$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/C100F8FE385D11F0B165166CC4F9AE02.roa File: C100F8FE385D11F0B165166CC4F9AE02.roa (raw, json) Hash identifier: X4yO+2uZWy3hhNHPg2Botaoo1uuwNwgNw2Z5oY+nYVw= Subject key identifier: 5D:46:94:C2:5A:E1:2B:03:06:15:89:90:1C:60:16:C1:9E:09:87:AD Certificate issuer: /CN=A9113BB0/serialNumber=45B18E209ECFDDA5CED78CF9D9810D611E6D4124 Certificate serial: 0A Authority key identifier: 45:B1:8E:20:9E:CF:DD:A5:CE:D7:8C:F9:D9:81:0D:61:1E:6D:41:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/C100F8FE385D11F0B165166CC4F9AE02.roa Signing time: Sat 24 May 2025 05:12:57 +0000 ROA not before: Sat 24 May 2025 05:12:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150142 IP address blocks: 165.99.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.crl rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BB0, serialNumber=45B18E209ECFDDA5CED78CF9D9810D611E6D4124 Validity Not Before: May 24 05:12:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68315559-0291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ed:0c:b2:6c:2e:ed:bf:75:a4:eb:a2:fd:be: 02:d1:75:a2:ba:db:10:94:7e:5a:2a:32:bf:fa:76: 57:c6:fd:a1:3b:0e:80:3b:ee:e5:f0:97:0a:62:e6: c7:a8:37:7b:fc:dc:92:6a:bb:a0:11:86:86:b1:5a: bf:f8:22:1c:31:04:b5:23:4d:50:bb:af:c2:08:f9: 3b:40:8d:03:a4:0a:ff:fd:1d:61:40:de:0a:7a:32: a2:54:a9:c9:9b:2f:cd:a6:6d:06:93:d5:9c:81:59: bd:5d:4b:39:8b:8b:c9:db:68:58:c1:43:8f:e3:fb: e0:30:6d:87:11:bd:d4:bf:fe:e7:0b:33:5a:e9:cb: 6b:f9:8f:5c:59:23:32:58:f1:8e:f6:4d:5b:1d:2c: ab:03:13:93:18:60:09:0d:e2:78:9a:d1:b6:d3:03: 77:2e:2a:81:44:bf:32:b4:ff:09:b2:e2:0c:83:bf: 65:13:67:28:60:8d:47:35:ad:5d:ec:9a:46:a9:84: d5:d7:27:45:ba:57:3b:6d:01:92:82:9d:f8:41:1b: 55:15:6c:cf:ed:bd:fd:15:85:45:11:71:d9:05:3e: ab:de:ab:21:24:b0:9f:ec:c3:73:e5:59:87:de:8b: 16:e6:e7:73:05:41:11:1d:91:b5:39:fc:c9:8a:4f: 7f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:46:94:C2:5A:E1:2B:03:06:15:89:90:1C:60:16:C1:9E:09:87:AD X509v3 Authority Key Identifier: keyid:45:B1:8E:20:9E:CF:DD:A5:CE:D7:8C:F9:D9:81:0D:61:1E:6D:41:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/C100F8FE385D11F0B165166CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.74.0/24 Signature Algorithm: sha256WithRSAEncryption 74:4b:42:6a:32:e1:73:ac:35:76:9c:18:7c:ff:d9:52:8f:c9: d9:72:92:e2:44:a4:7f:25:29:13:98:7e:68:d1:e1:9f:c5:ce: 0a:fc:37:d6:44:68:bd:25:50:d9:f5:5f:a5:1d:43:1b:09:10: a8:55:1b:10:38:8a:af:ea:96:02:26:94:0a:02:fd:25:3a:71: aa:2e:f5:d5:c9:94:da:15:5f:41:4b:71:e8:dd:12:88:93:f6: 6d:ea:f8:db:f2:48:f7:17:bd:ea:1a:9a:f3:4d:21:29:c5:77: 08:19:a7:a4:20:a8:10:e8:45:83:b9:b3:dc:7f:63:fa:66:01: 96:e2:9c:4d:1c:f0:ad:0a:07:f9:ae:56:f3:a4:a0:7e:18:a2: ce:6f:dc:33:9b:90:54:c9:a6:14:51:98:9f:0d:7c:61:33:eb: 85:e4:0e:61:0a:7d:10:4c:e6:3f:16:61:06:50:9a:36:b2:93: ff:21:ea:4e:9f:84:08:99:62:c1:9f:e3:23:48:32:ec:f5:34: 07:07:36:ae:b3:cc:1e:d0:6d:f2:d3:c7:58:18:c9:5b:a5:88: e9:61:77:50:05:61:94:54:07:c1:7f:aa:bb:33:fa:c1:07:44: 89:04:42:8c:c4:6e:6d:ef:25:66:fd:05:06:63:ee:b2:82:5f: bc:6d:7f:b4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx M0JCMDExMC8GA1UEBRMoNDVCMThFMjA5RUNGRERBNUNFRDc4Q0Y5RDk4MTBENjEx RTZENDEyNDAeFw0yNTA1MjQwNTEyNTdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzE1NTU5LTAyOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC67QyybC7tv3Wk66L9vgLRdaK62xCUfloqMr/6dlfG/aE7DoA77uXwlwpi5seo N3v83JJqu6ARhoaxWr/4IhwxBLUjTVC7r8II+TtAjQOkCv/9HWFA3gp6MqJUqcmb L82mbQaT1ZyBWb1dSzmLi8nbaFjBQ4/j++AwbYcRvdS//ucLM1rpy2v5j1xZIzJY 8Y72TVsdLKsDE5MYYAkN4nia0bbTA3cuKoFEvzK0/wmy4gyDv2UTZyhgjUc1rV3s mkaphNXXJ0W6VzttAZKCnfhBG1UVbM/tvf0VhUURcdkFPqveqyEksJ/sw3PlWYfe ixbm53MFQREdkbU5/MmKT3/tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXUaUwlrh KwMGFYmQHGAWwZ4Jh60wHwYDVR0jBBgwFoAURbGOIJ7P3aXO14z52YENYR5tQSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzQkIwLzlGRkRBQjc2MzIz QTExRjBCRjlFMUQzNkM0RjlBRTAyL1JiR09JSjdQM2FYTzE0ejUyWUVOWVI1dFFT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmJHT0lKN1AzYVhPMTR6NTJZRU5ZUjV0UVNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JCMC85RkZEQUI3NjMyM0ExMUYwQkY5RTFEMzZDNEY5QUUwMi9DMTAwRjhGRTM4 NUQxMUYwQjE2NTE2NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjSjANBgkqhkiG9w0BAQsFAAOCAQEAdEtCajLhc6w1dpwY fP/ZUo/J2XKS4kSkfyUpE5h+aNHhn8XOCvw31kRovSVQ2fVfpR1DGwkQqFUbEDiK r+qWAiaUCgL9JTpxqi711cmU2hVfQUtx6N0SiJP2ber42/JI9xe96hqa800hKcV3 CBmnpCCoEOhFg7mz3H9j+mYBluKcTRzwrQoH+a5W86Sgfhiizm/cM5uQVMmmFFGY nw18YTPrheQOYQp9EEzmPxZhBlCaNrKT/yHqTp+ECJliwZ/jI0gy7PU0Bwc2rrPM HtBt8tPHWBjJW6WI6WF3UAVhlFQHwX+quzP6wQdEiQRCjMRube8lZv0FBmPusoJf vG1/tA== -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:47 2025 by rpki-client