$ rpki-client -vvf rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa File: 941EE9A46BB911ED97343873C4F9AE02.roa (raw, json) Hash identifier: fXr7QIQuwl7QzyFLTfd4eQUzsXhWZdcYU1jaS0SUF4Q= Subject key identifier: 86:F7:FE:59:5D:9C:F4:F4:52:86:D8:84:B8:5E:88:AF:20:A1:9B:F7 Certificate issuer: /CN=A9168494/serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Certificate serial: 0294 Authority key identifier: B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa Signing time: Tue 03 Jun 2025 01:56:44 +0000 ROA not before: Tue 03 Jun 2025 01:56:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 3550 IP address blocks: 165.220.0.0/21 maxlen: 21 165.220.16.0/20 maxlen: 20 165.220.16.0/24 maxlen: 24 165.220.32.0/19 maxlen: 19 165.220.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168494, serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Validity Not Before: Jun 3 01:56:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e565c-924b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4d:2b:f3:d3:2d:fc:85:53:e7:fe:5b:85:7c: 20:77:7d:f4:12:0a:cc:79:82:7b:c3:91:34:72:09: 3b:8f:77:c9:c9:22:3d:aa:f6:08:c8:dd:ad:07:b6: 65:18:36:e8:52:05:cd:40:6e:34:03:e1:c0:8e:80: 8f:6c:5b:69:9e:a9:ee:23:2e:02:d2:18:73:4a:55: 5c:65:8a:66:7f:14:7d:04:80:5c:ea:79:44:39:25: 76:d0:d0:5c:80:fa:29:65:9f:af:db:b8:b4:cd:12: db:89:59:f6:80:03:05:70:7b:73:93:43:89:38:f7: 6a:63:d3:c0:8e:62:ae:48:be:27:6a:74:7e:dc:2b: 56:26:41:03:3e:04:b1:9a:98:d4:66:24:05:0f:db: 8a:b7:da:b6:08:cb:e0:c5:f9:e8:20:f6:46:55:2f: c0:ff:0e:73:18:68:12:3e:2a:33:10:72:4c:6e:b1: 6c:d8:7e:f3:d9:ff:2f:7b:4b:9b:eb:e6:03:9a:06: a1:fa:e8:0d:ed:02:dc:6b:c1:df:a4:19:bc:da:dc: e7:ac:da:e2:d2:89:7f:92:8c:df:91:57:10:60:55: f9:3a:84:dc:19:ef:cd:6d:17:17:4b:e1:c7:db:ef: 56:fa:6f:74:ca:48:c5:21:6b:2f:4f:98:75:6b:30: 89:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F7:FE:59:5D:9C:F4:F4:52:86:D8:84:B8:5E:88:AF:20:A1:9B:F7 X509v3 Authority Key Identifier: keyid:B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.220.0.0/21 165.220.16.0-165.220.127.255 Signature Algorithm: sha256WithRSAEncryption 11:70:ec:93:56:74:33:fd:d8:5f:b7:4d:93:fe:4f:4d:f5:80: f8:7e:f2:f3:63:74:85:34:cf:dc:33:0f:66:d3:24:8b:c4:31: b8:73:0b:2a:f0:86:e4:87:46:26:35:83:b7:a6:87:97:1c:62: 44:5d:61:e6:83:ae:36:04:8f:18:4e:ba:91:3a:44:00:a9:08: ef:ca:08:d8:86:4a:b2:62:22:35:12:f2:fe:44:66:3a:4e:dd: 8c:17:64:c4:05:9f:bd:71:f3:d5:64:6b:0b:ed:ab:d2:fe:0f: ac:35:f7:fa:50:a6:76:64:f5:ca:39:cb:44:76:09:0c:27:03: ec:a9:5d:3e:22:c6:e8:b7:fa:a3:75:a4:6e:84:39:48:37:50: da:3e:42:19:00:dc:d4:f0:35:87:4c:96:2e:53:f1:2c:7a:5b: b4:e7:25:f1:af:f7:a4:29:1e:3b:27:87:34:df:04:6c:a4:bd: d6:00:a2:d6:65:87:83:a5:41:a1:6f:5f:83:d7:37:42:e4:d1: da:bf:08:90:d4:fa:5e:5d:63:7f:f9:86:54:a8:de:e7:4a:75: e5:b5:73:b4:37:e8:a2:1e:40:68:f0:be:e2:5f:05:a8:61:3f: 2d:58:ed:22:3e:20:f8:67:62:67:05:d5:6a:c5:eb:26:2e:12: 0a:5e:c6:3b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0OTQxMTAvBgNVBAUTKEIxM0VBNDkzNEY0MUZDNDgzNENEMkE2RkY4MjE4RDQw RjdBOTc3ODkwHhcNMjUwNjAzMDE1NjQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNTY1Yy05MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2k0r89Mt/IVT5/5bhXwgd330EgrMeYJ7w5E0cgk7j3fJySI9qvYIyN2tB7Zl GDboUgXNQG40A+HAjoCPbFtpnqnuIy4C0hhzSlVcZYpmfxR9BIBc6nlEOSV20NBc gPopZZ+v27i0zRLbiVn2gAMFcHtzk0OJOPdqY9PAjmKuSL4nanR+3CtWJkEDPgSx mpjUZiQFD9uKt9q2CMvgxfnoIPZGVS/A/w5zGGgSPiozEHJMbrFs2H7z2f8ve0ub 6+YDmgah+ugN7QLca8HfpBm82tznrNri0ol/kozfkVcQYFX5OoTcGe/NbRcXS+HH 2+9W+m90ykjFIWsvT5h1azCJ7wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIb3/lld nPT0UobYhLheiK8goZv3MB8GA1UdIwQYMBaAFLE+pJNPQfxINM0qb/ghjUD3qXeJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODQ5NC8zMUI4MjYzQzA5 OTMxMUVEQjIxQzlCNEJDNEY5QUUwMi9zVDZrazA5Ql9FZzB6U3B2LUNHTlFQZXBk NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NUNmtrMDlCX0VnMHpTcHYtQ0dOUVBlcGQ0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0OTQvMzFCODI2M0MwOTkzMTFFREIyMUM5QjRCQzRGOUFFMDIvOTQxRUU5QTQ2 QkI5MTFFRDk3MzQzODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAOl3AAwDAMEBKXcEAMEB6XcADANBgkqhkiG9w0BAQsFAAOC AQEAEXDsk1Z0M/3YX7dNk/5PTfWA+H7y82N0hTTP3DMPZtMki8QxuHMLKvCG5IdG JjWDt6aHlxxiRF1h5oOuNgSPGE66kTpEAKkI78oI2IZKsmIiNRLy/kRmOk7djBdk xAWfvXHz1WRrC+2r0v4PrDX3+lCmdmT1yjnLRHYJDCcD7KldPiLG6Lf6o3WkboQ5 SDdQ2j5CGQDc1PA1h0yWLlPxLHpbtOcl8a/3pCkeOyeHNN8EbKS91gCi1mWHg6VB oW9fg9c3QuTR2r8IkNT6Xl1jf/mGVKje50p15bVztDfooh5AaPC+4l8FqGE/LVjt Ij4g+GdiZwXVasXrJi4SCl7GOw== -----END CERTIFICATE-----Generated at Thu Jun 5 20:00:36 2025 by rpki-client