$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/4CB0FD06388411F08C1F3F69C4F9AE02.roa File: 4CB0FD06388411F08C1F3F69C4F9AE02.roa (raw, json) Hash identifier: CQtIdoN7iL7YhWLcKm67Xv0ZOHDw9METp8+XVwLWFR4= Subject key identifier: E6:E8:DB:2A:06:D7:A3:DC:46:0A:DD:BD:5F:71:44:AF:53:FD:B3:52 Certificate issuer: /CN=A91EA9C0/serialNumber=7A730021113D24511D6E8B8562E724EC9E98251B Certificate serial: 02 Authority key identifier: 7A:73:00:21:11:3D:24:51:1D:6E:8B:85:62:E7:24:EC:9E:98:25:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/enMAIRE9JFEdbouFYuck7J6YJRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/4CB0FD06388411F08C1F3F69C4F9AE02.roa Signing time: Sat 24 May 2025 09:48:52 +0000 ROA not before: Sat 24 May 2025 09:48:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153883 IP address blocks: 165.99.44.0/24 maxlen: 24 165.99.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/enMAIRE9JFEdbouFYuck7J6YJRs.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/enMAIRE9JFEdbouFYuck7J6YJRs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/enMAIRE9JFEdbouFYuck7J6YJRs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=7A730021113D24511D6E8B8562E724EC9E98251B Validity Not Before: May 24 09:48:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68319604-0b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:6e:48:c2:2b:35:31:09:38:c5:d2:aa:f5: 16:29:74:97:db:b1:b2:d9:22:ef:22:80:13:80:dd: 09:94:1e:99:c1:e2:20:08:09:d6:f2:c7:df:57:1b: e0:70:78:97:e3:30:2a:ce:2c:73:7d:7f:3a:53:83: a3:c4:d8:34:11:35:c1:ea:d4:3b:5b:27:11:0e:eb: a5:e8:62:66:2e:a3:c6:de:3d:9f:61:af:b2:81:05: 40:34:dc:1d:74:07:4a:c3:aa:3a:44:c8:8c:15:3d: 25:3f:7f:78:15:e7:7e:ae:a1:e9:0f:c4:8e:23:91: 89:7a:1c:a0:75:cb:b9:da:bf:ba:f0:ed:24:ef:39: dc:2b:de:82:15:33:29:a1:75:07:31:f2:39:44:c6: fd:2e:c2:0b:1e:21:e4:dd:49:ce:18:3a:5d:40:b0: a7:68:8e:f8:94:ec:43:05:46:9f:c5:60:18:79:13: 37:24:df:23:1d:52:9f:c3:f0:f8:b9:f5:2c:b5:7d: fe:03:7e:cd:96:c9:b4:44:32:e1:4d:a3:e5:ab:07: b2:4b:01:88:0f:96:3c:81:1c:d3:6d:3e:a0:22:bb: a8:00:d4:4f:34:ab:9e:fb:38:78:66:db:d5:17:1e: 2a:5a:8b:84:e3:af:ca:78:d3:ef:3c:2d:b3:26:60: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E8:DB:2A:06:D7:A3:DC:46:0A:DD:BD:5F:71:44:AF:53:FD:B3:52 X509v3 Authority Key Identifier: keyid:7A:73:00:21:11:3D:24:51:1D:6E:8B:85:62:E7:24:EC:9E:98:25:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/enMAIRE9JFEdbouFYuck7J6YJRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/enMAIRE9JFEdbouFYuck7J6YJRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/529BC2FC388211F08CCB1866C4F9AE02/4CB0FD06388411F08C1F3F69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.44.0/23 