$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/DA98BA4C5DE011F0B1CD4C75C4F9AE02.roa File: DA98BA4C5DE011F0B1CD4C75C4F9AE02.roa (raw, json) Hash identifier: x4FID5zbs9gmZN9FkmWfh+nLmyFuv96NIL9YO3x5RdE= Subject key identifier: 94:F8:A0:96:2E:D4:F1:3D:45:7E:75:2D:97:AC:BF:B0:6B:46:C2:58 Certificate issuer: /CN=A916C473/serialNumber=826AA83BBE0240D13906ABAB464317E9E7AB70EF Certificate serial: 02 Authority key identifier: 82:6A:A8:3B:BE:02:40:D1:39:06:AB:AB:46:43:17:E9:E7:AB:70:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmqoO74CQNE5BqurRkMX6eercO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/DA98BA4C5DE011F0B1CD4C75C4F9AE02.roa Signing time: Thu 10 Jul 2025 22:54:37 +0000 ROA not before: Thu 10 Jul 2025 22:54:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135310 IP address blocks: 165.101.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/gmqoO74CQNE5BqurRkMX6eercO8.crl rsync://rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/gmqoO74CQNE5BqurRkMX6eercO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmqoO74CQNE5BqurRkMX6eercO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=826AA83BBE0240D13906ABAB464317E9E7AB70EF Validity Not Before: Jul 10 22:54:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687044ad-4b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a3:61:9e:9b:4b:78:1b:88:5e:ba:e1:d0:1f: af:d3:69:3c:cc:c4:42:2e:b7:09:e0:be:a4:86:26: 66:39:27:af:e1:f5:2d:ed:7f:85:bf:c4:72:a4:54: 3a:56:85:6e:a5:c8:92:5d:c5:9a:51:31:f5:c0:f0: 12:5a:cd:34:2b:b3:f0:df:68:0f:9f:8c:b0:e2:bd: 0c:f4:d8:7c:3a:a2:2d:3e:26:f6:bd:2f:c8:cf:0c: d7:65:86:97:b8:d2:37:ae:ba:b2:e1:ee:ea:40:fd: 02:cb:6a:7d:ee:62:24:a8:48:19:87:a4:5c:b1:3d: 01:05:6a:11:59:4d:1c:21:b3:67:f0:dd:0b:84:c8: 3f:ad:36:4e:7c:6f:c9:30:59:4f:9e:37:84:0b:09: 8c:33:80:78:bc:5b:3d:0a:b5:b9:af:bd:df:e8:0e: 0c:eb:e6:a8:73:b0:4e:34:3e:53:e6:ca:58:fc:c6: 3b:02:8e:59:1f:ca:d9:72:25:4e:d3:cf:5c:8e:49: 4b:cd:86:7e:fb:1d:4c:61:db:b2:8d:07:3e:ea:9a: 5d:19:b6:47:b1:5c:dc:f3:34:e7:39:95:f7:b3:70: 9f:dd:02:da:d0:ea:f2:7d:f7:8f:a0:fa:64:4c:72: a7:b6:98:38:22:ca:70:a0:f8:4d:14:71:f7:1d:73: 75:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F8:A0:96:2E:D4:F1:3D:45:7E:75:2D:97:AC:BF:B0:6B:46:C2:58 X509v3 Authority Key Identifier: keyid:82:6A:A8:3B:BE:02:40:D1:39:06:AB:AB:46:43:17:E9:E7:AB:70:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/gmqoO74CQNE5BqurRkMX6eercO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmqoO74CQNE5BqurRkMX6eercO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/F57D23305DDF11F0A5BFD66FC4F9AE02/DA98BA4C5DE011F0B1CD4C75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.176.0/23 