$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/58DDC3643ACF11F086129074C4F9AE02.roa File: 58DDC3643ACF11F086129074C4F9AE02.roa (raw, json) Hash identifier: uDzQCHkh3TAzh90PVp5vjD7zhbH2KVDEVgGFUoS0C+w= Subject key identifier: 9F:40:53:E4:22:02:4D:8C:69:21:52:F3:A2:5E:63:22:32:3E:8F:A5 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E6D Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/58DDC3643ACF11F086129074C4F9AE02.roa Signing time: Tue 27 May 2025 07:51:07 +0000 ROA not before: Tue 27 May 2025 07:51:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153914 IP address blocks: 165.99.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7789 (0x1e6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 27 07:51:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68356eeb-f750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:50:34:10:24:cb:6d:bd:b3:52:c3:4c:5f:03: a0:6d:a2:14:76:1e:ce:35:d6:ce:7a:fd:60:19:16: c7:e4:df:f2:1c:a9:e0:6b:ad:17:63:c6:4f:97:e7: 47:5b:84:3f:39:d1:8c:82:91:e8:a3:1e:1a:c9:d7: 11:49:45:f9:c4:62:d1:07:00:27:3f:47:ef:04:d5: b0:5a:9b:7f:b7:ac:a3:95:58:ad:c0:ee:ac:1d:fc: bc:4e:bf:1f:71:9d:d5:f1:0c:e8:3d:3d:64:db:a5: 4b:81:07:5c:19:2e:6e:8c:79:25:f8:00:c7:13:45: 4f:2f:e4:b7:64:02:99:99:09:ba:0f:54:89:1f:4d: 4e:3e:e2:c9:8c:69:1c:c6:c8:fb:59:2f:95:7e:27: 4e:41:24:e6:b7:7c:eb:f1:4e:37:f3:2c:d5:cc:e5: 00:81:82:7f:b6:b3:07:eb:25:72:62:84:d0:84:c0: 61:fb:89:ed:4d:d0:4e:ba:0d:28:5f:03:45:aa:bd: 83:80:e8:a4:d4:5b:98:7c:a6:31:b0:f1:30:49:04: e3:78:04:c9:84:c7:f3:ed:96:cd:e4:7e:de:30:68: 6e:11:ae:7d:78:19:03:9a:c2:7a:b3:7b:8b:e2:38: 47:8a:62:79:1d:32:56:09:8f:f6:71:32:6d:1d:6a: cf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:40:53:E4:22:02:4D:8C:69:21:52:F3:A2:5E:63:22:32:3E:8F:A5 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/58DDC3643ACF11F086129074C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.128.0/23 Signature Algorithm: sha256WithRSAEncryption a6:33:2f:c6:1c:74:34:08:da:a9:93:2e:d9:b0:64:d5:4a:57: 57:bd:00:49:1d:8e:a2:cb:82:26:57:50:00:8e:40:ed:51:b4: 1d:c0:f3:2d:89:ab:c9:ae:8a:7e:c7:94:0e:d4:3e:87:b9:ba: bb:05:2b:f1:1a:12:0d:96:47:2a:df:73:e1:ba:35:9f:32:03: a3:20:3a:69:cd:ee:e5:3c:b9:b9:b6:78:a1:e8:49:b8:2d:68: bd:29:e4:eb:3d:07:d2:d0:9f:3a:30:5f:60:82:7f:cf:b9:9e: 49:35:a7:4f:a4:ed:d0:23:71:05:da:6e:d5:3f:3a:10:1e:fd: 2b:fe:c2:54:4d:38:b5:c0:42:90:8a:cf:64:81:d4:26:1b:05: 8f:6c:38:87:83:e3:a5:3b:73:b9:87:99:76:b6:32:c0:85:4d: 45:00:43:7e:bb:9d:1f:61:c2:b4:31:39:f7:70:37:8c:37:86: 9e:42:89:5f:4b:54:2b:18:0f:f1:db:be:cb:89:2f:8e:df:2d: 03:28:e9:5e:fa:b6:3b:0e:3e:b0:c7:a7:e9:f8:64:5f:9a:89: 76:74:ac:4e:9d:83:e1:fb:5b:70:4e:1a:2d:3b:4c:61:ae:73: b8:d8:59:78:58:57:9c:03:45:0e:67:f8:5e:20:04:59:d4:43: 4e:5a:82:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTI3MDc1MTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NmVlYi1mNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1A0ECTLbb2zUsNMXwOgbaIUdh7ONdbOev1gGRbH5N/yHKnga60XY8ZPl+dH W4Q/OdGMgpHoox4aydcRSUX5xGLRBwAnP0fvBNWwWpt/t6yjlVitwO6sHfy8Tr8f cZ3V8QzoPT1k26VLgQdcGS5ujHkl+ADHE0VPL+S3ZAKZmQm6D1SJH01OPuLJjGkc xsj7WS+VfidOQSTmt3zr8U438yzVzOUAgYJ/trMH6yVyYoTQhMBh+4ntTdBOug0o XwNFqr2DgOik1FuYfKYxsPEwSQTjeATJhMfz7ZbN5H7eMGhuEa59eBkDmsJ6s3uL 4jhHimJ5HTJWCY/2cTJtHWrPfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ9AU+Qi Ak2MaSFS86JeYyIyPo+lMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNThEREMzNjQz QUNGMTFGMDg2MTI5MDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY4AwDQYJKoZIhvcNAQELBQADggEBAKYzL8YcdDQI2qmT LtmwZNVKV1e9AEkdjqLLgiZXUACOQO1RtB3A8y2Jq8muin7HlA7UPoe5ursFK/Ea Eg2WRyrfc+G6NZ8yA6MgOmnN7uU8ubm2eKHoSbgtaL0p5Os9B9LQnzowX2CCf8+5 nkk1p0+k7dAjcQXabtU/OhAe/Sv+wlRNOLXAQpCKz2SB1CYbBY9sOIeD46U7c7mH mXa2MsCFTUUAQ367nR9hwrQxOfdwN4w3hp5CiV9LVCsYD/HbvsuJL47fLQMo6V76 tjsOPrDHp+n4ZF+aiXZ0rE6dg+H7W3BOGi07TGGuc7jYWXhYV5wDRQ5n+F4gBFnU Q05agpk= -----END CERTIFICATE-----Generated at Wed Jun 4 11:59:35 2025 by rpki-client