$ rpki-client -vvf rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/8F8A915C590C11F0AC0A3639C4F9AE02.roa File: 8F8A915C590C11F0AC0A3639C4F9AE02.roa (raw, json) Hash identifier: 65bo4JvkKG1LiWSEJwhJil93bHGvwvvTBpuZe2kaGMk= Subject key identifier: 80:51:A8:EF:41:E6:49:FF:BA:AA:D0:6F:20:14:F3:09:DE:D7:92:8B Certificate issuer: /CN=A917E458/serialNumber=54DE99950B7FC9581FE8AC961F37B7898F35CDC3 Certificate serial: 1C Authority key identifier: 54:DE:99:95:0B:7F:C9:58:1F:E8:AC:96:1F:37:B7:89:8F:35:CD:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VN6ZlQt_yVgf6KyWHze3iY81zcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/8F8A915C590C11F0AC0A3639C4F9AE02.roa Signing time: Fri 04 Jul 2025 19:24:53 +0000 ROA not before: Fri 04 Jul 2025 19:24:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140919 IP address blocks: 165.99.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/VN6ZlQt_yVgf6KyWHze3iY81zcM.crl rsync://rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/VN6ZlQt_yVgf6KyWHze3iY81zcM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VN6ZlQt_yVgf6KyWHze3iY81zcM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E458, serialNumber=54DE99950B7FC9581FE8AC961F37B7898F35CDC3 Validity Not Before: Jul 4 19:24:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68682a85-7820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:53:43:3f:1e:c0:60:c4:92:57:1f:42:85:2f: b7:6c:e4:5f:65:37:6f:26:87:9c:4e:a8:20:b0:c5: 77:36:30:46:f6:a2:47:05:fd:09:ed:ec:82:ab:78: 09:9b:d8:07:cf:39:59:a1:ed:7d:76:e6:f2:58:74: ba:5b:e1:54:25:ed:8a:3b:69:55:cd:a3:53:aa:a7: 6e:08:24:80:25:4e:b8:9b:86:6a:5d:0d:0d:99:00: 1e:fd:5a:5b:17:55:59:86:2f:d8:68:30:31:42:94: e8:d7:72:ab:37:73:e3:80:96:31:a6:ec:4a:5a:40: b0:1f:aa:54:4f:cc:cd:ec:08:1b:f8:ee:17:b8:a7: 25:7f:39:54:4e:e9:0a:96:89:17:10:9e:c3:76:bf: b1:d2:1c:ff:12:04:30:8f:9e:1d:2d:f4:05:b1:b1: 35:a8:3a:e5:aa:66:81:9d:59:88:92:6a:ce:62:0c: 91:6e:fa:a5:e9:27:b1:34:ae:7a:b6:c7:b4:2b:46: 9d:d6:53:1d:70:96:3f:9b:d5:b7:d7:f4:01:5b:8d: 08:05:52:33:9f:69:b4:bd:2c:bf:f0:92:c9:35:b6: 84:dd:d2:af:d5:0f:2a:a6:1c:c0:c1:e5:20:b8:71: 0a:8e:cb:e1:d2:b4:6f:99:e4:87:31:3b:d7:3d:8f: ad:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:51:A8:EF:41:E6:49:FF:BA:AA:D0:6F:20:14:F3:09:DE:D7:92:8B X509v3 Authority Key Identifier: keyid:54:DE:99:95:0B:7F:C9:58:1F:E8:AC:96:1F:37:B7:89:8F:35:CD:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/VN6ZlQt_yVgf6KyWHze3iY81zcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VN6ZlQt_yVgf6KyWHze3iY81zcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E458/1EC72F2230D811F0A7BE2E4FC4F9AE02/8F8A915C590C11F0AC0A3639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.38.0/23 