Signature Algorithm: sha256WithRSAEncryption c0:86:30:4f:70:a9:16:11:03:2e:3c:52:81:a1:c6:bf:37:6d: c0:80:e1:68:10:50:02:87:de:0b:de:0f:1c:9e:9f:fa:27:a3: 3d:1b:02:3b:e7:55:bc:d1:e5:5a:c3:7f:6b:c3:ba:9e:7f:1e: 38:88:45:c8:98:d6:ce:48:f7:03:e9:ed:46:11:57:79:bf:99: 7f:b8:d4:6c:3e:82:11:fe:b8:1c:f7:9d:8f:ac:47:26:c6:7f: 56:5f:8b:b7:b8:37:73:1d:e9:0f:00:83:09:ce:67:f6:ea:4a: b3:31:c7:70:f9:2b:c0:30:94:fd:e7:d5:06:16:c5:b4:43:18: e0:59:da:1b:61:f3:ca:82:a2:68:ac:87:8e:73:b5:98:97:0f: 55:d9:f0:22:2f:be:57:bc:b6:97:f6:2d:0b:02:49:e5:7c:de: 72:55:40:59:f0:52:c5:52:2d:18:b5:40:88:4f:58:af:d0:ff: 6b:55:48:e1:18:06:03:01:6f:10:98:c7:e9:8d:b4:17:e0:ce: f7:35:dc:fb:e5:f7:37:a3:95:f0:b5:ce:38:eb:6c:f6:ca:06: 92:04:d5:de:f3:5d:8f:ba:68:f3:26:60:7c:ae:47:a7:23:3b: 8e:f1:4d:84:a9:a5:bb:e6:04:d0:48:d9:8c:91:b4:d5:47:a2: 89:2e:b8:d5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoN0E3MzAwMjExMTNEMjQ1MTFENkU4Qjg1NjJFNzI0RUM5 RTk4MjUxQjAeFw0yNTA1MjQwOTQ4NTJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzE5NjA0LTBiMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfkW5Iwis1MQk4xdKq9RYpdJfbsbLZIu8igBOA3QmUHpnB4iAICdbyx99XG+Bw eJfjMCrOLHN9fzpTg6PE2DQRNcHq1DtbJxEO66XoYmYuo8bePZ9hr7KBBUA03B10 B0rDqjpEyIwVPSU/f3gV536uoekPxI4jkYl6HKB1y7nav7rw7STvOdwr3oIVMymh dQcx8jlExv0uwgseIeTdSc4YOl1AsKdojviU7EMFRp/FYBh5Ezck3yMdUp/D8Pi5 9Sy1ff4Dfs2WybREMuFNo+WrB7JLAYgPljyBHNNtPqAiu6gA1E80q577OHhm29UX Hipai4Tjr8p40+88LbMmYKW5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5ujbKgbX o9xGCt29X3FEr1P9s1IwHwYDVR0jBBgwFoAUenMAIRE9JFEdbouFYuck7J6YJRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzUyOUJDMkZDMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL2VuTUFJUkU5SkZFZGJvdUZZdWNrN0o2WUpS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZW5NQUlSRTlKRkVkYm91Rll1Y2s3SjZZSlJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlDMC81MjlCQzJGQzM4ODIxMUYwOENDQjE4NjZDNEY5QUUwMi80Q0IwRkQwNjM4 ODQxMUYwOEMxRjNGNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjLDANBgkqhkiG9w0BAQsFAAOCAQEAwIYwT3CpFhEDLjxS gaHGvzdtwIDhaBBQAofeC94PHJ6f+iejPRsCO+dVvNHlWsN/a8O6nn8eOIhFyJjW zkj3A+ntRhFXeb+Zf7jUbD6CEf64HPedj6xHJsZ/Vl+Lt7g3cx3pDwCDCc5n9upK szHHcPkrwDCU/efVBhbFtEMY4FnaG2HzyoKiaKyHjnO1mJcPVdnwIi++V7y2l/Yt CwJJ5XzeclVAWfBSxVItGLVAiE9Yr9D/a1VI4RgGAwFvEJjH6Y20F+DO9zXc++X3 N6OV8LXOOOts9soGkgTV3vNdj7po8yZgfK5HpyM7jvFNhKmlu+YE0EjZjJG01Uei iS641Q== -----END CERTIFICATE-----Generated at Sat Jun 7 12:34:17 2025 by rpki-client