Signature Algorithm: sha256WithRSAEncryption a8:9f:fa:63:44:42:0e:50:32:4a:5a:ea:63:c0:47:27:32:53: 0f:6b:bd:68:f8:50:b9:46:11:d5:cf:6d:b3:59:12:d0:30:da: 86:bd:54:a5:b5:66:03:d5:0c:ca:87:45:c3:0d:34:30:dd:2d: 65:1c:3f:32:aa:43:1a:e4:33:07:d3:38:ee:00:5c:a9:9b:fb: 24:3a:4b:53:52:bc:68:ab:84:d9:cc:13:9b:9c:ee:83:29:86: 4c:57:66:2c:ca:93:80:f5:04:5c:24:e7:57:77:ab:72:16:84: 76:7e:b6:a4:27:33:b1:86:36:3e:12:4c:17:54:e8:88:dc:8d: 49:a9:4b:84:41:57:93:c4:7d:89:4f:a0:ea:47:bd:02:f6:07: b6:7b:39:8e:f1:a5:9a:1a:ab:4d:b7:c8:c7:0c:9a:44:96:99: 29:82:43:3c:be:a6:91:8c:04:a6:af:01:98:f7:ce:71:83:2c: 64:d9:c1:e1:10:d0:2c:09:9f:eb:7a:85:b2:49:be:55:c8:f7: 0a:88:22:33:28:9c:09:74:de:d5:2c:7c:bc:f3:a3:78:24:5a: 4c:3e:80:ea:3c:e7:28:ce:f3:ec:0f:54:ff:f8:8d:90:14:9a: a9:10:fc:42:6d:97:9d:c7:ea:7a:d9:56:af:ff:96:d2:4e:be: 77:b5:39:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzQ3MzExMC8GA1UEBRMoODI2QUE4M0JCRTAyNDBEMTM5MDZBQkFCNDY0MzE3RTlF N0FCNzBFRjAeFw0yNTA3MTAyMjU0MzdaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzA0NGFkLTRiODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeo2Gem0t4G4heuuHQH6/TaTzMxEIutwngvqSGJmY5J6/h9S3tf4W/xHKkVDpW hW6lyJJdxZpRMfXA8BJazTQrs/DfaA+fjLDivQz02Hw6oi0+Jva9L8jPDNdlhpe4 0jeuurLh7upA/QLLan3uYiSoSBmHpFyxPQEFahFZTRwhs2fw3QuEyD+tNk58b8kw WU+eN4QLCYwzgHi8Wz0Ktbmvvd/oDgzr5qhzsE40PlPmylj8xjsCjlkfytlyJU7T z1yOSUvNhn77HUxh27KNBz7qml0ZtkexXNzzNOc5lfezcJ/dAtrQ6vJ994+g+mRM cqe2mDgiynCg+E0Ucfcdc3XlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlPigli7U 8T1FfnUtl6y/sGtGwlgwHwYDVR0jBBgwFoAUgmqoO74CQNE5BqurRkMX6eercO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNDczL0Y1N0QyMzMwNURE RjExRjBBNUJGRDY2RkM0RjlBRTAyL2dtcW9PNzRDUU5FNUJxdXJSa01YNmVlcmNP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ21xb083NENRTkU1QnF1clJrTVg2ZWVyY084LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzQ3My9GNTdEMjMzMDVEREYxMUYwQTVCRkQ2NkZDNEY5QUUwMi9EQTk4QkE0QzVE RTAxMUYwQjFDRDRDNzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlsDANBgkqhkiG9w0BAQsFAAOCAQEAqJ/6Y0RCDlAySlrq Y8BHJzJTD2u9aPhQuUYR1c9ts1kS0DDahr1UpbVmA9UMyodFww00MN0tZRw/MqpD GuQzB9M47gBcqZv7JDpLU1K8aKuE2cwTm5zugymGTFdmLMqTgPUEXCTnV3erchaE dn62pCczsYY2PhJMF1ToiNyNSalLhEFXk8R9iU+g6ke9AvYHtns5jvGlmhqrTbfI xwyaRJaZKYJDPL6mkYwEpq8BmPfOcYMsZNnB4RDQLAmf63qFskm+Vcj3CogiMyic CXTe1Sx8vPOjeCRaTD6A6jznKM7z7A9U//iNkBSaqRD8Qm2XncfqetlWr/+W0k6+ d7U52Q== -----END CERTIFICATE-----Generated at Sun Jul 20 19:02:14 2025 by rpki-client