$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/B8F6B5E6889D11F096782036C4F9AE02.roa File: B8F6B5E6889D11F096782036C4F9AE02.roa (raw, json) Hash identifier: /A/rBXc2op08yj3uZittOvl641NY0+V2n8zZ3/LDWUo= Subject key identifier: 99:F6:1B:44:DD:6E:83:6C:60:C1:E4:FF:0D:1D:DE:08:6F:DF:BA:84 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 38 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/B8F6B5E6889D11F096782036C4F9AE02.roa Signing time: Wed 03 Sep 2025 08:12:24 +0000 ROA not before: Wed 03 Sep 2025 08:12:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38264 IP address blocks: 165.99.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Sep 3 08:12:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b7f868-1add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:5a:c3:6f:87:ad:f5:62:04:a0:58:23:d9: 7a:45:b5:96:d8:a0:bf:ec:8b:f5:53:32:af:0b:3e: c3:93:4b:50:ec:8b:9b:6c:ae:47:1a:c4:8d:16:05: 52:79:02:fe:76:33:f1:b7:0c:5c:f7:72:1b:32:3c: 83:df:1b:af:8b:2d:b8:6b:02:90:2f:ea:15:1f:8a: 08:71:49:f5:6c:f7:f1:83:96:8c:2f:97:ad:e7:41: b0:e1:ee:24:1e:c9:26:7f:dd:35:ac:24:0e:49:83: e4:c3:67:8a:68:11:85:0b:94:9c:af:39:39:9a:eb: 1b:48:88:53:9c:b4:04:a0:65:44:1b:ae:2d:ad:ce: e8:ef:75:86:50:9b:db:10:c5:74:37:26:e1:a3:0e: 55:6c:41:77:19:5d:f8:b6:4a:46:8c:2e:17:0f:b1: 27:76:e5:b5:e6:fc:e2:a9:cd:8a:70:e7:72:c5:c6: a9:08:d0:a3:21:be:e6:cc:3e:4b:2c:2c:a7:ca:4d: a4:0b:8e:d0:6a:09:90:10:8b:de:46:64:8c:35:0b: 38:ad:4f:b6:30:c7:8f:a8:f6:06:78:b5:32:43:27: 50:85:08:b6:02:55:07:18:73:38:7b:bd:cf:6f:8c: 2b:cf:4f:4e:7e:45:42:f0:1d:b4:ab:8f:87:5b:e9: 15:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F6:1B:44:DD:6E:83:6C:60:C1:E4:FF:0D:1D:DE:08:6F:DF:BA:84 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/B8F6B5E6889D11F096782036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.191.0/24 Signature Algorithm: sha256WithRSAEncryption 04:43:bc:d1:e0:78:5e:b3:a1:d2:62:ed:11:ca:9a:2c:8e:ce: e4:d8:c8:80:8e:25:26:3c:8b:a6:4e:ba:00:24:1d:95:8d:7d: 2c:c4:cd:a6:b5:27:75:88:1e:c4:d4:7f:79:5e:d0:07:77:aa: 47:85:c5:d2:68:06:df:da:15:aa:e5:5e:7e:3a:3f:36:dc:04: 2d:1f:52:03:67:b6:52:b6:c7:3c:66:4f:f1:fd:29:e7:5d:96: 40:3a:19:14:1e:5e:75:f7:5c:64:22:2f:df:3b:e9:77:4a:9b: 54:b1:be:df:8b:ce:5a:66:fc:cd:15:a5:bf:3e:b6:42:c8:08: 40:1c:6c:89:1b:4e:f7:98:eb:08:16:96:46:2b:7a:63:e9:c9: 5b:84:c8:f4:bb:1d:21:dc:86:ff:c7:4e:78:cf:3e:07:31:ea: 47:f7:40:dc:9b:20:96:0e:a3:c8:30:3f:ba:00:40:88:31:fa: 96:d9:b6:07:3c:88:59:6d:a6:e4:73:7a:18:98:8f:ed:03:74: b3:0f:7c:8f:c6:35:13:a0:f1:32:c3:6f:06:8b:04:94:e1:62: 67:a2:10:57:7d:bc:f2:cb:92:30:71:d5:f0:21:aa:85:51:1f: 68:c8:00:68:85:81:4f:95:b7:f3:52:18:13:a8:81:9c:b3:b0: ab:6c:fe:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTA5MDMwODEyMjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjdmODY4LTFhZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC40FrDb4et9WIEoFgj2XpFtZbYoL/si/VTMq8LPsOTS1Dsi5tsrkcaxI0WBVJ5 Av52M/G3DFz3chsyPIPfG6+LLbhrApAv6hUfighxSfVs9/GDlowvl63nQbDh7iQe ySZ/3TWsJA5Jg+TDZ4poEYULlJyvOTma6xtIiFOctASgZUQbri2tzujvdYZQm9sQ xXQ3JuGjDlVsQXcZXfi2SkaMLhcPsSd25bXm/OKpzYpw53LFxqkI0KMhvubMPkss LKfKTaQLjtBqCZAQi95GZIw1CzitT7Ywx4+o9gZ4tTJDJ1CFCLYCVQcYczh7vc9v jCvPT05+RULwHbSrj4db6RWDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmfYbRN1u g2xgweT/DR3eCG/fuoQwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUE4Qi9CQTA4QUE0MjRCODExMUYwOEY2NTUwN0VDNEY5QUUwMi9COEY2QjVFNjg4 OUQxMUYwOTY3ODIwMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjvzANBgkqhkiG9w0BAQsFAAOCAQEABEO80eB4XrOh0mLt EcqaLI7O5NjIgI4lJjyLpk66ACQdlY19LMTNprUndYgexNR/eV7QB3eqR4XF0mgG 39oVquVefjo/NtwELR9SA2e2UrbHPGZP8f0p512WQDoZFB5edfdcZCIv3zvpd0qb VLG+34vOWmb8zRWlvz62QsgIQBxsiRtO95jrCBaWRit6Y+nJW4TI9LsdIdyG/8dO eM8+BzHqR/dA3Jsglg6jyDA/ugBAiDH6ltm2BzyIWW2m5HN6GJiP7QN0sw98j8Y1 E6DxMsNvBosElOFiZ6IQV3288suSMHHV8CGqhVEfaMgAaIWBT5W381IYE6iBnLOw q2z+hg== -----END CERTIFICATE-----Generated at Sun Sep 7 12:57:02 2025 by rpki-client