$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa File: CA5B991430E111F09B76D311C4F9AE02.roa (raw, json) Hash identifier: KDnCMQ2nRjU0Va+lifX6vSdvj7g5AOqm8qx3ZCAL398= Subject key identifier: 49:C9:5B:D0:3D:F2:A0:B9:96:9C:48:F5:11:22:6E:D1:6F:DA:D1:F8 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: 09 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa Signing time: Wed 14 May 2025 16:37:57 +0000 ROA not before: Wed 14 May 2025 16:37:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137899 IP address blocks: 165.99.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: May 14 16:37:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6824c6e5-38e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:3e:7c:f7:86:88:25:62:51:30:c6:da:b3:ab: a4:50:5c:3e:08:4a:49:91:d2:66:0d:5a:13:80:7d: e8:87:50:ef:80:2f:de:52:6f:51:ec:b4:67:2b:99: 11:d4:e2:c1:85:c3:ec:d5:4f:71:ba:85:d1:d5:a9: b7:8a:05:1b:05:c1:95:1e:fa:f3:81:6f:dd:36:1d: 2c:a0:9d:22:a9:81:a1:0f:58:14:94:97:ec:97:dd: b8:0d:bf:4d:38:12:70:d5:8a:ec:53:55:c6:7e:a0: 90:b7:80:53:ea:b1:b1:ea:3b:eb:9d:c9:ec:de:7e: ce:ae:ba:e3:ea:b8:b4:2b:ac:f8:fb:91:28:d0:19: 5d:95:a6:a9:e9:97:d7:d4:62:34:23:3c:9d:0b:1b: af:4e:7c:59:ec:75:78:85:dc:f1:c1:3a:dd:76:36: fa:a2:c5:6a:98:e1:ad:37:58:1f:d9:a9:42:1f:9b: ea:f4:f9:ab:43:84:32:d8:65:98:62:c2:b5:65:d0: 9d:0e:ea:be:93:1d:37:ba:ab:91:42:58:86:f9:4c: ac:9e:f1:38:86:5a:55:da:6f:84:45:ac:33:c5:8f: 2f:c8:d2:5e:4a:57:5f:29:bf:0e:03:79:25:eb:bd: b8:8a:bd:1b:29:33:ec:d2:0f:55:f0:bc:62:14:0e: 02:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C9:5B:D0:3D:F2:A0:B9:96:9C:48:F5:11:22:6E:D1:6F:DA:D1:F8 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.42.0/23 Signature Algorithm: sha256WithRSAEncryption 98:d3:73:c2:a1:c8:ba:9f:4d:a8:5b:17:a2:41:ae:d4:2e:cc: 6c:e8:4c:87:4c:a7:6a:b5:a7:81:06:43:cb:db:a4:eb:2c:89: 5a:89:51:7f:79:bf:5d:6d:87:fa:23:8f:0a:35:a1:5f:da:9a: bf:a5:5f:16:36:7d:29:bb:79:88:37:bb:95:f2:40:d2:1e:39: ca:3e:ad:3e:a6:aa:74:26:95:96:c3:18:c1:04:1f:c3:b1:a4: 46:09:62:22:60:c2:bb:ff:b1:0d:8e:58:9c:7a:9f:26:93:81: 23:77:25:58:1a:a5:15:67:82:b0:e5:74:aa:ba:ab:b9:07:ab: 99:20:4c:86:81:28:09:bb:4d:ed:d6:6f:4b:ce:be:b3:63:0e: 66:ef:7d:55:de:09:ad:ef:58:f6:e1:bd:0d:20:02:29:48:5f: 6a:59:ca:6c:44:f8:c0:60:80:ef:4b:da:06:b2:1d:13:fc:2d: e2:d1:46:76:02:21:f3:76:01:15:61:d3:19:f1:14:ff:3a:c8: f9:e7:fd:2b:e5:6c:ec:78:fa:02:a6:89:ab:17:f9:2e:d8:e6: 6c:26:f7:b5:be:b7:b2:1b:6c:24:d5:de:82:34:e5:21:b7:0a: 22:69:20:57:96:60:86:6b:b9:38:8f:05:5b:47:96:17:89:60: bf:b6:66:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REZDOTExMC8GA1UEBRMoNzY2NUUyODM1RDE2MDA4NUUzMUVDMjQ1MjIyRDRCMkY3 RTQ4NDQwOTAeFw0yNTA1MTQxNjM3NTdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjRjNmU1LTM4ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD8Pnz3hoglYlEwxtqzq6RQXD4ISkmR0mYNWhOAfeiHUO+AL95Sb1HstGcrmRHU 4sGFw+zVT3G6hdHVqbeKBRsFwZUe+vOBb902HSygnSKpgaEPWBSUl+yX3bgNv004 EnDViuxTVcZ+oJC3gFPqsbHqO+udyezefs6uuuPquLQrrPj7kSjQGV2Vpqnpl9fU YjQjPJ0LG69OfFnsdXiF3PHBOt12NvqixWqY4a03WB/ZqUIfm+r0+atDhDLYZZhi wrVl0J0O6r6THTe6q5FCWIb5TKye8TiGWlXab4RFrDPFjy/I0l5KV18pvw4DeSXr vbiKvRspM+zSD1XwvGIUDgKXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSclb0D3y oLmWnEj1ESJu0W/a0fgwHwYDVR0jBBgwFoAUdmXig10WAIXjHsJFIi1LL35IRAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERkM5LzhEMzVFODJFMzAy QzExRjA4Nzc2NEEyQkM0RjlBRTAyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZG1YaWcxMFdBSVhqSHNKRklpMUxMMzVJUkFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REZDOS84RDM1RTgyRTMwMkMxMUYwODc3NjRBMkJDNEY5QUUwMi9DQTVCOTkxNDMw RTExMUYwOUI3NkQzMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjKjANBgkqhkiG9w0BAQsFAAOCAQEAmNNzwqHIup9NqFsX okGu1C7MbOhMh0ynarWngQZDy9uk6yyJWolRf3m/XW2H+iOPCjWhX9qav6VfFjZ9 Kbt5iDe7lfJA0h45yj6tPqaqdCaVlsMYwQQfw7GkRgliImDCu/+xDY5YnHqfJpOB I3clWBqlFWeCsOV0qrqruQermSBMhoEoCbtN7dZvS86+s2MOZu99Vd4Jre9Y9uG9 DSACKUhfalnKbET4wGCA70vaBrIdE/wt4tFGdgIh83YBFWHTGfEU/zrI+ef9K+Vs 7Hj6AqaJqxf5LtjmbCb3tb63shtsJNXegjTlIbcKImkgV5Zghmu5OI8FW0eWF4lg v7Zmkg== -----END CERTIFICATE-----Generated at Thu Jun 5 19:08:50 2025 by rpki-client