Signature Algorithm: sha256WithRSAEncryption 80:5a:c2:f3:2c:26:a4:84:36:b4:3c:d3:18:6c:8e:04:9c:89: e4:09:e6:e7:47:3b:23:04:e0:fe:0f:c5:16:8e:f9:05:94:a7: 4b:ea:e8:3e:7f:4e:59:c6:5d:f3:32:b4:53:6a:0a:d9:6f:d2: 5a:df:3f:ab:74:e6:4f:0a:ce:32:a7:54:a0:70:7d:20:e7:7c: 29:39:df:10:48:56:b7:c9:85:11:1b:26:fe:87:f0:79:a8:63: 42:90:97:b8:3a:9f:09:eb:0c:0a:87:56:66:8c:35:83:47:64: ab:b7:c8:05:b5:b6:36:c7:1a:96:9b:d6:2b:fa:a0:71:db:5f: c7:9e:c0:43:9d:e4:21:39:27:83:d5:08:ad:68:5e:b6:6a:d9: 7a:cd:f1:3a:06:d1:1a:9a:98:59:2e:bf:c4:64:43:79:14:8e: d2:f0:22:e9:32:9e:a1:80:44:3b:f8:fc:c3:85:75:16:31:bd: ef:76:24:7f:7f:7d:20:d0:b6:81:11:81:df:8e:9a:f9:72:3f: f5:e5:1b:54:fe:e2:cc:0c:87:ae:b7:3a:cb:da:f2:ef:67:63: bf:c1:fc:10:7b:28:01:78:7d:cb:5f:34:ef:b0:b9:7e:2f:5f: 3c:fa:46:c4:cf:f4:99:a1:23:50:eb:8b:9c:a1:29:85:4d:48: 23:e4:91:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTQ1ODExMC8GA1UEBRMoNTRERTk5OTUwQjdGQzk1ODFGRThBQzk2MUYzN0I3ODk4 RjM1Q0RDMzAeFw0yNTA3MDQxOTI0NTNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjgyYTg1LTc4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGU0M/HsBgxJJXH0KFL7ds5F9lN28mh5xOqCCwxXc2MEb2okcF/Qnt7IKreAmb 2AfPOVmh7X125vJYdLpb4VQl7Yo7aVXNo1Oqp24IJIAlTribhmpdDQ2ZAB79WlsX VVmGL9hoMDFClOjXcqs3c+OAljGm7EpaQLAfqlRPzM3sCBv47he4pyV/OVRO6QqW iRcQnsN2v7HSHP8SBDCPnh0t9AWxsTWoOuWqZoGdWYiSas5iDJFu+qXpJ7E0rnq2 x7QrRp3WUx1wlj+b1bfX9AFbjQgFUjOfabS9LL/wksk1toTd0q/VDyqmHMDB5SC4 cQqOy+HStG+Z5IcxO9c9j62fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgFGo70Hm Sf+6qtBvIBTzCd7XkoswHwYDVR0jBBgwFoAUVN6ZlQt/yVgf6KyWHze3iY81zcMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFNDU4LzFFQzcyRjIyMzBE ODExRjBBN0JFMkU0RkM0RjlBRTAyL1ZONlpsUXRfeVZnZjZLeVdIemUzaVk4MXpj TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVk42WmxRdF95VmdmNkt5V0h6ZTNpWTgxemNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ1OC8xRUM3MkYyMjMwRDgxMUYwQTdCRTJFNEZDNEY5QUUwMi84RjhBOTE1QzU5 MEMxMUYwQUMwQTM2MzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjJjANBgkqhkiG9w0BAQsFAAOCAQEAgFrC8ywmpIQ2tDzT GGyOBJyJ5Anm50c7IwTg/g/FFo75BZSnS+roPn9OWcZd8zK0U2oK2W/SWt8/q3Tm TwrOMqdUoHB9IOd8KTnfEEhWt8mFERsm/ofweahjQpCXuDqfCesMCodWZow1g0dk q7fIBbW2NscalpvWK/qgcdtfx57AQ53kITkng9UIrWhetmrZes3xOgbRGpqYWS6/ xGRDeRSO0vAi6TKeoYBEO/j8w4V1FjG973Ykf399INC2gRGB346a+XI/9eUbVP7i zAyHrrc6y9ry72djv8H8EHsoAXh9y18077C5fi9fPPpGxM/0maEjUOuLnKEphU1I I+SRGA== -----END CERTIFICATE-----Generated at Sun Jul 20 11:38:57 2025 by rpki-client