$ rpki-client -vvf rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa File: 173F9AAC8C9811F0B7F99E73C4F9AE02.roa (raw, json) Hash identifier: FS6hEH/j55OHJQ+TqNcRwQCoVjVrvVyoMfAtx5CJ3gk= Subject key identifier: 84:11:73:97:51:DA:88:48:2E:0C:38:08:BD:D2:6C:C3:FC:A8:68:2B Certificate issuer: /CN=A917A2E5/serialNumber=27A0A2DDF35C197D4FC26290C2957D4968CF158F Certificate serial: 02 Authority key identifier: 27:A0:A2:DD:F3:5C:19:7D:4F:C2:62:90:C2:95:7D:49:68:CF:15:8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa Signing time: Mon 08 Sep 2025 09:42:10 +0000 ROA not before: Mon 08 Sep 2025 09:42:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153954 IP address blocks: 165.99.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.crl rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A2E5, serialNumber=27A0A2DDF35C197D4FC26290C2957D4968CF158F Validity Not Before: Sep 8 09:42:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68bea4f2-4ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:82:4b:2a:af:01:43:a8:d8:30:1e:25:4e:0b: 15:dd:7a:b7:2b:64:39:93:a4:aa:74:68:24:44:68: 7a:8e:71:24:69:ee:01:e4:76:b2:40:7f:c7:1c:77: 09:7b:17:52:47:da:e6:fa:e3:11:37:0d:22:ce:d4: 75:78:e4:0d:bb:0c:6d:51:e5:7f:75:a0:f0:95:f3: 23:50:78:96:f8:71:12:0e:4c:d4:84:c4:2d:5f:7d: a9:2c:9e:a4:20:81:da:b0:cd:ca:42:5e:ab:8a:49: a3:f7:df:92:9d:a3:95:ad:77:e0:f7:f8:44:96:df: 4c:4c:25:b8:73:8d:f8:6a:2d:f1:91:0e:77:85:8b: 0a:a3:1f:cd:72:97:3a:ff:32:1e:85:d0:04:95:a7: 6e:7d:3e:86:07:52:49:6c:72:ca:7d:4b:b2:dd:04: f4:3a:21:8f:cf:71:45:d4:1a:dd:80:97:18:69:f0: f9:c3:fb:c8:1c:2d:6c:a3:fa:d0:85:c4:d0:61:7c: dc:1c:89:58:d4:b9:c9:d4:1f:1d:1d:97:ea:79:b0: c7:31:79:89:c5:1d:26:90:97:d7:37:cb:00:25:37: 65:8b:02:49:c9:3e:47:9f:fd:45:fa:5c:aa:40:12: cc:9b:c5:2e:ed:f3:15:d1:15:ba:14:02:2c:c4:34: af:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:11:73:97:51:DA:88:48:2E:0C:38:08:BD:D2:6C:C3:FC:A8:68:2B X509v3 Authority Key Identifier: keyid:27:A0:A2:DD:F3:5C:19:7D:4F:C2:62:90:C2:95:7D:49:68:CF:15:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.220.0/23 Signature Algorithm: sha256WithRSAEncryption a9:59:c8:82:69:b6:70:4e:74:40:09:a4:09:82:30:1e:8f:1f: 52:8e:67:7c:d9:6a:ee:25:b7:21:36:e7:e0:37:53:4a:e5:17: 60:a6:8b:63:0f:fe:bd:2d:17:d2:e4:d2:f0:ab:78:a3:74:0d: 5d:b9:7f:5f:d5:5f:c4:e7:78:15:19:2d:b5:1c:37:72:4c:b5: 85:64:82:d0:31:35:ae:8e:d6:fe:3c:4c:8e:50:74:c3:39:f5: d6:ea:b5:49:1b:21:c2:36:3d:37:30:04:3c:e8:e7:23:78:b1: ab:9b:5e:c3:dc:8c:00:3f:30:ba:dd:05:90:a7:80:eb:a3:c5: 3c:c0:39:35:10:79:e9:f0:03:fb:7f:5e:f7:8e:a8:7a:fa:c9: 36:6f:28:e1:db:fe:52:5b:0b:c2:bc:26:29:5f:5b:b7:19:76: 71:73:7d:d8:61:d4:64:ee:fb:47:0c:bb:e2:cf:a2:50:2d:b5: 7b:28:97:22:6d:e4:80:0b:1a:c5:24:4e:91:a0:64:5f:0d:87: c8:1b:b7:3e:dc:95:92:c9:dd:1e:8f:05:6c:22:25:c8:92:d1: 68:79:58:d2:94:18:10:11:8c:27:30:0d:5d:49:9e:de:ca:cb: 94:a0:6a:f7:91:77:90:72:8c:b0:4f:c2:a1:32:77:35:4b:50: 82:8c:e7:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTJFNTExMC8GA1UEBRMoMjdBMEEyRERGMzVDMTk3RDRGQzI2MjkwQzI5NTdENDk2 OENGMTU4RjAeFw0yNTA5MDgwOTQyMTBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YmVhNGYyLTRlZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkgksqrwFDqNgwHiVOCxXdercrZDmTpKp0aCREaHqOcSRp7gHkdrJAf8ccdwl7 F1JH2ub64xE3DSLO1HV45A27DG1R5X91oPCV8yNQeJb4cRIOTNSExC1ffaksnqQg gdqwzcpCXquKSaP335Kdo5Wtd+D3+ESW30xMJbhzjfhqLfGRDneFiwqjH81ylzr/ Mh6F0ASVp259PoYHUklscsp9S7LdBPQ6IY/PcUXUGt2Alxhp8PnD+8gcLWyj+tCF xNBhfNwciVjUucnUHx0dl+p5sMcxeYnFHSaQl9c3ywAlN2WLAknJPkef/UX6XKpA EsybxS7t8xXRFboUAizENK/rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhBFzl1Ha iEguDDgIvdJsw/yoaCswHwYDVR0jBBgwFoAUJ6Ci3fNcGX1PwmKQwpV9SWjPFY8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMkU1L0E2QzU0MEY2OEM5 NzExRjBBMDA5RDU3MkM0RjlBRTAyL0o2Q2kzZk5jR1gxUHdtS1F3cFY5U1dqUEZZ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSjZDaTNmTmNHWDFQd21LUXdwVjlTV2pQRlk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTJFNS9BNkM1NDBGNjhDOTcxMUYwQTAwOUQ1NzJDNEY5QUUwMi8xNzNGOUFBQzhD OTgxMUYwQjdGOTlFNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVj3DANBgkqhkiG9w0BAQsFAAOCAQEAqVnIgmm2cE50QAmk CYIwHo8fUo5nfNlq7iW3ITbn4DdTSuUXYKaLYw/+vS0X0uTS8Kt4o3QNXbl/X9Vf xOd4FRkttRw3cky1hWSC0DE1ro7W/jxMjlB0wzn11uq1SRshwjY9NzAEPOjnI3ix q5tew9yMAD8wut0FkKeA66PFPMA5NRB56fAD+39e946oevrJNm8o4dv+UlsLwrwm KV9btxl2cXN92GHUZO77Rwy74s+iUC21eyiXIm3kgAsaxSROkaBkXw2HyBu3PtyV ksndHo8FbCIlyJLRaHlY0pQYEBGMJzANXUme3srLlKBq95F3kHKMsE/CoTJ3NUtQ goznhg== -----END CERTIFICATE-----Generated at Sun Oct 19 01:38:51 2025 by rpki-client