$ rpki-client -vvf rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1C2049B851A611F0863A2B36C4F9AE02.roa File: 1C2049B851A611F0863A2B36C4F9AE02.roa (raw, json) Hash identifier: sHYa8nme58N//J9QgIPrzoi+II58k2J0/lwv98SyPaA= Subject key identifier: 3B:00:4B:34:49:92:36:1B:63:32:AE:F0:C0:14:44:B5:CE:13:A2:B1 Certificate issuer: /CN=A91731AD/serialNumber=C1597131EABC5BB332BC999D416E9D5E7FCC0A69 Certificate serial: 06 Authority key identifier: C1:59:71:31:EA:BC:5B:B3:32:BC:99:9D:41:6E:9D:5E:7F:CC:0A:69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1C2049B851A611F0863A2B36C4F9AE02.roa Signing time: Wed 25 Jun 2025 09:23:53 +0000 ROA not before: Wed 25 Jun 2025 09:23:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 165.99.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.crl rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 07:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731AD, serialNumber=C1597131EABC5BB332BC999D416E9D5E7FCC0A69 Validity Not Before: Jun 25 09:23:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685bc028-925e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:35:5d:14:40:31:b2:7a:28:6f:b4:98:9c:3d: 85:da:f5:a8:41:f7:ed:ad:23:c5:93:97:95:38:08: b3:66:f5:b1:6e:ba:2f:48:91:4b:4e:b7:02:15:54: fb:7a:fc:4a:c6:e9:51:05:76:c4:f1:59:ae:be:a7: 20:09:8c:cb:8c:7f:37:00:9c:0b:28:0d:c5:b4:47: d6:8d:73:2f:cb:f6:53:a5:4f:a9:9a:20:13:c2:2d: 89:d0:f1:55:2c:7b:51:47:d0:00:a9:7f:d8:16:ca: 01:e5:60:47:78:67:85:77:12:6e:e9:3e:e0:dd:b2: 58:ad:49:f8:21:2a:6b:40:15:a6:2f:0a:26:65:0d: 79:aa:11:70:3b:f6:1c:84:95:2f:12:1b:da:53:8f: 5f:3c:ca:c2:56:f5:af:94:04:d5:91:af:05:92:2a: ec:0d:8a:7e:aa:7d:8e:ed:53:d2:24:19:33:96:48: df:b2:0e:91:31:5c:0d:c7:d0:d9:87:94:ab:38:c6: f3:d7:da:25:3c:65:d7:96:ce:c4:14:9b:19:9f:08: 12:ff:de:15:a7:72:0d:b1:31:71:ad:f9:b5:0c:b1: ec:eb:8d:54:86:06:7b:4b:18:9d:31:ef:ec:a9:0d: b7:54:20:5c:80:86:0c:e5:33:34:cd:91:3c:cd:d3: c6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:00:4B:34:49:92:36:1B:63:32:AE:F0:C0:14:44:B5:CE:13:A2:B1 X509v3 Authority Key Identifier: keyid:C1:59:71:31:EA:BC:5B:B3:32:BC:99:9D:41:6E:9D:5E:7F:CC:0A:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/wVlxMeq8W7MyvJmdQW6dXn_MCmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wVlxMeq8W7MyvJmdQW6dXn_MCmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731AD/BC28AF00509C11F086D92D38C4F9AE02/1C2049B851A611F0863A2B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.144.0/23 