$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/570B12E0562611F09F085F44C4F9AE02.roa File: 570B12E0562611F09F085F44C4F9AE02.roa (raw, json) Hash identifier: fh4pbk7ZgyPKBaTjsRWjp1tC+xa/lcPj1cdrRM1oMjA= Subject key identifier: 35:FD:2D:BE:F7:09:2F:E8:26:B9:22:10:27:46:FD:FE:25:64:AB:24 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: B9 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/570B12E0562611F09F085F44C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:20:45 +0000 ROA not before: Tue 01 Jul 2025 02:51:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 401696 IP address blocks: 165.99.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: Jul 1 02:51:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59cbd-d2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:45:51:1b:e2:5c:3e:f1:4f:12:30:f4:a2: 50:74:1a:7e:00:02:da:b9:e4:98:fa:08:2e:8e:b3: 7f:b4:25:8d:07:8a:6b:7c:e3:9c:74:af:ea:14:f3: 82:1a:5f:56:72:c1:e9:ba:fe:82:09:b8:a5:0d:04: 5d:3c:4d:54:26:09:df:b3:79:81:3e:6d:8c:f9:7c: 44:33:d2:14:1c:42:b4:01:b8:81:b9:0f:4d:b6:eb: 91:73:b4:4d:8d:57:3f:0f:49:07:48:72:53:dc:aa: 88:72:4b:99:02:ac:78:24:e2:5d:e0:99:8f:2d:62: be:39:15:b9:4d:ad:fb:6d:97:1e:12:63:8c:53:06: 99:40:48:bd:94:4d:6f:94:3c:24:24:73:53:55:13: f4:a2:44:d2:70:3a:ce:a6:84:91:49:43:3d:0c:5b: 30:7b:18:c5:c9:49:33:29:0c:9c:fa:ec:9e:17:cc: 92:20:05:34:fb:d6:26:f1:e2:c5:1b:72:34:de:00: be:8d:ce:53:6b:27:0f:22:78:b6:be:be:61:a7:3d: 5c:0b:b5:22:d6:eb:9d:ed:a6:90:5d:b6:14:68:c0: f7:3f:3f:62:c6:27:7a:8d:76:fd:e2:e2:9e:26:cc: e4:7b:f6:44:f3:41:be:74:93:ba:24:d4:15:a0:e8: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FD:2D:BE:F7:09:2F:E8:26:B9:22:10:27:46:FD:FE:25:64:AB:24 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/570B12E0562611F09F085F44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.42.0/23 Signature Algorithm: sha256WithRSAEncryption 64:c4:20:22:9a:5d:e8:7d:c8:2b:91:3a:98:60:25:f3:97:4d: ad:61:a7:e6:03:dd:9b:06:84:87:b1:8e:4f:96:10:95:95:5f: 0a:5a:dd:48:cd:ab:bc:23:69:61:f9:b6:c6:fa:0f:df:b2:e8: 93:62:20:00:13:2f:36:00:12:80:08:26:1b:95:d5:04:69:39: 09:bc:cc:63:23:a5:1f:80:73:58:58:ae:0a:e3:bf:0e:49:65: 8d:dc:5d:fd:34:7a:37:fe:07:e9:8c:a3:3e:ec:bf:8a:80:4d: 79:41:c9:16:0a:99:4a:c1:90:4d:e8:cf:f4:50:d4:37:c1:6a: ef:b3:5b:33:5c:7d:7e:90:3f:49:ff:1e:df:73:99:73:42:c9: a7:3d:1a:b6:29:92:19:86:60:3c:27:58:68:8b:bd:b8:d9:33: c0:52:55:a8:4b:5b:1f:85:bc:91:ee:1a:29:0a:47:0e:6c:3a: 91:5b:0f:3b:c3:7b:df:95:ea:05:4e:ce:c0:32:c2:7a:b8:08: b5:9e:fb:4d:61:36:fe:af:23:ba:e1:2e:05:44:19:1b:52:6a: 3d:56:d2:dc:b3:95:e7:f0:69:4a:1b:2f:ce:d9:fe:65:ff:48: 8e:5c:ce:76:65:eb:f2:3c:6a:35:99:8a:a7:fe:92:ee:3d:89: 0e:c5:8f:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjUwNzAxMDI1MTUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWNiZC1kMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1pFURviXD7xTxIw9KJQdBp+AALaueSY+ggujrN/tCWNB4prfOOcdK/qFPOC Gl9WcsHpuv6CCbilDQRdPE1UJgnfs3mBPm2M+XxEM9IUHEK0AbiBuQ9NtuuRc7RN jVc/D0kHSHJT3KqIckuZAqx4JOJd4JmPLWK+ORW5Ta37bZceEmOMUwaZQEi9lE1v lDwkJHNTVRP0okTScDrOpoSRSUM9DFswexjFyUkzKQyc+uyeF8ySIAU0+9Ym8eLF G3I03gC+jc5TaycPIni2vr5hpz1cC7Ui1uud7aaQXbYUaMD3Pz9ixid6jXb94uKe Jszke/ZE80G+dJO6JNQVoOhRDQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDX9Lb73 CS/oJrkiECdG/f4lZKskMB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGQzkvOEQzNUU4MkUzMDJDMTFGMDg3NzY0QTJCQzRGOUFFMDIvNTcwQjEyRTA1 NjI2MTFGMDlGMDg1RjQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWMqMA0GCSqGSIb3DQEBCwUAA4IBAQBkxCAiml3ofcgrkTqYYCXz l02tYafmA92bBoSHsY5PlhCVlV8KWt1Izau8I2lh+bbG+g/fsuiTYiAAEy82ABKA CCYbldUEaTkJvMxjI6UfgHNYWK4K478OSWWN3F39NHo3/gfpjKM+7L+KgE15QckW CplKwZBN6M/0UNQ3wWrvs1szXH1+kD9J/x7fc5lzQsmnPRq2KZIZhmA8J1hoi724 2TPAUlWoS1sfhbyR7hopCkcObDqRWw87w3vfleoFTs7AMsJ6uAi1nvtNYTb+ryO6 4S4FRBkbUmo9VtLcs5Xn8GlKGy/O2f5l/0iOXM52ZevyPGo1mYqn/pLuPYkOxY9d -----END CERTIFICATE-----Generated at Wed Mar 4 14:22:38 2026 by rpki-client