$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa File: 5BCE91243F8F11F0AB847F13C4F9AE02.roa (raw, json) Hash identifier: o8DWBWjrLD+xBSoqKOWNGyBoRn+u/3S7cLRMvIFuGr4= Subject key identifier: 55:1A:D8:92:A1:78:59:A2:64:13:6D:BB:F7:2B:23:19:79:2C:35:BA Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E7C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa Signing time: Mon 02 Jun 2025 08:55:40 +0000 ROA not before: Mon 02 Jun 2025 08:55:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135183 IP address blocks: 165.99.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7804 (0x1e7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 2 08:55:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683d670c-b0e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cd:a1:98:a4:15:9d:12:46:a9:85:ae:28:5b: ef:3e:9b:41:74:4a:fe:e7:8f:17:2c:0e:ce:84:29: 02:3e:f7:8d:d5:d4:61:69:9b:08:34:95:d1:89:1a: 4a:93:87:ce:e6:2a:77:2b:22:6b:0c:b9:75:7d:67: ad:e9:b2:c5:89:4e:b4:95:bf:8a:46:d3:78:a7:66: 7d:fb:ad:ee:91:27:59:eb:45:61:2f:3f:00:e4:82: 1e:b8:a5:0b:02:3b:09:65:50:9d:88:1d:d6:41:57: b5:43:d7:08:25:1d:5f:06:f4:06:de:da:20:e8:32: 22:b0:c8:30:b9:bc:f5:d2:87:0c:f2:7f:58:cf:8d: c6:ec:8b:61:b5:d9:a8:85:3e:b9:cd:e2:91:d6:bc: d6:78:52:5c:48:58:29:db:43:b2:ca:4e:50:0a:02: e0:08:c2:64:4b:75:db:a8:3e:d6:d8:5c:1c:61:e2: 83:50:5e:64:cb:d2:db:13:20:07:fe:9d:5f:76:e2: 96:45:72:b8:5a:38:fd:74:b4:62:01:60:f3:c3:a6: e0:6a:75:f1:42:6b:1d:9c:00:68:15:e7:38:9e:26: de:59:4c:e0:08:ac:4e:55:18:45:99:6a:11:75:4f: 54:3b:33:a1:3a:08:07:88:1f:1e:61:1c:6c:ad:af: 88:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1A:D8:92:A1:78:59:A2:64:13:6D:BB:F7:2B:23:19:79:2C:35:BA X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.172.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:51:f3:8d:f2:24:37:68:bc:84:34:d3:67:cb:01:00:1d:c2: 34:62:4c:28:67:40:5a:d4:c8:53:d4:16:f1:ab:f4:70:00:f8: 2d:78:48:86:99:68:55:23:8d:c7:fa:52:43:5a:f0:6a:b6:c7: 4f:66:dd:10:e7:5c:02:f7:b0:5e:63:f8:8b:ee:33:8e:2d:65: 56:fe:f3:cb:c2:2d:78:77:94:cc:da:58:bb:1f:c0:91:34:70: fc:0a:d6:85:1e:95:b9:e6:18:33:31:a9:c9:72:00:0c:06:b7: 20:3b:26:69:af:d3:3e:53:a3:80:35:30:95:9b:93:e4:fa:34: d0:6e:03:98:79:d1:ac:05:63:13:ac:bc:a7:52:5d:01:84:72: df:34:23:3f:a0:e9:93:6a:47:0f:47:14:d9:7b:0f:31:40:9a: b3:5f:ef:83:d8:39:a5:c6:64:87:60:fd:47:0a:dc:4f:82:83: 78:bd:53:19:36:d9:56:a1:a5:b3:52:20:d9:a3:04:cc:31:49: 75:10:32:98:28:7f:45:d5:d6:06:11:99:6c:8c:6c:5c:41:0d: ed:37:b0:6d:a3:ef:a9:7e:d7:94:18:e4:72:d8:59:6a:e0:0c: 64:c0:79:ed:73:5f:bd:06:ba:ce:70:10:40:af:23:e4:58:26: d9:e2:ac:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNjAyMDg1NTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkNjcwYy1iMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM2hmKQVnRJGqYWuKFvvPptBdEr+548XLA7OhCkCPveN1dRhaZsINJXRiRpK k4fO5ip3KyJrDLl1fWet6bLFiU60lb+KRtN4p2Z9+63ukSdZ60VhLz8A5IIeuKUL AjsJZVCdiB3WQVe1Q9cIJR1fBvQG3tog6DIisMgwubz10ocM8n9Yz43G7Ithtdmo hT65zeKR1rzWeFJcSFgp20Oyyk5QCgLgCMJkS3XbqD7W2FwcYeKDUF5ky9LbEyAH /p1fduKWRXK4Wjj9dLRiAWDzw6bganXxQmsdnABoFec4nibeWUzgCKxOVRhFmWoR dU9UOzOhOggHiB8eYRxsra+IUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFUa2JKh eFmiZBNtu/crIxl5LDW6MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUJDRTkxMjQz RjhGMTFGMEFCODQ3RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY6wwDQYJKoZIhvcNAQELBQADggEBAF1R843yJDdovIQ0 02fLAQAdwjRiTChnQFrUyFPUFvGr9HAA+C14SIaZaFUjjcf6UkNa8Gq2x09m3RDn XAL3sF5j+IvuM44tZVb+88vCLXh3lMzaWLsfwJE0cPwK1oUelbnmGDMxqclyAAwG tyA7Jmmv0z5To4A1MJWbk+T6NNBuA5h50awFYxOsvKdSXQGEct80Iz+g6ZNqRw9H FNl7DzFAmrNf74PYOaXGZIdg/UcK3E+Cg3i9Uxk22VahpbNSINmjBMwxSXUQMpgo f0XV1gYRmWyMbFxBDe03sG2j76l+15QY5HLYWWrgDGTAee1zX70Gus5wEECvI+RY JtnirDw= -----END CERTIFICATE-----Generated at Wed Jun 4 11:51:05 2025 by rpki-client