$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/E92F49E661EA11F087750C23C4F9AE02.roa File: E92F49E661EA11F087750C23C4F9AE02.roa (raw, json) Hash identifier: tRrklyhCDRycwJaKFRwEZyyD1E5up+J5TjkxJCAvISc= Subject key identifier: 1F:38:4E:E0:AB:61:49:53:B9:FC:4E:8A:DF:5F:73:A0:66:17:DC:C5 Certificate issuer: /CN=A9168D00/serialNumber=2142933FBE6E7C5FB767A86A5E21DD60178EA39D Certificate serial: 03 Authority key identifier: 21:42:93:3F:BE:6E:7C:5F:B7:67:A8:6A:5E:21:DD:60:17:8E:A3:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IUKTP75ufF-3Z6hqXiHdYBeOo50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/E92F49E661EA11F087750C23C4F9AE02.roa Signing time: Wed 16 Jul 2025 02:16:41 +0000 ROA not before: Wed 16 Jul 2025 02:16:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142049 IP address blocks: 165.101.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/IUKTP75ufF-3Z6hqXiHdYBeOo50.crl rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/IUKTP75ufF-3Z6hqXiHdYBeOo50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IUKTP75ufF-3Z6hqXiHdYBeOo50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D00, serialNumber=2142933FBE6E7C5FB767A86A5E21DD60178EA39D Validity Not Before: Jul 16 02:16:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68770b89-4317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:82:9c:94:df:53:84:89:8a:74:b6:22:0a:67: 9b:a1:be:25:11:73:4f:2a:1c:65:02:96:3d:e7:59: fb:c3:45:cf:32:4a:ae:8d:8f:a0:21:7b:18:db:ad: 3d:f4:8c:96:41:a3:aa:42:62:7a:20:a5:2d:a7:51: ff:a4:fd:f1:2d:b4:5c:c1:2f:4d:d9:73:c8:87:b8: 70:f2:00:dc:91:83:64:12:da:6b:63:79:4a:28:ec: df:6f:ef:1f:6e:ee:3f:77:ab:c5:9c:e6:45:33:d2: 3c:f0:00:b5:34:91:12:5b:18:50:7a:41:d2:37:54: 9e:b9:39:7a:36:e2:7c:a1:03:53:29:6b:43:bf:09: aa:69:9a:18:6a:b4:2b:fb:75:f6:46:b3:90:56:48: 41:9e:c9:b0:5d:2f:40:d6:91:b9:fb:1f:29:34:ef: 14:ad:a4:d2:d7:35:e0:1e:40:43:64:7d:08:81:d0: 1c:6a:ff:fb:3e:da:25:08:d0:c0:1c:6e:7d:77:bd: 25:25:0e:b8:ba:f1:0c:0a:17:e2:78:7c:5a:c0:61: 0b:69:ec:3c:01:c2:5e:9c:a6:c8:d3:9d:0e:dd:fb: 2e:82:51:61:42:a5:9c:b9:e7:59:96:83:69:ad:02: 2a:30:e6:50:71:f0:67:d2:3f:50:7b:44:bc:7b:06: 0f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:38:4E:E0:AB:61:49:53:B9:FC:4E:8A:DF:5F:73:A0:66:17:DC:C5 X509v3 Authority Key Identifier: keyid:21:42:93:3F:BE:6E:7C:5F:B7:67:A8:6A:5E:21:DD:60:17:8E:A3:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/IUKTP75ufF-3Z6hqXiHdYBeOo50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IUKTP75ufF-3Z6hqXiHdYBeOo50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/E92F49E661EA11F087750C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.211.0/24 