$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa File: AE31872C5DBD11F083DD7F61C4F9AE02.roa (raw, json) Hash identifier: eyKHyX1nC8rcYA1x+etP21iE0ELwmQ5yf7hxtFXOuMQ= Subject key identifier: 80:45:53:F1:A7:FB:F2:4D:D4:BA:1C:61:B1:E3:F4:15:FA:84:B0:10 Certificate issuer: /CN=A91A99C5/serialNumber=564B69178F269EFB96B76916F78170754E8F0C87 Certificate serial: 02 Authority key identifier: 56:4B:69:17:8F:26:9E:FB:96:B7:69:16:F7:81:70:75:4E:8F:0C:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa Signing time: Thu 10 Jul 2025 18:42:50 +0000 ROA not before: Thu 10 Jul 2025 18:42:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153998 IP address blocks: 165.101.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.crl rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=564B69178F269EFB96B76916F78170754E8F0C87 Validity Not Before: Jul 10 18:42:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687009aa-706f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b6:1d:57:71:da:01:44:f8:76:33:b0:4d:74: fb:60:72:e6:b6:ed:11:a2:e5:69:f2:bb:ac:59:72: bb:28:75:aa:47:9a:53:2d:69:0d:41:7d:ba:14:0d: c7:7b:c1:6b:d1:77:1c:a7:b7:56:d0:5c:ad:82:70: fa:1f:ac:64:fc:4a:51:6c:33:a5:e4:cb:35:9e:40: d4:a1:a9:47:43:dc:3a:93:d1:94:fe:64:28:bd:d1: 21:d3:47:65:ad:70:59:8c:87:65:b5:a9:ad:20:00: 65:2a:b5:86:fe:2d:5b:2d:48:16:25:c1:f0:a4:7e: 39:74:ac:aa:a7:1a:0a:f1:dd:80:63:b1:34:7e:e0: 80:73:6f:0f:04:f8:ef:8b:74:5f:4d:bb:53:d5:1f: 74:d4:96:df:87:af:1f:73:8f:1a:0e:1c:de:67:89: 64:db:7a:23:72:ff:66:83:95:fd:ec:54:15:0c:cd: 34:53:5d:a9:c1:ec:65:a4:5c:32:53:5f:cd:19:03: 9a:e2:be:0d:90:7e:57:a6:e9:b1:bb:b9:cd:1b:d4: 03:e9:c9:a2:63:f5:1e:d6:69:6e:b4:5a:7f:9f:cf: 5b:f9:fa:55:c5:2b:b2:13:51:a3:4f:e4:2a:3f:cc: a5:05:dc:f0:7b:1a:3e:7b:77:dc:d4:9a:3f:57:3c: d5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:45:53:F1:A7:FB:F2:4D:D4:BA:1C:61:B1:E3:F4:15:FA:84:B0:10 X509v3 Authority Key Identifier: keyid:56:4B:69:17:8F:26:9E:FB:96:B7:69:16:F7:81:70:75:4E:8F:0C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.68.0/23 Signature Algorithm: sha256WithRSAEncryption 52:f0:7e:2e:50:4a:97:70:0a:b2:af:22:2c:6a:69:30:32:ae: 30:23:8f:c9:70:12:59:7d:56:f5:ee:5e:ac:84:f4:e3:39:c8: 51:ea:61:e7:2f:85:f6:99:d2:88:96:5e:49:90:bc:61:23:dd: 99:8d:ff:db:d3:39:3a:d8:09:57:10:20:9b:64:cd:0b:f4:59: e5:cb:f1:13:c5:e9:84:80:eb:96:43:23:21:ee:d4:5c:1d:5f: b2:02:2d:ae:9b:37:97:36:d8:89:b2:1e:12:27:09:3f:ea:9e: 58:87:df:0a:25:24:61:c5:74:4a:cb:f1:a4:5b:2f:24:5a:38: f0:74:29:91:17:48:27:ac:fe:a2:25:f1:04:c4:1a:fb:05:a3: 93:de:78:88:5e:5c:75:88:1e:b7:66:36:14:fe:c1:58:4b:f6: c9:78:d7:ed:6b:62:22:28:48:34:28:66:e5:39:4d:50:00:93: bd:6b:30:b7:bf:84:a4:41:d7:d3:f6:d6:df:63:6e:28:ba:d8: 3b:c7:f4:a0:1f:fb:a1:e5:5c:42:ca:fe:2d:59:ab:bc:3d:5c: 1d:1b:f6:d1:74:a6:78:06:35:5f:f3:2a:14:f0:90:d8:f2:3b: c8:6f:8c:95:14:3b:c5:9f:1e:6d:e2:8d:bc:52:a2:f1:bf:cf: 5b:ec:4a:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoNTY0QjY5MTc4RjI2OUVGQjk2Qjc2OTE2Rjc4MTcwNzU0 RThGMEM4NzAeFw0yNTA3MTAxODQyNTBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzAwOWFhLTcwNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSth1XcdoBRPh2M7BNdPtgcua27RGi5Wnyu6xZcrsodapHmlMtaQ1BfboUDcd7 wWvRdxynt1bQXK2CcPofrGT8SlFsM6XkyzWeQNShqUdD3DqT0ZT+ZCi90SHTR2Wt cFmMh2W1qa0gAGUqtYb+LVstSBYlwfCkfjl0rKqnGgrx3YBjsTR+4IBzbw8E+O+L dF9Nu1PVH3TUlt+Hrx9zjxoOHN5niWTbeiNy/2aDlf3sVBUMzTRTXanB7GWkXDJT X80ZA5rivg2Qflem6bG7uc0b1APpyaJj9R7WaW60Wn+fz1v5+lXFK7ITUaNP5Co/ zKUF3PB7Gj57d9zUmj9XPNWvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgEVT8af7 8k3UuhxhseP0FfqEsBAwHwYDVR0jBBgwFoAUVktpF48mnvuWt2kW94FwdU6PDIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1L0ZDMDFFODdDNURC QjExRjA5QUExNzg1MEM0RjlBRTAyL1ZrdHBGNDhtbnZ1V3Qya1c5NEZ3ZFU2UERJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmt0cEY0OG1udnVXdDJrVzk0RndkVTZQREljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlDNS9GQzAxRTg3QzVEQkIxMUYwOUFBMTc4NTBDNEY5QUUwMi9BRTMxODcyQzVE QkQxMUYwODNERDdGNjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlRDANBgkqhkiG9w0BAQsFAAOCAQEAUvB+LlBKl3AKsq8i LGppMDKuMCOPyXASWX1W9e5erIT04znIUeph5y+F9pnSiJZeSZC8YSPdmY3/29M5 OtgJVxAgm2TNC/RZ5cvxE8XphIDrlkMjIe7UXB1fsgItrps3lzbYibIeEicJP+qe WIffCiUkYcV0SsvxpFsvJFo48HQpkRdIJ6z+oiXxBMQa+wWjk954iF5cdYget2Y2 FP7BWEv2yXjX7WtiIihINChm5TlNUACTvWswt7+EpEHX0/bW32NuKLrYO8f0oB/7 oeVcQsr+LVmrvD1cHRv20XSmeAY1X/MqFPCQ2PI7yG+MlRQ7xZ8ebeKNvFKi8b/P W+xKiA== -----END CERTIFICATE-----Generated at Sun Jul 20 06:54:14 2025 by rpki-client