$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/900FB71E596711F093280246C4F9AE02.roa File: 900FB71E596711F093280246C4F9AE02.roa (raw, json) Hash identifier: tpoAf7rWotW8KjjlHeClNMLXYiXyuuy+xdTcFAlJiIw= Subject key identifier: 3A:D4:CD:38:F9:C2:EA:68:35:59:F2:04:63:90:3D:47:27:5C:4A:76 Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 02 Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/900FB71E596711F093280246C4F9AE02.roa Signing time: Sat 05 Jul 2025 06:16:18 +0000 ROA not before: Sat 05 Jul 2025 06:16:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134732 IP address blocks: 165.101.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Jul 5 06:16:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6868c332-9819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f6:c3:eb:81:cf:9a:c0:50:d3:5e:bb:a5:f4: 38:17:99:f6:80:b8:42:c6:34:27:53:ca:e8:ee:0c: 7f:6e:6b:b3:76:eb:04:00:4f:13:46:48:48:17:3f: a2:85:16:a9:5a:dd:23:fd:aa:51:e9:69:87:c7:5a: 5d:d5:31:8d:80:68:6a:86:80:51:47:61:48:f6:f7: 90:b1:42:d3:da:2f:9e:f1:c7:18:3a:af:15:4c:ef: e5:e3:39:b0:88:f0:7d:18:4d:79:72:90:23:0d:4a: b3:24:49:1a:d1:5f:49:61:ed:b3:7d:92:6f:e0:12: 42:ae:68:4b:6b:55:7c:a0:67:cb:dd:6e:4a:12:75: 7f:22:a7:2b:d6:d4:5f:8e:23:85:90:2f:a4:67:d9: d9:d9:7b:b4:4c:8f:14:a7:32:3d:df:80:a0:51:87: 18:d1:a4:93:d5:11:d5:2b:b9:f1:1c:ff:86:4a:14: 2c:34:8c:b7:ea:51:82:39:7f:77:8e:1b:98:e8:21: 02:76:73:12:9e:5b:25:f7:31:a4:84:60:0d:89:63: cc:e7:4c:52:8a:39:11:d3:c3:b4:91:53:05:09:07: 03:6d:d9:85:ee:43:3b:66:70:83:2d:54:f6:a9:14: 1b:4c:0f:2d:7c:8f:e8:1b:07:d9:5c:5a:db:33:6f: 9d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D4:CD:38:F9:C2:EA:68:35:59:F2:04:63:90:3D:47:27:5C:4A:76 X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/900FB71E596711F093280246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.132.0/23 Signature Algorithm: sha256WithRSAEncryption b5:ac:fc:39:c5:31:94:73:7c:dc:71:2d:9c:5e:ca:b9:9b:dd: 09:7e:90:24:43:d6:74:58:8d:70:52:d1:d1:15:d9:f0:bd:dd: 81:21:42:b8:d3:3a:40:b8:1e:b9:94:67:56:cb:67:91:c8:42: 7a:4b:23:54:7f:d3:9c:23:6f:a4:5d:68:74:3a:55:b4:70:c9: fe:44:b1:a1:0a:cd:2d:81:08:8e:31:67:a3:5e:22:66:b0:7f: 56:a8:a7:8f:53:9e:b7:c5:93:83:fd:fd:17:15:79:ee:c0:ef: 3b:a1:94:d2:27:e3:72:02:27:34:82:2c:ad:0b:2d:82:c5:92: ba:17:12:1d:12:18:f8:cc:2f:81:45:dd:fd:f8:55:f3:22:9a: aa:e9:c7:d7:6b:3b:6f:b2:c0:56:fe:02:37:16:3a:19:86:21: cb:74:32:15:3c:be:a7:ac:93:0e:65:68:f6:d0:69:aa:de:06: 88:eb:30:e2:a1:98:55:0b:61:af:cc:12:cb:70:06:e0:e8:ff: 27:4e:bc:d1:40:3b:1d:1d:be:45:cf:16:8b:b3:86:f0:35:a5: 11:4d:9a:fc:e6:5e:24:21:42:99:4b:df:01:d9:0a:ec:c5:82: 37:b6:b2:30:a2:1f:69:b1:8a:25:2b:af:f4:b1:dc:d7:11:e0: 66:d8:ec:4d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTA3MDUwNjE2MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjhjMzMyLTk4MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr9sPrgc+awFDTXrul9DgXmfaAuELGNCdTyujuDH9ua7N26wQATxNGSEgXP6KF Fqla3SP9qlHpaYfHWl3VMY2AaGqGgFFHYUj295CxQtPaL57xxxg6rxVM7+XjObCI 8H0YTXlykCMNSrMkSRrRX0lh7bN9km/gEkKuaEtrVXygZ8vdbkoSdX8ipyvW1F+O I4WQL6Rn2dnZe7RMjxSnMj3fgKBRhxjRpJPVEdUrufEc/4ZKFCw0jLfqUYI5f3eO G5joIQJ2cxKeWyX3MaSEYA2JY8znTFKKORHTw7SRUwUJBwNt2YXuQztmcIMtVPap FBtMDy18j+gbB9lcWtszb539AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOtTNOPnC 6mg1WfIEY5A9RydcSnYwHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNBQS80OUExQTg3ODU5NjcxMUYwOEM0MDc5MkNDNEY5QUUwMi85MDBGQjcxRTU5 NjcxMUYwOTMyODAyNDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlhDANBgkqhkiG9w0BAQsFAAOCAQEAtaz8OcUxlHN83HEt nF7KuZvdCX6QJEPWdFiNcFLR0RXZ8L3dgSFCuNM6QLgeuZRnVstnkchCeksjVH/T nCNvpF1odDpVtHDJ/kSxoQrNLYEIjjFno14iZrB/Vqinj1Oet8WTg/39FxV57sDv O6GU0ifjcgInNIIsrQstgsWSuhcSHRIY+MwvgUXd/fhV8yKaqunH12s7b7LAVv4C NxY6GYYhy3QyFTy+p6yTDmVo9tBpqt4GiOsw4qGYVQthr8wSy3AG4Oj/J0680UA7 HR2+Rc8Wi7OG8DWlEU2a/OZeJCFCmUvfAdkK7MWCN7ayMKIfabGKJSuv9LHc1xHg ZtjsTQ== -----END CERTIFICATE-----Generated at Sun Jul 20 12:32:01 2025 by rpki-client