$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa File: CA5B991430E111F09B76D311C4F9AE02.roa (raw, json) Hash identifier: PEnLi/2yYSoy8XLBMGLd/6VOl25IvlE5IW4q9j8andY= Subject key identifier: 16:73:12:58:38:D9:C3:E9:36:05:50:7E:DF:9C:EA:B9:67:BB:44:B9 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: B4 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:20:41 +0000 ROA not before: Wed 14 May 2025 16:37:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137899 IP address blocks: 165.99.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: May 14 16:37:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59cb9-6ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d3:24:dd:fa:7e:69:cb:2b:83:65:e1:3a:d3: cc:d3:35:51:29:fe:38:0a:cc:c7:6e:a7:5d:43:58: 52:25:28:76:e6:f3:25:1a:45:82:f5:d7:90:a0:bd: 64:e0:a4:3f:cf:9b:a2:3d:95:82:95:13:b6:08:3d: 9f:c4:da:0e:88:d5:8c:76:a3:6f:d2:2c:ca:e8:57: 03:10:5d:07:52:2c:c0:1f:47:4e:bb:9b:ab:1c:9c: 34:28:a3:29:68:e6:57:c4:85:59:95:9c:48:84:e2: 01:c4:64:38:e1:65:40:ee:1d:4f:1e:c3:0a:05:5b: f7:3a:3f:d2:19:fa:19:38:a8:0d:a1:14:97:aa:42: ed:bf:d1:5d:70:02:4a:2b:a4:2f:f3:3c:ee:45:42: 97:31:05:f8:2a:5b:0f:03:63:29:7f:f9:ed:2b:b1: 70:5f:b3:9a:8a:2b:82:0f:aa:c5:3f:0b:a3:5c:ab: 78:b3:62:7b:e0:c7:dc:58:29:f1:58:ba:f8:80:96: b2:cb:ae:27:e7:e9:9f:f2:53:9c:7e:3d:41:53:85: c1:dc:fc:ed:be:e9:25:52:ad:33:87:bf:10:d2:77: 85:c3:86:bb:83:b3:b1:c9:f2:d3:bb:db:fa:21:19: f0:b2:ca:b4:fe:a9:3c:0d:e0:08:2b:40:7b:27:f2: 1e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:73:12:58:38:D9:C3:E9:36:05:50:7E:DF:9C:EA:B9:67:BB:44:B9 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CA5B991430E111F09B76D311C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.42.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:a8:98:f1:10:1c:7f:09:da:6c:2c:2b:9f:5a:c0:50:50:43: d6:4e:05:5a:ee:cd:1b:ca:17:79:e6:51:86:6e:e8:a3:c7:30: 13:dc:23:9b:b7:bc:df:d3:2e:f7:4f:aa:be:e1:31:54:fe:b1: ef:22:a2:21:86:0b:a9:69:d2:4b:3f:98:20:ee:ca:a4:ac:c8: d3:9f:09:3d:50:3c:be:6e:d5:4b:73:ac:82:fc:11:1b:ee:24: 57:3f:7b:10:8a:6b:45:1f:f8:1c:4c:c6:26:c4:3f:fd:21:31: 0f:9c:1d:3d:24:42:e4:46:cf:77:e0:2d:69:8a:8b:6c:ec:3f: 66:0e:04:21:09:b8:35:c7:97:52:56:a8:b1:39:02:b9:e9:c3: d3:62:00:45:c5:05:52:1c:53:dc:63:86:13:d2:2a:22:c2:7f: 2d:87:81:3c:4d:b9:1e:72:dc:b2:31:70:68:44:27:e7:b6:ce: 0e:9f:d3:76:6a:63:5f:0f:5b:b1:74:2d:22:83:60:db:99:7a: 14:14:bc:b9:72:8e:8f:90:06:11:34:2f:a6:46:e0:7b:31:0d: b1:bf:17:c0:34:5b:22:b9:8f:10:1f:aa:0b:d9:8d:7b:50:58: 27:cc:62:7d:f7:34:26:84:29:45:d9:d1:5f:e2:35:27:73:49: 3a:cd:8c:65 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjUwNTE0MTYzNzU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWNiOS02YWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydMk3fp+acsrg2XhOtPM0zVRKf44CszHbqddQ1hSJSh25vMlGkWC9deQoL1k 4KQ/z5uiPZWClRO2CD2fxNoOiNWMdqNv0izK6FcDEF0HUizAH0dOu5urHJw0KKMp aOZXxIVZlZxIhOIBxGQ44WVA7h1PHsMKBVv3Oj/SGfoZOKgNoRSXqkLtv9FdcAJK K6Qv8zzuRUKXMQX4KlsPA2Mpf/ntK7FwX7OaiiuCD6rFPwujXKt4s2J74MfcWCnx WLr4gJayy64n5+mf8lOcfj1BU4XB3PztvuklUq0zh78Q0neFw4a7g7OxyfLTu9v6 IRnwssq0/qk8DeAIK0B7J/IeDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBZzElg4 2cPpNgVQft+c6rlnu0S5MB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGQzkvOEQzNUU4MkUzMDJDMTFGMDg3NzY0QTJCQzRGOUFFMDIvQ0E1Qjk5MTQz MEUxMTFGMDlCNzZEMzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWMqMA0GCSqGSIb3DQEBCwUAA4IBAQA+qJjxEBx/CdpsLCufWsBQ UEPWTgVa7s0byhd55lGGbuijxzAT3CObt7zf0y73T6q+4TFU/rHvIqIhhgupadJL P5gg7sqkrMjTnwk9UDy+btVLc6yC/BEb7iRXP3sQimtFH/gcTMYmxD/9ITEPnB09 JELkRs934C1piots7D9mDgQhCbg1x5dSVqixOQK56cPTYgBFxQVSHFPcY4YT0ioi wn8th4E8TbkectyyMXBoRCfnts4On9N2amNfD1uxdC0ig2DbmXoUFLy5co6PkAYR NC+mRuB7MQ2xvxfANFsiuY8QH6oL2Y17UFgnzGJ99zQmhClF2dFf4jUnc0k6zYxl -----END CERTIFICATE-----Generated at Sat Mar 21 14:32:42 2026 by rpki-client