06:ba:1c:7f:40:dc:18:49:b5:27:7c: 11:43:63:fa:47:65:7e:55:3c:20:a5:b7:d1:8e:e5:7b:88:78: 56:be:d7:8c:f5:eb:45:58:7b:c3:12:73:b6:b2:0a:a5:f1:14: 04:81:2e:64:53:47:29:87:fd:27:25:5f:9a:81:d6:37:a5:08: 0e:93:8f:a8:2b:3c:a7:ab:e4:8d:c6:26:ad:73:a6:a4:31:a9: 7e:0f:bc:19:34:91:36:d9:1d:cf:31:db:d6:7e:c7:61:2d:7c: 6c:4e:5e:7c:7a:a3:bf:09:03:dc:6b:51:07:be:e1:bf:ea:2c: b7:25:07:60:a2:65:f2:36:e6:82:ed:fd:a6:90:32:01:b8:88: 64:28:4d:07 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODVGMDExMC8GA1UEBRMoQUFENkEwQkNDNERCMDU3RTE0NjlGMUREQjMwMTlCMTY1 MzMwQ0U0MjAeFw0yNTA3MTkwNzAwMzRaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2I0MjkxLWQ3ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCfjoRw/2Ao0pJaj+UNUoPCU4abNcUMcogpQq6tCvGyTEHMR3zZHXsjK/OEYS7 Y7iLfbj7YoT8H4/RnYqbG8fUVp8HvqT6Ax2Q7wvBrqt3pJPUU/8dcqYnLZRjKMIP Y5IXLh92Jteo9x7l2yvNFPuwAYpB0dU52eiHJWW9d9nUJYzvgmU64PA1K48pncHS tuRK1y8feBaRB1G1LMPXyPzBVG1b3SncqBG306HKJ+Su9DHgkE39aXK55v8jy2hP ej/tx85DAzhjJl+XIvzeaVyyCkMraqTP0y8BdhuiKRCTqyLr27wCMTMvYecIvVxS bfQvHhDevxgBJybfhQfbGI4VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURiiYdNU7 kkGpS7+f/Q3vaOQ4XR0wHwYDVR0jBBgwFoAUqtagvMTbBX4UafHdswGbFlMwzkIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NUYwLzRCRTY5RDAyNjQw MDExRjBCMUExRDU3RUM0RjlBRTAyL3F0YWd2TVRiQlg0VWFmSGRzd0diRmxNd3pr SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcXRhZ3ZNVGJCWDRVYWZIZHN3R2JGbE13emtJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODVGMC80QkU2OUQwMjY0MDAxMUYwQjFBMUQ1N0VDNEY5QUUwMi8xMDk2OTI3QTY0 NkUxMUYwOEM4RjkxNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVl4zANBgkqhkiG9w0BAQsFAAOCAQEAUs8aIsHUwli47kTJ YaOC6VigjFyre60wjqh4XQvazgVcr246lM+yDmQQlJiDQCSE4snzaGxXupS6i/pD knkFhuc8mWHhhKy2eII+qar7cv2yoijwFH1Hgcmhshxaov8g/V/sV4b9U3bE8UiX GzaoKlVJmQa6HH9A3BhJtSd8EUNj+kdlflU8IKW30Y7le4h4Vr7XjPXrRVh7wxJz trIKpfEUBIEuZFNHKYf9JyVfmoHWN6UIDpOPqCs8p6vkjcYmrXOmpDGpfg+8GTSR NtkdzzHb1n7HYS18bE5efHqjvwkD3GtRB77hv+ostyUHYKJl8jbmgu39ppAyAbiI ZChNBw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:34:09 2025 by rpki-client