$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa File: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (raw, json) Hash identifier: OuYK59uWIga3ZAzcT5ocu0lcjNK1alPA7Ti+SUQJrh0= Subject key identifier: 44:66:1A:A0:7D:97:67:25:12:A5:2A:59:22:24:37:94:71:20:CC:DC Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 02 Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa Signing time: Wed 14 May 2025 23:37:10 +0000 ROA not before: Wed 14 May 2025 23:37:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4826 IP address blocks: 165.99.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: May 14 23:37:10 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68252926-5131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:02:2b:cc:f8:39:5f:48:58:90:e9:a5:47: 4c:6b:72:bb:38:de:9b:dc:04:bb:80:d7:74:5d:94: 4d:89:32:95:67:d1:dd:e1:0b:14:7c:50:3c:ac:46: f4:93:36:d2:80:91:aa:fe:5a:2c:ef:f4:19:e9:49: 10:8e:4d:3d:92:e9:52:04:0c:f7:d2:5e:8b:01:f2: e1:3a:2a:fa:5d:23:58:ac:a1:85:03:13:fb:af:9b: a1:5b:43:ea:cd:0e:32:b8:56:b4:9c:30:cc:45:90: 1d:ab:3e:f1:4b:a4:44:d1:51:34:0b:72:3d:c1:70: 80:8d:e0:b2:81:80:d8:4d:10:00:6d:5a:d3:d8:95: a7:ba:3b:5b:19:dc:f5:78:3e:39:d4:25:66:bc:ea: 08:bd:2a:06:89:ba:65:3e:cf:c3:55:10:c2:ca:ad: be:76:d7:8b:c1:74:4f:2d:96:c1:6b:e3:a0:9f:44: f3:65:e6:c1:53:5d:a9:69:75:30:5e:66:3d:0f:c6: 40:47:52:e0:bf:a9:dd:94:3d:c0:9c:90:50:60:7b: 7b:ae:39:c5:83:d1:8b:47:4b:b1:b4:24:30:7b:c9: 84:c8:31:87:06:c1:d8:b0:51:f4:74:4c:35:61:14: 40:cb:26:76:07:0b:41:a2:5c:a1:af:f5:6e:f1:a3: 8b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:66:1A:A0:7D:97:67:25:12:A5:2A:59:22:24:37:94:71:20:CC:DC X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.18.0/24 Signature Algorithm: sha256WithRSAEncryption 26:23:d8:9f:e9:70:03:3a:94:44:f2:5b:13:4f:2c:18:3d:31: 64:53:5f:b2:64:40:82:f3:32:3d:28:b5:cc:73:28:f2:bb:04: d0:8e:b0:bf:ec:37:09:b0:02:cf:32:4e:ad:93:cd:89:33:35: af:aa:01:c0:7a:45:0a:6a:7e:cf:2b:14:37:d9:9c:09:d2:f2: b2:d1:c8:e4:8b:33:59:40:30:9a:ed:d0:23:38:ca:08:dc:90: d3:f9:f8:7c:be:94:4b:da:12:8a:14:44:11:af:29:b4:0f:0f: e1:bb:55:37:3e:d0:dc:b6:86:7a:c3:01:ff:00:88:b4:77:13: d0:19:94:35:41:44:89:4b:d2:41:c6:3c:ff:0a:c4:1b:41:fe: e5:e0:79:59:cf:26:11:3a:82:a7:35:b6:0f:10:8e:f1:c4:ba: d3:20:be:46:9b:bb:17:57:ad:0a:8d:ae:0f:cc:c0:12:5f:04: e7:72:11:d6:b1:19:bf:74:43:4b:90:df:ea:8d:cd:a0:84:d1: 88:c5:5c:3c:b3:79:ce:91:3c:96:3d:aa:3b:8a:fb:b4:4a:6c: a2:47:35:7b:dc:46:96:70:36:00:da:27:0b:02:48:8c:d1:57: ba:2a:24:35:1c:66:64:24:57:24:66:61:5c:39:03:cd:d7:39: 9c:c1:c5:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVEMjExMC8GA1UEBRMoRDkwNEQ1NTJDMEVGMzJGMjQ5QUJBNDU5N0JEODRBMTVF RTU1NTVDMTAeFw0yNTA1MTQyMzM3MTBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjUyOTI2LTUxMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC05AIrzPg5X0hYkOmlR0xrcrs43pvcBLuA13RdlE2JMpVn0d3hCxR8UDysRvST NtKAkar+Wizv9BnpSRCOTT2S6VIEDPfSXosB8uE6KvpdI1isoYUDE/uvm6FbQ+rN DjK4VrScMMxFkB2rPvFLpETRUTQLcj3BcICN4LKBgNhNEABtWtPYlae6O1sZ3PV4 PjnUJWa86gi9KgaJumU+z8NVEMLKrb5214vBdE8tlsFr46CfRPNl5sFTXalpdTBe Zj0PxkBHUuC/qd2UPcCckFBge3uuOcWD0YtHS7G0JDB7yYTIMYcGwdiwUfR0TDVh FEDLJnYHC0GiXKGv9W7xo4vZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURGYaoH2X ZyUSpSpZIiQ3lHEgzNwwHwYDVR0jBBgwFoAU2QTVUsDvMvJJq6RZe9hKFe5VVcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUQyL0YyNDVCMkQ2MzEx QjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFUVlVzRHZNdkpKcTZSWmU5aEtGZTVWVmNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVEMi9GMjQ1QjJENjMxMUIxMUYwQTJGNTExNjBDNEY5QUUwMi81QTlDMEQ1ODMx MUMxMUYwQjkxQTJFNjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjEjANBgkqhkiG9w0BAQsFAAOCAQEAJiPYn+lwAzqURPJb E08sGD0xZFNfsmRAgvMyPSi1zHMo8rsE0I6wv+w3CbACzzJOrZPNiTM1r6oBwHpF Cmp+zysUN9mcCdLystHI5IszWUAwmu3QIzjKCNyQ0/n4fL6US9oSihREEa8ptA8P 4btVNz7Q3LaGesMB/wCItHcT0BmUNUFEiUvSQcY8/wrEG0H+5eB5Wc8mETqCpzW2 DxCO8cS60yC+Rpu7F1etCo2uD8zAEl8E53IR1rEZv3RDS5Df6o3NoITRiMVcPLN5 zpE8lj2qO4r7tEpsokc1e9xGlnA2ANonCwJIjNFXuiokNRxmZCRXJGZhXDkDzdc5 nMHF6Q== -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:46 2025 by rpki-client