$ rpki-client -vvf rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/A73E47B6646611F092E66D56C4F9AE02.roa File: A73E47B6646611F092E66D56C4F9AE02.roa (raw, json) Hash identifier: R9MuPEXmcb9QPVduJszFJZ3jI05Vo9fUIK/CYjPl3pQ= Subject key identifier: 42:43:FB:29:69:55:BA:3F:FC:2F:F7:53:52:B1:09:49:04:2B:37:29 Certificate issuer: /CN=A91585F0/serialNumber=AAD6A0BCC4DB057E1469F1DDB3019B165330CE42 Certificate serial: 06 Authority key identifier: AA:D6:A0:BC:C4:DB:05:7E:14:69:F1:DD:B3:01:9B:16:53:30:CE:42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/A73E47B6646611F092E66D56C4F9AE02.roa Signing time: Sat 19 Jul 2025 06:07:30 +0000 ROA not before: Sat 19 Jul 2025 06:07:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137531 IP address blocks: 165.101.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.crl rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91585F0, serialNumber=AAD6A0BCC4DB057E1469F1DDB3019B165330CE42 Validity Not Before: Jul 19 06:07:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687b3622-4225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f6:00:5d:5b:a2:7f:5a:9f:cb:de:07:8a:19: 44:d3:72:29:28:00:9d:8e:f2:a5:09:d6:7b:a7:2d: 25:22:93:3c:dc:cc:99:b9:0e:a7:88:41:68:71:69: 88:4d:d1:ac:42:fe:0a:df:7b:75:3b:96:9d:f8:03: 6a:cd:41:d8:47:60:c6:0f:c6:d9:45:49:b1:66:f9: 4e:10:05:4b:8d:0d:7f:05:d2:29:e5:c3:46:f4:ea: 3c:33:d5:14:13:9b:b1:86:37:40:2c:f7:ba:07:88: 5a:17:e7:da:23:94:e3:ec:a7:ea:9b:df:1e:7c:0a: 83:95:2e:32:b7:12:85:ff:81:c6:7f:df:38:ec:ff: 59:ed:88:52:43:83:39:0f:17:c0:d8:93:b6:b0:00: 35:58:5d:43:70:46:85:40:37:83:82:09:a1:26:64: 5e:29:a8:6e:38:42:2d:05:aa:67:12:8b:93:85:9c: fb:9a:fb:8b:4a:16:d9:4a:92:81:bf:0d:0a:ea:b4: ca:f5:3f:b8:6e:50:15:1b:44:b3:2a:7e:47:ab:7e: 0d:0e:e1:b5:34:f1:2c:a5:dc:f7:af:df:5c:16:52: af:06:16:33:5e:0a:a2:1e:99:8d:2a:da:e1:e3:6b: dc:30:f6:94:d9:cc:50:76:16:9a:2f:cb:77:13:90: f5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:43:FB:29:69:55:BA:3F:FC:2F:F7:53:52:B1:09:49:04:2B:37:29 X509v3 Authority Key Identifier: keyid:AA:D6:A0:BC:C4:DB:05:7E:14:69:F1:DD:B3:01:9B:16:53:30:CE:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/qtagvMTbBX4UafHdswGbFlMwzkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qtagvMTbBX4UafHdswGbFlMwzkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91585F0/4BE69D02640011F0B1A1D57EC4F9AE02/A73E47B6646611F092E66D56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.226.0/24 Signature