$ rpki-client -vvf rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/B32DFBA0613E11F0807A9A39C4F9AE02.roa File: B32DFBA0613E11F0807A9A39C4F9AE02.roa (raw, json) Hash identifier: OVSbJE+Pd0/Klp/U7r6paIfqVvKQjdcHWMz7l5HkgE0= Subject key identifier: 10:88:E9:D4:54:71:D1:9A:4B:40:BD:11:82:A8:C6:F5:AA:5C:98:89 Certificate issuer: /CN=A9159309/serialNumber=7D8FA0BEF6AEF71BDF883858F73619D3B59E2777 Certificate serial: 02 Authority key identifier: 7D:8F:A0:BE:F6:AE:F7:1B:DF:88:38:58:F7:36:19:D3:B5:9E:27:77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/B32DFBA0613E11F0807A9A39C4F9AE02.roa Signing time: Tue 15 Jul 2025 05:43:57 +0000 ROA not before: Tue 15 Jul 2025 05:43:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140687 IP address blocks: 165.101.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.crl rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159309, serialNumber=7D8FA0BEF6AEF71BDF883858F73619D3B59E2777 Validity Not Before: Jul 15 05:43:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875ea9d-242f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:08:16:71:c3:6c:47:4c:1f:10:39:ae:c4: 9e:09:5f:89:88:9b:ed:52:69:86:3b:a1:e9:fa:fe: f5:d8:30:c5:25:22:72:30:98:01:1e:89:8c:99:f5: d7:05:1b:00:9b:3c:a5:5b:16:4a:a8:2e:99:85:41: f4:6c:41:b8:68:94:0c:bb:80:2a:f1:c6:c2:3b:a2: b3:34:3e:da:d7:13:15:e1:46:78:7e:61:6b:fb:cc: a6:45:3f:62:4e:7a:45:f0:79:dc:14:16:9a:2a:79: 8c:3b:d5:2e:0f:96:7b:3d:07:01:9b:1c:8c:fa:12: 82:e4:1b:23:a9:25:8b:0e:f5:66:1b:46:f7:18:31: bd:7b:0b:b2:7c:70:a4:2a:a5:e8:e6:f1:fd:d3:fa: 16:e0:c1:63:6a:69:1e:ba:7c:fe:4a:3e:2b:40:f0: 47:70:de:55:7c:c8:73:0c:58:b6:34:67:4c:04:7e: 5c:34:8e:92:83:d1:e1:76:3d:04:24:85:99:b9:95: 2c:cc:a5:0e:ea:30:3f:2a:ac:aa:0f:59:1b:61:5e: cc:fb:fb:6e:08:c6:8a:e4:96:4a:09:b2:42:a3:d4: a1:0f:72:ce:77:75:2a:45:0c:9a:bd:69:c1:2c:cc: cb:95:63:db:62:a7:2b:de:0a:bb:5c:70:5b:7d:59: dd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:88:E9:D4:54:71:D1:9A:4B:40:BD:11:82:A8:C6:F5:AA:5C:98:89 X509v3 Authority Key Identifier: keyid:7D:8F:A0:BE:F6:AE:F7:1B:DF:88:38:58:F7:36:19:D3:B5:9E:27:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/B32DFBA0613E11F0807A9A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.107.0/24 Signature Algorithm: sha256WithRSAEncryption ab:0c:7a:5c:aa:4a:2e:05:82:9a:f9:48:0b:52:1f:eb:99:05: 