Signature Algorithm: sha256WithRSAEncryption 68:b0:e9:46:be:72:b1:c9:cd:79:35:b9:2c:e8:96:f6:13:97: 53:3d:00:d4:98:e5:78:52:40:dd:6c:bc:51:e6:56:f1:e9:8f: 6e:80:71:62:f5:ec:5c:1e:ea:9b:c3:48:df:ff:14:75:0f:27: 64:6b:06:87:40:85:ee:15:77:bb:17:fc:a3:a4:30:4e:d1:b7: 10:45:b6:52:bd:11:47:5c:fd:33:a6:e6:b9:cc:9e:63:47:8d: 38:56:3e:ec:84:c1:23:dd:03:f0:7c:23:83:94:16:37:c2:96: 40:f0:15:51:c5:82:94:b5:72:b0:17:c4:12:57:cb:7e:01:50: 77:57:e3:18:c0:af:11:7e:f4:40:b2:f1:15:ba:3b:4f:b6:ea: 50:81:62:5a:b1:d4:3f:ef:0d:a2:8d:e2:db:c6:88:53:4b:31: a6:47:f1:ca:c0:5e:46:17:f6:99:35:b1:78:49:e2:e2:4e:f7: 94:ea:c4:63:71:6b:77:f3:cb:47:68:a2:b5:6b:b2:f1:04:bc: 46:cb:94:96:43:91:03:ce:ae:41:53:8b:ef:94:d8:d1:f7:c6: c3:2a:b6:32:3f:8f:84:92:f1:e6:03:78:e8:71:bb:c5:94:ed: 88:12:5a:7f:14:bd:1d:45:85:cb:ba:3b:3b:21:32:2f:09:83: 73:93:02:bf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OEQwMDExMC8GA1UEBRMoMjE0MjkzM0ZCRTZFN0M1RkI3NjdBODZBNUUyMURENjAx NzhFQTM5RDAeFw0yNTA3MTYwMjE2NDFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzcwYjg5LTQzMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6gpyU31OEiYp0tiIKZ5uhviURc08qHGUClj3nWfvDRc8ySq6Nj6AhexjbrT30 jJZBo6pCYnogpS2nUf+k/fEttFzBL03Zc8iHuHDyANyRg2QS2mtjeUoo7N9v7x9u 7j93q8Wc5kUz0jzwALU0kRJbGFB6QdI3VJ65OXo24nyhA1Mpa0O/CappmhhqtCv7 dfZGs5BWSEGeybBdL0DWkbn7Hyk07xStpNLXNeAeQENkfQiB0Bxq//s+2iUI0MAc bn13vSUlDri68QwKF+J4fFrAYQtp7DwBwl6cpsjTnQ7d+y6CUWFCpZy551mWg2mt Aiow5lBx8GfSP1B7RLx7Bg93AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHzhO4Kth SVO5/E6K319zoGYX3MUwHwYDVR0jBBgwFoAUIUKTP75ufF+3Z6hqXiHdYBeOo50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4RDAwL0YxQUYxMDUyNjFE RjExRjBBNkY3NEQ3RkM0RjlBRTAyL0lVS1RQNzV1ZkYtM1o2aHFYaUhkWUJlT281 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVVLVFA3NXVmRi0zWjZocVhpSGRZQmVPbzUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEQwMC9GMUFGMTA1MjYxREYxMUYwQTZGNzREN0ZDNEY5QUUwMi9FOTJGNDlFNjYx RUExMUYwODc3NTBDMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVl0zANBgkqhkiG9w0BAQsFAAOCAQEAaLDpRr5yscnNeTW5 LOiW9hOXUz0A1JjleFJA3Wy8UeZW8emPboBxYvXsXB7qm8NI3/8UdQ8nZGsGh0CF 7hV3uxf8o6QwTtG3EEW2Ur0RR1z9M6bmucyeY0eNOFY+7ITBI90D8Hwjg5QWN8KW QPAVUcWClLVysBfEElfLfgFQd1fjGMCvEX70QLLxFbo7T7bqUIFiWrHUP+8Noo3i 28aIU0sxpkfxysBeRhf2mTWxeEni4k73lOrEY3Frd/PLR2iitWuy8QS8RsuUlkOR A86uQVOL75TY0ffGwyq2Mj+PhJLx5gN46HG7xZTtiBJafxS9HUWFy7o7OyEyLwmD c5MCvw== -----END CERTIFICATE-----Generated at Sun Jul 20 11:34:12 2025 by rpki-client