Algorithm: sha256WithRSAEncryption 21:be:2e:ae:06:35:24:e3:70:17:70:d0:d6:5e:71:b2:7c:f8: 21:e8:21:63:91:04:21:f3:88:2f:04:ba:f1:fa:fa:fe:3e:c2: 7e:b9:10:ac:23:6f:ff:4e:85:5a:75:73:84:61:4a:b9:3b:bd: a4:9c:c5:fc:07:a7:f6:36:d2:0d:2d:d1:39:1c:3c:63:25:99: ba:b7:69:b1:34:91:54:f9:6e:60:f5:30:cb:5e:38:0d:68:50: 61:d9:92:f2:90:35:c2:f1:bc:e5:bb:b7:67:44:c1:a2:66:3d: 55:73:1b:63:80:95:32:f5:fb:dd:0e:c6:c8:20:d8:ef:7c:c1: c6:02:7b:e7:17:74:b0:e7:58:c1:8c:17:a9:a1:fc:ec:db:30: b8:cb:aa:06:a5:6d:a4:7c:9d:23:58:05:df:bf:91:b8:51:89: 19:48:79:0a:2c:68:e7:db:af:e6:12:d6:38:83:bc:9c:c0:e2: cf:b5:ac:12:53:cb:e1:dd:64:e8:d6:e0:cc:50:f0:e5:ee:d7: d7:88:8c:00:19:31:8d:ac:57:12:93:8e:4c:e1:c9:dc:06:41: 9a:08:cc:10:59:9f:64:6c:a1:df:00:ad:5c:1e:7a:b8:07:57: 6e:ca:c3:9d:dd:15:02:97:2d:30:5e:64:d6:8c:f2:7b:bc:9a: 34:b9:61:d1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODVGMDExMC8GA1UEBRMoQUFENkEwQkNDNERCMDU3RTE0NjlGMUREQjMwMTlCMTY1 MzMwQ0U0MjAeFw0yNTA3MTkwNjA3MzBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2IzNjIyLTQyMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCS9gBdW6J/Wp/L3geKGUTTcikoAJ2O8qUJ1nunLSUikzzczJm5DqeIQWhxaYhN 0axC/grfe3U7lp34A2rNQdhHYMYPxtlFSbFm+U4QBUuNDX8F0inlw0b06jwz1RQT m7GGN0As97oHiFoX59ojlOPsp+qb3x58CoOVLjK3EoX/gcZ/3zjs/1ntiFJDgzkP F8DYk7awADVYXUNwRoVAN4OCCaEmZF4pqG44Qi0FqmcSi5OFnPua+4tKFtlKkoG/ DQrqtMr1P7huUBUbRLMqfkerfg0O4bU08Syl3Pev31wWUq8GFjNeCqIemY0q2uHj a9ww9pTZzFB2Fpovy3cTkPVhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQkP7KWlV uj/8L/dTUrEJSQQrNykwHwYDVR0jBBgwFoAUqtagvMTbBX4UafHdswGbFlMwzkIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NUYwLzRCRTY5RDAyNjQw MDExRjBCMUExRDU3RUM0RjlBRTAyL3F0YWd2TVRiQlg0VWFmSGRzd0diRmxNd3pr SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcXRhZ3ZNVGJCWDRVYWZIZHN3R2JGbE13emtJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODVGMC80QkU2OUQwMjY0MDAxMUYwQjFBMUQ1N0VDNEY5QUUwMi9BNzNFNDdCNjY0 NjYxMUYwOTJFNjZENTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVl4jANBgkqhkiG9w0BAQsFAAOCAQEAIb4urgY1JONwF3DQ 1l5xsnz4IeghY5EEIfOILwS68fr6/j7CfrkQrCNv/06FWnVzhGFKuTu9pJzF/Aen 9jbSDS3RORw8YyWZurdpsTSRVPluYPUwy144DWhQYdmS8pA1wvG85bu3Z0TBomY9 VXMbY4CVMvX73Q7GyCDY73zBxgJ75xd0sOdYwYwXqaH87NswuMuqBqVtpHydI1gF 37+RuFGJGUh5Cixo59uv5hLWOIO8nMDiz7WsElPL4d1k6NbgzFDw5e7X14iMABkx jaxXEpOOTOHJ3AZBmgjMEFmfZGyh3wCtXB56uAdXbsrDnd0VApctMF5k1ozye7ya NLlh0Q== -----END CERTIFICATE-----Generated at Mon Jul 21 12:51:51 2025 by rpki-client