$ rpki-client -vvf rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1BB7179A51A611F0863A2B36C4F9AE02.roa File: 1BB7179A51A611F0863A2B36C4F9AE02.roa (raw, json) Hash identifier: 63j54fJ2hxn7dsTffTxKtV1a44WJvIl6Kuapu9EYJTc= Subject key identifier: 19:62:FA:00:60:C1:E3:2A:92:B9:F4:61:0D:41:EC:CD:48:A5:0B:18 Certificate issuer: /CN=A91731AD/serialNumber=C1597131EABC5BB332BC999D416E9D5E7FCC0A69 Certificate serial: 05 Authority key identifier: C1:59:71:31:EA:BC:5B:B3:32:BC:99:9D:41:6E:9D:5E:7F:CC:0A:69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1BB7179A51A611F0863A2B36C4F9AE02.roa Signing time: Wed 25 Jun 2025 09:23:52 +0000 ROA not before: Wed 25 Jun 2025 09:23:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 165.99.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.crl rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731AD, serialNumber=C1597131EABC5BB332BC999D416E9D5E7FCC0A69 Validity Not Before: Jun 25 09:23:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685bc028-b663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:1b:1a:70:fc:de:04:0f:cb:a4:bc:43:61: 5e:86:1b:f7:c7:08:9b:59:ec:e9:b9:bc:9e:84:f0: 58:0e:2a:75:a9:df:d0:fd:93:9a:0f:74:e8:86:e4: d4:c8:9c:26:11:9e:48:c7:23:19:d6:3b:5e:67:11: 93:8d:8c:7c:8b:cc:e0:6b:0b:79:26:10:1b:b2:2f: 97:97:9b:3c:ca:98:3e:2b:f9:ae:33:8b:1c:26:bd: 76:76:10:17:57:e8:d1:42:13:4d:52:30:d9:f9:ce: e6:fe:3a:82:9b:3a:3e:d7:8a:12:e2:7a:84:db:9e: 72:9e:1a:71:3c:3f:4e:29:8a:1c:b8:b5:6f:bf:72: f9:0b:17:53:6b:c7:66:5e:9c:cc:b1:8d:32:1b:25: d9:09:26:99:a0:9a:24:a0:66:30:ab:0c:2f:81:46: 14:94:f7:cd:c0:da:8d:21:76:c4:ff:6b:78:45:6a: cd:d3:df:37:bd:c9:91:48:9e:0e:13:ba:ae:bc:4b: 0b:be:b7:64:03:d4:3b:92:7e:96:ba:d4:97:12:f7: 43:b4:a2:34:f1:60:10:f6:e8:f2:e1:fc:9f:57:59: 13:2d:ce:83:26:85:62:9a:99:68:61:db:e5:32:80: 76:95:40:4e:e3:a5:3d:7d:8e:7e:48:82:c3:2b:45: 1b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:62:FA:00:60:C1:E3:2A:92:B9:F4:61:0D:41:EC:CD:48:A5:0B:18 X509v3 Authority Key Identifier: keyid:C1:59:71:31:EA:BC:5B:B3:32:BC:99:9D:41:6E:9D:5E:7F:CC:0A:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1BB7179A51A611F0863A2B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.144.0/23 Signature Algorithm: sha256WithRSAEncryption 10:6e:1d:01:67:84:51:f0:f5:0d:39:47:c0:a5:92:b4:ec:7b: 