$ rpki-client -vvf rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/4DC60A785C7F11F089D20138C4F9AE02.roa File: 4DC60A785C7F11F089D20138C4F9AE02.roa (raw, json) Hash identifier: 6Vnq1spFXaLfT9Zg1ghh5PPz6XLDWciXVK572d6VJmI= Subject key identifier: 33:7A:DA:C5:BF:94:A8:23:C1:2C:E8:4A:F3:59:75:22:39:D9:89:E8 Certificate issuer: /CN=A91877A6/serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Certificate serial: 04 Authority key identifier: A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/4DC60A785C7F11F089D20138C4F9AE02.roa Signing time: Wed 09 Jul 2025 04:50:53 +0000 ROA not before: Wed 09 Jul 2025 04:50:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153995 IP address blocks: 165.101.74.0/23 maxlen: 23 165.101.74.0/24 maxlen: 24 165.101.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91877A6, serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Validity Not Before: Jul 9 04:50:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686df52c-9222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:ec:6c:9b:da:bd:74:f9:6f:52:b4:9c:d6: f4:fe:8a:71:3a:86:6f:c9:03:7f:a2:4f:6a:99:96: 16:6e:54:f2:a0:00:e8:b6:2c:4e:27:a7:2c:4b:de: ab:b8:8a:7b:41:89:53:36:77:6c:19:93:dc:27:eb: 2e:a8:4e:7a:fa:12:01:b4:47:90:8c:28:25:69:b0: 6d:ff:76:35:1f:d2:31:0b:36:30:2b:05:1a:f7:51: 85:c7:7e:08:79:0a:05:4d:a1:d8:7e:d8:e5:ea:24: d5:71:b9:a7:8b:45:1c:51:c8:66:66:1e:af:48:fc: 36:4d:b5:9f:8e:3b:2a:66:7c:fa:6c:4f:68:d2:46: 3c:6d:46:2e:1f:d0:c0:d7:4f:d9:39:33:b5:3d:bb: 76:bf:e1:69:a3:55:c9:05:23:e2:97:dd:57:23:6f: fe:84:11:53:a2:96:a8:13:49:3c:57:cc:85:b7:83: 8b:9e:b5:07:db:e9:cb:7d:f9:5d:48:ff:ee:26:32: 2e:c9:13:d1:40:8f:4a:9d:57:9f:73:31:35:26:53: c3:92:e1:75:60:0b:f4:72:1a:c7:a6:ea:87:d2:4f: 93:e1:c6:c5:71:6c:aa:ae:98:7d:4d:fa:d6:05:39: ae:5c:ea:8f:17:15:6d:bd:3f:ed:d0:5f:88:a8:5b: 52:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:7A:DA:C5:BF:94:A8:23:C1:2C:E8:4A:F3:59:75:22:39:D9:89:E8 X509v3 Authority Key Identifier: keyid:A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/4DC60A785C7F11F089D20138C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.74.0/23 Signature Algorithm: sha256WithRSAEncryption 92:ec:ed:6d:34:a6:b4:de:22:59:66:a9:b4:7d:a4:24:7b:f1: 17:b8:5f:64:d7:cc:99:e5:c3:00:b6:16:9b:3f:e1:f8:a8:f9: 4a:3c:90:23:d4:9d:27:7f:68:d2:8b:ff:d4:18:50:ae:6b:47: 65:80:e3:80:b4:84:2b:31:00:00:9c:46:4e:6d:41:e5:06:58: 0a:62:36:09:60:4c:8f:6b:8e:08:75:38:db:53:de:32:77:07: 01:e2:63:59:b3:d4:30:cb:3f:b2:fa:f5:ff:24:31:cc:fe:99: f0:99:7f:86:bc:3e:b6:4b:8d:7b:8a:22:86:83:6d:3e:17:40: ba:6a:79:ae:9b:18:93:2f:23:ef:eb:f8:ae:c2:b3:25:38:3c: a4:1f:ec:8c:bf:91:d8:f3:c6:f8:5c:6c:5e:f4:d6:ef:ba:a5: 69:fb:68:1b:92:54:7c:9c:ac:e4:38:a6:4c:00:db:28:3f:68: b8:4b:47:31:50:cc:ca:ff:7e:35:c8:a5:6f:ee:13:8f:dd:33: 31:cd:4b:09:9d:29:39:a5:c9:c4:c2:cb:3a:c1:22:6b:e9:e6: ea:2f:3a:e7:20:99:96:7f:90:8f:9f:86:72:0f:41:95:f4:e9: 34:58:e1:f6:cf:a2:e4:58:b1:e0:83:b1:c0:43:3d:2d:17:c7: d5:2d:9e:3e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzdBNjExMC8GA1UEBRMoQTNGMTAwNDlBMzkzQUY5RENBNDQ1OTY2NjQxNjZCODc0 MDJGODIyQTAeFw0yNTA3MDkwNDUwNTNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmRmNTJjLTkyMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5m+xsm9q9dPlvUrSc1vT+inE6hm/JA3+iT2qZlhZuVPKgAOi2LE4npyxL3qu4 intBiVM2d2wZk9wn6y6oTnr6EgG0R5CMKCVpsG3/djUf0jELNjArBRr3UYXHfgh5 CgVNodh+2OXqJNVxuaeLRRxRyGZmHq9I/DZNtZ+OOypmfPpsT2jSRjxtRi4f0MDX T9k5M7U9u3a/4WmjVckFI+KX3Vcjb/6EEVOilqgTSTxXzIW3g4uetQfb6ct9+V1I /+4mMi7JE9FAj0qdV59zMTUmU8OS4XVgC/RyGsem6ofST5PhxsVxbKqumH1N+tYF Oa5c6o8XFW29P+3QX4ioW1JdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUM3raxb+U qCPBLOhK81l1IjnZiegwHwYDVR0jBBgwFoAUo/EASaOTr53KRFlmZBZrh0Avgiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3N0E2L0JERUU3Qjg4NUM3 RTExRjBBNUMzNjAzNkM0RjlBRTAyL29fRUFTYU9UcjUzS1JGbG1aQlpyaDBBdmdp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb19FQVNhT1RyNTNLUkZsbVpCWnJoMEF2Z2lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzdBNi9CREVFN0I4ODVDN0UxMUYwQTVDMzYwMzZDNEY5QUUwMi80REM2MEE3ODVD N0YxMUYwODlEMjAxMzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlSjANBgkqhkiG9w0BAQsFAAOCAQEAkuztbTSmtN4iWWap tH2kJHvxF7hfZNfMmeXDALYWmz/h+Kj5SjyQI9SdJ39o0ov/1BhQrmtHZYDjgLSE KzEAAJxGTm1B5QZYCmI2CWBMj2uOCHU421PeMncHAeJjWbPUMMs/svr1/yQxzP6Z 8Jl/hrw+tkuNe4oihoNtPhdAump5rpsYky8j7+v4rsKzJTg8pB/sjL+R2PPG+Fxs XvTW77qlaftoG5JUfJys5DimTADbKD9ouEtHMVDMyv9+Ncilb+4Tj90zMc1LCZ0p OaXJxMLLOsEia+nm6i865yCZln+Qj5+Gcg9BlfTpNFjh9s+i5Fix4IOxwEM9LRfH 1S2ePg== -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:51 2025 by rpki-client