1c:b2:3e:4c:14:85:9c:25:cb:bc:c1:18:12:f3:29:a3:b8:67: a6:1f:ee:5d:2d:28:ed:d9:b2:bd:cb:6f:37:5f:96:bf:ae:c5: ad:e6:40:9f:2c:4a:f9:d3:b8:4b:5a:32:a5:7c:08:fe:77:b9: 8a:29:7e:4f:12:a4:52:3f:ec:47:cb:6a:66:81:4a:37:7a:dd: ef:5c:d3:e4:f8:e2:2a:12:40:af:19:c2:6b:46:3b:34:6b:54: 50:63:68:4c:2b:3d:21:bb:52:87:4b:ba:79:f1:62:e0:ef:ac: 41:67:60:f9:76:10:98:45:00:c9:07:ce:ad:04:a0:a6:ec:9a: 16:f8:7e:23:1a:44:d4:4a:f3:73:a6:8f:ff:a3:fc:bd:1b:51: 52:7e:54:f6:bc:e9:cd:e8:4c:34:55:9b:95:89:18:90:c2:31: d6:75:3e:e0:b6:c3:b6:60:52:23:a5:36:6e:0c:5a:76:ec:65: 17:ec:90:b5:10:10:06:85:ae:db:c3:3d:59:35:6b:ac:dc:76: af:75:af:ca:ea:61:e3:5f:5c:be:46:2c:58:f1:37:a4:ca:30: fe:68:77:52:55:bc:f0:f0:3e:61:56:37:d3:d4:b7:d5:54:54: 30:bd:78:c3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTMwOTExMC8GA1UEBRMoN0Q4RkEwQkVGNkFFRjcxQkRGODgzODU4RjczNjE5RDNC NTlFMjc3NzAeFw0yNTA3MTUwNTQzNTdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzVlYTlkLTI0MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGAggWccNsR0wfEDmuxJ4JX4mIm+1SaYY7oen6/vXYMMUlInIwmAEeiYyZ9dcF GwCbPKVbFkqoLpmFQfRsQbholAy7gCrxxsI7orM0PtrXExXhRnh+YWv7zKZFP2JO ekXwedwUFpoqeYw71S4Plns9BwGbHIz6EoLkGyOpJYsO9WYbRvcYMb17C7J8cKQq pejm8f3T+hbgwWNqaR66fP5KPitA8Edw3lV8yHMMWLY0Z0wEflw0jpKD0eF2PQQk hZm5lSzMpQ7qMD8qrKoPWRthXsz7+24IxorklkoJskKj1KEPcs53dSpFDJq9acEs zMuVY9tipyveCrtccFt9Wd29AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEIjp1FRx 0ZpLQL0RgqjG9apcmIkwHwYDVR0jBBgwFoAUfY+gvvau9xvfiDhY9zYZ07WeJ3cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5MzA5Lzk4OTFFOTJFNjEz RDExRjBCMDM2QjgzNkM0RjlBRTAyL2ZZLWd2dmF1OXh2ZmlEaFk5ellaMDdXZUoz Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZlktZ3Z2YXU5eHZmaURoWTl6WVowN1dlSjNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTMwOS85ODkxRTkyRTYxM0QxMUYwQjAzNkI4MzZDNEY5QUUwMi9CMzJERkJBMDYx M0UxMUYwODA3QTlBMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlazANBgkqhkiG9w0BAQsFAAOCAQEAqwx6XKpKLgWCmvlI C1If65kFHLI+TBSFnCXLvMEYEvMpo7hnph/uXS0o7dmyvctvN1+Wv67FreZAnyxK +dO4S1oypXwI/ne5iil+TxKkUj/sR8tqZoFKN3rd71zT5PjiKhJArxnCa0Y7NGtU UGNoTCs9IbtSh0u6efFi4O+sQWdg+XYQmEUAyQfOrQSgpuyaFvh+IxpE1Erzc6aP /6P8vRtRUn5U9rzpzehMNFWblYkYkMIx1nU+4LbDtmBSI6U2bgxaduxlF+yQtRAQ BoWu28M9WTVrrNx2r3Wvyuph419cvkYsWPE3pMow/mh3UlW88PA+YVY309S31VRU ML14ww== -----END CERTIFICATE-----Generated at Tue Jul 22 00:08:56 2025 by rpki-client