$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/8D052914404911F0A4BD357BC4F9AE02.roa File: 8D052914404911F0A4BD357BC4F9AE02.roa (raw, json) Hash identifier: WkC734Z9YLqp46ED9zzrP9DX1ES2VdVVIimzvDKW6/8= Subject key identifier: C6:3D:F5:69:27:50:6B:59:7C:F8:FF:B6:22:D0:F1:39:AD:43:4B:C4 Certificate issuer: /CN=A9174C7A/serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Certificate serial: 02 Authority key identifier: A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/8D052914404911F0A4BD357BC4F9AE02.roa Signing time: Tue 03 Jun 2025 07:08:29 +0000 ROA not before: Tue 03 Jun 2025 07:08:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151062 IP address blocks: 165.99.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C7A, serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Validity Not Before: Jun 3 07:08:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e9f6d-2465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cd:05:7e:6f:da:34:22:8d:42:2a:4e:93:06: de:92:95:fb:f4:d3:53:e9:6d:15:cb:88:91:19:80: cd:49:21:78:6d:c1:50:01:ef:b7:db:a1:9f:ad:6c: 19:2f:b4:3a:7a:c1:2a:01:8c:37:8d:cf:be:54:79: 84:3a:46:2a:4b:96:9e:65:41:8b:8f:b0:0a:ed:42: f3:6a:82:2d:3b:20:29:89:da:1e:10:db:01:98:2a: cc:51:d9:c0:e3:d9:aa:46:61:5e:e5:6a:76:51:af: 66:e6:4b:05:a7:64:2e:e3:a9:75:6b:b6:03:ad:23: 01:d5:58:7e:2c:78:f4:77:42:1a:3e:eb:b1:95:31: bd:b2:ed:88:2b:a5:9a:22:fc:f8:12:c4:13:2e:4f: e5:92:17:49:af:e0:c4:cd:f1:c8:2b:ce:e3:3f:16: 26:50:51:57:68:c3:1b:b0:07:17:75:db:1d:9e:2d: 81:7d:5c:f7:a7:cc:57:80:9c:08:12:93:4b:4e:3b: 8f:71:65:8e:50:31:f4:c7:ce:9c:6e:e3:b7:a3:f7: cc:94:82:d0:a7:af:56:0f:28:42:b2:fd:51:d7:7c: 32:61:e6:54:6a:f9:1a:db:7b:27:7c:23:4a:93:41: 96:90:a6:6d:50:95:1c:02:29:e7:53:22:8f:81:0b: fd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:3D:F5:69:27:50:6B:59:7C:F8:FF:B6:22:D0:F1:39:AD:43:4B:C4 X509v3 Authority Key Identifier: keyid:A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/8D052914404911F0A4BD357BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.188.0/24 Signature Algorithm: sha256WithRSAEncryption 81:de:40:4b:79:a7:47:37:7d:7c:5a:35:12:9f:e7:a9:d2:73: fb:6d:1c:4f:74:04:e4:13:07:6a:cc:9b:ed:b8:00:a2:a2:f0: ce:bb:6a:ad:20:e1:05:a9:14:52:84:4f:76:e8:3c:f4:05:1a: bc:d9:31:ba:a5:c5:f7:c5:90:63:56:a3:02:0a:6c:19:0a:be: 91:36:65:ce:66:42:ed:2e:8c:16:83:cd:85:20:4a:fe:6a:4b: 5f:e6:51:44:cf:12:5b:f4:ae:da:68:a4:45:91:37:21:b3:b9: ec:2f:09:8d:ba:e5:4f:c2:7d:f4:e2:f3:c1:0d:a4:ca:93:2e: c0:ea:9f:ad:27:c5:11:60:5f:83:64:e7:15:a7:5f:5c:79:6b: ed:ba:ca:95:a5:c8:0e:56:05:9b:87:ca:93:01:a9:7b:4a:ef: cd:d6:28:1e:19:10:92:3c:85:6d:9d:e0:f8:b6:0c:98:2a:44: b9:b5:63:eb:d1:ee:c7:f5:90:95:ee:22:ac:5d:23:d0:3d:db: 34:27:e5:57:75:a1:c8:0b:58:3f:81:ee:76:b8:2d:c7:43:1e: 99:18:9f:c5:85:30:50:a0:eb:e1:71:91:5e:93:0e:e4:83:8a: 5d:e0:5d:13:04:ba:a4:a9:5f:85:a1:cc:a4:6c:2e:0b:4c:39: 68:6b:b8:3f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEM3QTExMC8GA1UEBRMoQTU4QURBQ0VGOUQyNDU1M0E1NTY0NkI1QTZFQkNDRUFC MTlGMkZCQzAeFw0yNTA2MDMwNzA4MjlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2U5ZjZkLTI0NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8zQV+b9o0Io1CKk6TBt6Slfv001PpbRXLiJEZgM1JIXhtwVAB77fboZ+tbBkv tDp6wSoBjDeNz75UeYQ6RipLlp5lQYuPsArtQvNqgi07ICmJ2h4Q2wGYKsxR2cDj 2apGYV7lanZRr2bmSwWnZC7jqXVrtgOtIwHVWH4sePR3Qho+67GVMb2y7YgrpZoi /PgSxBMuT+WSF0mv4MTN8cgrzuM/FiZQUVdowxuwBxd12x2eLYF9XPenzFeAnAgS k0tOO49xZY5QMfTHzpxu47ej98yUgtCnr1YPKEKy/VHXfDJh5lRq+Rrbeyd8I0qT QZaQpm1QlRwCKedTIo+BC/11AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxj31aSdQ a1l8+P+2ItDxOa1DS8QwHwYDVR0jBBgwFoAUpYrazvnSRVOlVka1puvM6rGfL7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0QzdBLzQ0RjE0QUZDNDA0 NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZPbFZrYTFwdXZNNnJHZkw3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFlyYXp2blNSVk9sVmthMXB1dk02ckdmTDd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEM3QS80NEYxNEFGQzQwNDYxMUYwOUJGMEQ4NEZDNEY5QUUwMi84RDA1MjkxNDQw NDkxMUYwQTRCRDM1N0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjvDANBgkqhkiG9w0BAQsFAAOCAQEAgd5AS3mnRzd9fFo1 Ep/nqdJz+20cT3QE5BMHasyb7bgAoqLwzrtqrSDhBakUUoRPdug89AUavNkxuqXF 98WQY1ajAgpsGQq+kTZlzmZC7S6MFoPNhSBK/mpLX+ZRRM8SW/Su2mikRZE3IbO5 7C8JjbrlT8J99OLzwQ2kypMuwOqfrSfFEWBfg2TnFadfXHlr7brKlaXIDlYFm4fK kwGpe0rvzdYoHhkQkjyFbZ3g+LYMmCpEubVj69Hux/WQle4irF0j0D3bNCflV3Wh yAtYP4Hudrgtx0MemRifxYUwUKDr4XGRXpMO5IOKXeBdEwS6pKlfhaHMpGwuC0w5 aGu4Pw== -----END CERTIFICATE-----Generated at Thu Jun 5 19:16:28 2025 by rpki-client