Signature Algorithm: sha256WithRSAEncryption 37:ba:64:14:58:03:40:56:3f:ba:2e:34:d3:87:b4:87:b3:e3: cb:61:12:50:67:e2:92:11:3e:e7:0e:34:25:95:e9:14:14:ae: 9c:fd:9a:21:29:29:7f:ec:f7:bf:b1:e4:03:89:4e:aa:aa:97: 50:5e:1a:0f:a0:a4:2b:98:7a:e8:7e:de:da:0a:4b:ab:7d:14: ec:7a:0e:54:31:27:8b:a8:ae:4f:58:2a:c8:f2:da:5b:ba:66: 25:28:8d:86:ce:76:c2:26:e8:92:0f:ad:99:eb:53:e2:56:e7: 62:ba:77:64:3a:d4:3d:8e:30:6c:04:e4:85:cf:1a:b5:36:9d: 97:25:ec:b2:19:a8:52:cb:0a:9b:bf:a5:da:23:b9:bd:95:45: be:9f:36:89:a9:e5:14:32:fd:0d:ad:de:b5:ff:6a:86:98:4b: 85:30:fe:5a:ad:03:d9:43:4f:54:4e:85:99:af:45:30:dc:33: 7c:9f:8d:9d:b6:78:57:27:99:f9:b2:ef:8f:ac:22:7e:a6:06: 58:eb:e7:48:be:34:0e:39:68:3e:c9:d9:44:fd:40:ed:1d:a8: 65:24:6e:e8:74:61:47:be:1e:d0:1c:99:c0:85:ac:41:7f:37: be:1c:de:db:05:16:07:8f:08:fe:55:71:aa:6e:28:20:76:8d: 6f:b0:3a:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzFBRDExMC8GA1UEBRMoQzE1OTcxMzFFQUJDNUJCMzMyQkM5OTlENDE2RTlENUU3 RkNDMEE2OTAeFw0yNTA2MjUwOTIzNTNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWJjMDI4LTkyNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfNV0UQDGyeihvtJicPYXa9ahB9+2tI8WTl5U4CLNm9bFuui9IkUtOtwIVVPt6 /ErG6VEFdsTxWa6+pyAJjMuMfzcAnAsoDcW0R9aNcy/L9lOlT6maIBPCLYnQ8VUs e1FH0ACpf9gWygHlYEd4Z4V3Em7pPuDdslitSfghKmtAFaYvCiZlDXmqEXA79hyE lS8SG9pTj188ysJW9a+UBNWRrwWSKuwNin6qfY7tU9IkGTOWSN+yDpExXA3H0NmH lKs4xvPX2iU8ZdeWzsQUmxmfCBL/3hWncg2xMXGt+bUMsezrjVSGBntLGJ0x7+yp DbdUIFyAhgzlMzTNkTzN08YNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOwBLNEmS NhtjMq7wwBREtc4TorEwHwYDVR0jBBgwFoAUwVlxMeq8W7MyvJmdQW6dXn/MCmkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMUFEL0JDMjhBRjAwNTA5 QzExRjA4NkQ5MkQzOEM0RjlBRTAyL3dWbHhNZXE4VzdNeXZKbWRRVzZkWG5fTUNt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd1ZseE1lcThXN015dkptZFFXNmRYbl9NQ21rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFBRC9CQzI4QUYwMDUwOUMxMUYwODZEOTJEMzhDNEY5QUUwMi8xQzIwNDlCODUx QTYxMUYwODYzQTJCMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjkDANBgkqhkiG9w0BAQsFAAOCAQEAN7pkFFgDQFY/ui40 04e0h7Pjy2ESUGfikhE+5w40JZXpFBSunP2aISkpf+z3v7HkA4lOqqqXUF4aD6Ck K5h66H7e2gpLq30U7HoOVDEni6iuT1gqyPLaW7pmJSiNhs52wibokg+tmetT4lbn Yrp3ZDrUPY4wbATkhc8atTadlyXsshmoUssKm7+l2iO5vZVFvp82ianlFDL9Da3e tf9qhphLhTD+Wq0D2UNPVE6Fma9FMNwzfJ+NnbZ4VyeZ+bLvj6wifqYGWOvnSL40 DjloPsnZRP1A7R2oZSRu6HRhR74e0ByZwIWsQX83vhze2wUWB48I/lVxqm4oIHaN b7A6hg== -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:44 2025 by rpki-client