$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/765A9AEC3C6F11F0A83E954EC4F9AE02.roa File: 765A9AEC3C6F11F0A83E954EC4F9AE02.roa (raw, json) Hash identifier: 1LK4ltfDfUObnmcEpgqLd5X9zDYVgPh3Q6BVcaMlN3Q= Subject key identifier: 6F:F8:2E:52:E2:7B:3C:48:35:C3:0D:C0:38:56:54:56:9D:56:59:EF Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 02 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/765A9AEC3C6F11F0A83E954EC4F9AE02.roa Signing time: Thu 29 May 2025 09:29:47 +0000 ROA not before: Thu 29 May 2025 09:29:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 53850 IP address blocks: 165.99.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 07:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: May 29 09:29:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6838290b-23a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2c:97:2d:dc:1d:30:6c:ed:56:ca:ce:2a:9a: d0:e4:88:30:7d:ef:8d:b2:13:f4:df:05:20:13:2f: be:91:ec:9b:0d:c5:ff:f2:c5:32:8e:7d:48:d3:e8: de:01:fb:a3:f1:e4:cd:20:78:fd:c7:dc:14:db:9d: b5:24:ec:88:b7:3a:70:ba:68:c8:da:d6:97:79:0a: 02:2f:18:57:44:67:8e:2e:f8:a8:7f:9b:86:41:8a: 77:1d:9c:8e:74:b2:1b:3e:6e:5d:0f:3c:0f:4d:56: 22:3f:83:8c:d3:db:51:64:01:b1:25:71:53:1c:84: 20:82:ed:fa:7d:67:c4:71:5a:08:5b:34:31:db:86: 4e:75:cb:a0:c0:bf:42:89:df:06:8a:e1:0e:12:5f: 61:f0:be:9d:a9:07:a6:3a:92:ff:ac:1a:75:bf:14: e9:72:98:24:fa:3c:8e:c9:9e:56:f1:26:b0:3e:b5: c0:5c:e9:b2:9f:b3:9b:c0:6f:03:2c:ac:89:cd:68: 6c:2f:d0:95:01:42:65:f1:1f:86:49:36:98:89:46: ec:12:29:a1:77:55:3c:9b:7d:6a:66:f8:15:fe:38: 96:5c:59:e8:de:f1:0f:90:45:71:b5:bb:2d:da:cd: 9e:89:c7:d3:a7:b8:33:1c:c3:06:d2:10:07:79:4d: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F8:2E:52:E2:7B:3C:48:35:C3:0D:C0:38:56:54:56:9D:56:59:EF X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/765A9AEC3C6F11F0A83E954EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.164.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:4e:e6:34:94:ff:f0:f3:3e:1f:ce:b4:78:1c:48:f2:fe:3c: 90:7c:aa:06:d6:68:a3:92:90:27:68:85:4a:55:55:01:a9:81: 7c:68:d4:09:41:99:a4:4e:88:40:0f:8a:1b:da:30:b1:66:c0: 6a:de:9e:46:a8:6a:e6:32:c6:98:cb:1c:57:a4:2e:da:6c:f9: 4e:e0:ce:34:b0:59:81:90:7a:e2:7c:29:06:19:27:a3:6a:ff: 43:eb:1c:44:f1:80:82:43:9b:5c:6a:fa:cd:87:1a:01:b9:f7: ed:34:43:57:4b:bd:46:db:f7:cc:37:d0:15:14:bc:97:13:78: 30:6d:4f:14:99:8f:ac:c4:00:e0:48:57:79:f8:ea:c3:e6:0a: 5d:97:c3:b3:2c:3e:1d:2a:43:bf:5e:fc:17:2d:8e:34:e6:a1: 39:fa:1d:3c:b3:8c:d9:4f:6d:3b:c2:73:f6:2a:2b:8c:d6:e6: 30:7c:ce:4c:73:46:59:6d:45:b5:28:58:16:68:5c:33:03:70: f9:13:27:81:56:42:97:8d:fc:21:49:92:da:8c:ce:7b:8c:b5: e1:1b:db:e2:1d:29:db:a5:d7:23:8a:4c:b3:98:79:e8:45:e7: 11:58:9e:65:1f:2e:31:7b:b9:2a:55:39:e2:09:05:22:06:2e: 5b:82:81:8b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTA1MjkwOTI5NDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzgyOTBiLTIzYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClLJct3B0wbO1Wys4qmtDkiDB9742yE/TfBSATL76R7JsNxf/yxTKOfUjT6N4B +6Px5M0geP3H3BTbnbUk7Ii3OnC6aMja1pd5CgIvGFdEZ44u+Kh/m4ZBincdnI50 shs+bl0PPA9NViI/g4zT21FkAbElcVMchCCC7fp9Z8RxWghbNDHbhk51y6DAv0KJ 3waK4Q4SX2Hwvp2pB6Y6kv+sGnW/FOlymCT6PI7JnlbxJrA+tcBc6bKfs5vAbwMs rInNaGwv0JUBQmXxH4ZJNpiJRuwSKaF3VTybfWpm+BX+OJZcWeje8Q+QRXG1uy3a zZ6Jx9OnuDMcwwbSEAd5TTSHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUb/guUuJ7 PEg1ww3AOFZUVp1WWe8wHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi83NjVBOUFFQzND NkYxMUYwQTgzRTk1NEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjpDANBgkqhkiG9w0BAQsFAAOCAQEAbU7mNJT/8PM+H860 eBxI8v48kHyqBtZoo5KQJ2iFSlVVAamBfGjUCUGZpE6IQA+KG9owsWbAat6eRqhq 5jLGmMscV6Qu2mz5TuDONLBZgZB64nwpBhkno2r/Q+scRPGAgkObXGr6zYcaAbn3 7TRDV0u9Rtv3zDfQFRS8lxN4MG1PFJmPrMQA4EhXefjqw+YKXZfDsyw+HSpDv178 Fy2ONOahOfodPLOM2U9tO8Jz9iorjNbmMHzOTHNGWW1FtShYFmhcMwNw+RMngVZC l438IUmS2ozOe4y14Rvb4h0p26XXI4pMs5h56EXnEVieZR8uMXu5KlU54gkFIgYu W4KBiw== -----END CERTIFICATE-----Generated at Sun Jun 8 13:50:53 2025 by rpki-client