0b:ac:18:ce:ab:75:2d:24:c7:bc:3c:ae:dd:e7:3a:f4:6c:82: 5d:a0:d3:a5:17:c9:8f:33:f8:3d:90:36:ac:85:65:b7:c3:4a: 2f:14:54:1f:23:ff:d8:a8:52:5a:d2:de:98:5e:3a:f6:be:7c: dc:1a:23:f3:8f:cb:68:80:d9:cd:1e:93:ee:ba:0a:c2:6a:af: eb:32:ad:b8:6e:95:c9:17:1e:68:8c:e4:50:01:d8:cf:e8:f1: 7e:26:b0:52:92:78:0a:cf:5f:7f:98:b8:45:32:b5:fc:3f:aa: 10:99:00:00:68:8f:d4:52:e1:42:6d:c4:96:d8:30:90:d1:37: 0d:5c:94:34:e9:4c:27:9d:c3:2b:44:00:00:cc:7d:06:e4:6e: 21:e5:6f:15:31:84:c2:01:c4:73:72:0a:8d:5d:25:73:87:93: c6:3d:80:f3:35:70:4d:af:16:be:0a:46:24:8c:93:66:cf:e5: 70:e8:74:70:35:ea:54:f3:33:08:1c:2e:aa:cf:ec:80:3c:a8: a5:27:63:90:aa:74:9d:8b:e1:3b:d3:fb:7a:8c:bc:d0:3d:ab: c9:29:8a:8b:fa:cc:ae:a9:83:ac:22:79:81:b4:a9:66:90:f7: 55:29:f6:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzFBRDExMC8GA1UEBRMoQzE1OTcxMzFFQUJDNUJCMzMyQkM5OTlENDE2RTlENUU3 RkNDMEE2OTAeFw0yNTA2MjUwOTIzNTJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWJjMDI4LWI2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/qRsacPzeBA/LpLxDYV6GG/fHCJtZ7Om5vJ6E8FgOKnWp39D9k5oPdOiG5NTI nCYRnkjHIxnWO15nEZONjHyLzOBrC3kmEBuyL5eXmzzKmD4r+a4zixwmvXZ2EBdX 6NFCE01SMNn5zub+OoKbOj7XihLieoTbnnKeGnE8P04pihy4tW+/cvkLF1Nrx2Ze nMyxjTIbJdkJJpmgmiSgZjCrDC+BRhSU983A2o0hdsT/a3hFas3T3ze9yZFIng4T uq68Swu+t2QD1DuSfpa61JcS90O0ojTxYBD26PLh/J9XWRMtzoMmhWKamWhh2+Uy gHaVQE7jpT19jn5IgsMrRRs5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGWL6AGDB 4yqSufRhDUHszUilCxgwHwYDVR0jBBgwFoAUwVlxMeq8W7MyvJmdQW6dXn/MCmkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMUFEL0JDMjhBRjAwNTA5 QzExRjA4NkQ5MkQzOEM0RjlBRTAyL3dWbHhNZXE4VzdNeXZKbWRRVzZkWG5fTUNt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd1ZseE1lcThXN015dkptZFFXNmRYbl9NQ21rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFBRC9CQzI4QUYwMDUwOUMxMUYwODZEOTJEMzhDNEY5QUUwMi8xQkI3MTc5QTUx QTYxMUYwODYzQTJCMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjkDANBgkqhkiG9w0BAQsFAAOCAQEAEG4dAWeEUfD1DTlH wKWStOx7C6wYzqt1LSTHvDyu3ec69GyCXaDTpRfJjzP4PZA2rIVlt8NKLxRUHyP/ 2KhSWtLemF469r583Boj84/LaIDZzR6T7roKwmqv6zKtuG6VyRceaIzkUAHYz+jx fiawUpJ4Cs9ff5i4RTK1/D+qEJkAAGiP1FLhQm3EltgwkNE3DVyUNOlMJ53DK0QA AMx9BuRuIeVvFTGEwgHEc3IKjV0lc4eTxj2A8zVwTa8WvgpGJIyTZs/lcOh0cDXq VPMzCBwuqs/sgDyopSdjkKp0nYvhO9P7eoy80D2rySmKi/rMrqmDrCJ5gbSpZpD3 VSn2qg== -----END CERTIFICATE-----Generated at Tue Jul 1 13:33:40 2025 by rpki-client