$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/0B5EA7DA323B11F0A65FFB36C4F9AE02.roa File: 0B5EA7DA323B11F0A65FFB36C4F9AE02.roa (raw, json) Hash identifier: Q/Q2sUKmgFU8L5pYFoikcLW7y4sJztj/yUCaAVnv9mQ= Subject key identifier: 4B:B6:65:0E:06:DD:82:99:16:7F:2C:D0:5E:D3:D4:E0:78:DA:4D:DA Certificate issuer: /CN=A9113BB0/serialNumber=45B18E209ECFDDA5CED78CF9D9810D611E6D4124 Certificate serial: 04 Authority key identifier: 45:B1:8E:20:9E:CF:DD:A5:CE:D7:8C:F9:D9:81:0D:61:1E:6D:41:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/0B5EA7DA323B11F0A65FFB36C4F9AE02.roa Signing time: Fri 16 May 2025 09:49:22 +0000 ROA not before: Fri 16 May 2025 09:49:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 29802 IP address blocks: 165.99.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.crl rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BB0, serialNumber=45B18E209ECFDDA5CED78CF9D9810D611E6D4124 Validity Not Before: May 16 09:49:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68270a22-b011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0f:bc:6f:13:84:34:81:04:a9:62:02:c9:06: e4:26:3f:86:d8:3d:dc:08:9d:36:0f:41:6d:ab:9e: c1:c4:ce:b2:6f:3f:d3:ef:d0:06:bb:60:88:5e:05: b6:2d:5a:2b:dc:4f:eb:fd:a5:bc:1a:40:4e:c1:ae: d9:f2:0b:db:fc:2d:e2:e3:80:ba:49:4f:a1:cf:7c: ab:bd:14:59:68:f6:d6:5c:f5:9b:ca:5c:bc:3b:50: 5c:47:c4:a0:70:e8:0a:46:d8:30:b1:e4:cf:f3:3a: 38:3f:a2:f7:63:1a:a0:87:15:99:8c:30:3e:0d:2f: d1:e5:19:78:71:1c:34:ad:cb:17:cb:6b:69:25:d9: 68:4a:f8:fb:30:a3:3e:57:9f:9e:c6:5d:aa:9e:ad: f0:c2:9e:14:9b:db:a5:6b:e4:b5:a9:0f:78:54:9a: 4b:38:a4:1c:d6:db:75:a9:f1:c7:2a:b3:f3:d5:6e: ac:6e:b3:db:d5:e9:bd:1d:5e:39:a7:05:64:80:b8: 0a:17:38:39:7b:fc:fb:69:45:1b:ab:f4:b2:71:ad: ca:4c:01:a6:3a:f9:49:91:91:88:66:cf:78:8e:a8: 6a:62:27:45:09:1a:fa:21:aa:0a:64:b3:58:e9:66: 0d:7e:9e:05:b8:1d:23:f7:c1:26:f8:da:78:a6:54: e5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B6:65:0E:06:DD:82:99:16:7F:2C:D0:5E:D3:D4:E0:78:DA:4D:DA X509v3 Authority Key Identifier: keyid:45:B1:8E:20:9E:CF:DD:A5:CE:D7:8C:F9:D9:81:0D:61:1E:6D:41:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/RbGOIJ7P3aXO14z52YENYR5tQSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RbGOIJ7P3aXO14z52YENYR5tQSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BB0/9FFDAB76323A11F0BF9E1D36C4F9AE02/0B5EA7DA323B11F0A65FFB36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.75.0/24 Signature Algorithm: sha256WithRSAEncryption 29:3b:e4:70:6b:be:1c:3f:9f:b1:8c:4e:73:2d:b5:4b:e4:c5: ed:d9:30:94:c5:a5:1a:42:8a:63:19:50:8b:11:20:7a:bc:ab: 5d:ea:33:db:a5:f5:d4:20:0f:83:06:4c:bb:a2:cb:19:cd:21: 01:ba:a5:fa:00:3e:22:1f:af:33:14:a4:5e:04:dd:73:5d:a4: e0:4a:17:26:27:87:f9:d8:77:dc:52:29:ed:e6:1a:3a:15:ee: 60:16:38:d5:66:f2:e8:4b:52:36:12:30:69:61:96:11:d0:05: f5:da:32:65:9e:bb:84:3e:9a:53:25:e6:ec:7c:b7:67:8a:3a: 1e:d3:38:98:4a:64:77:90:b2:bb:ec:bf:f5:cc:25:a7:51:dc: 80:1e:12:04:5b:98:8c:eb:62:36:a0:b4:52:ad:78:17:0a:77: 15:9d:37:8a:c4:ed:86:43:94:58:48:58:c1:9b:45:52:ff:b1: 81:4e:c5:1e:04:ce:09:89:90:d1:fe:7f:46:cd:d7:0c:ec:15: 30:1e:b2:79:53:16:55:1e:69:70:e9:64:e5:b2:78:08:de:a1: 76:42:82:34:aa:d2:66:b3:a6:ae:d3:62:75:5c:3c:b0:33:13: b9:4f:8a:40:72:56:2d:a7:bf:1f:e5:ba:ef:58:9e:32:33:3b: b7:63:7f:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx M0JCMDExMC8GA1UEBRMoNDVCMThFMjA5RUNGRERBNUNFRDc4Q0Y5RDk4MTBENjEx RTZENDEyNDAeFw0yNTA1MTYwOTQ5MjJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjcwYTIyLWIwMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAD7xvE4Q0gQSpYgLJBuQmP4bYPdwInTYPQW2rnsHEzrJvP9Pv0Aa7YIheBbYt WivcT+v9pbwaQE7BrtnyC9v8LeLjgLpJT6HPfKu9FFlo9tZc9ZvKXLw7UFxHxKBw 6ApG2DCx5M/zOjg/ovdjGqCHFZmMMD4NL9HlGXhxHDStyxfLa2kl2WhK+Pswoz5X n57GXaqerfDCnhSb26Vr5LWpD3hUmks4pBzW23Wp8ccqs/PVbqxus9vV6b0dXjmn BWSAuAoXODl7/PtpRRur9LJxrcpMAaY6+UmRkYhmz3iOqGpiJ0UJGvohqgpks1jp Zg1+ngW4HSP3wSb42nimVOX/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUS7ZlDgbd gpkWfyzQXtPU4HjaTdowHwYDVR0jBBgwFoAURbGOIJ7P3aXO14z52YENYR5tQSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzQkIwLzlGRkRBQjc2MzIz QTExRjBCRjlFMUQzNkM0RjlBRTAyL1JiR09JSjdQM2FYTzE0ejUyWUVOWVI1dFFT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmJHT0lKN1AzYVhPMTR6NTJZRU5ZUjV0UVNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JCMC85RkZEQUI3NjMyM0ExMUYwQkY5RTFEMzZDNEY5QUUwMi8wQjVFQTdEQTMy M0IxMUYwQTY1RkZCMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjSzANBgkqhkiG9w0BAQsFAAOCAQEAKTvkcGu+HD+fsYxO cy21S+TF7dkwlMWlGkKKYxlQixEgeryrXeoz26X11CAPgwZMu6LLGc0hAbql+gA+ Ih+vMxSkXgTdc12k4EoXJieH+dh33FIp7eYaOhXuYBY41Wby6EtSNhIwaWGWEdAF 9doyZZ67hD6aUyXm7Hy3Z4o6HtM4mEpkd5Cyu+y/9cwlp1HcgB4SBFuYjOtiNqC0 Uq14Fwp3FZ03isTthkOUWEhYwZtFUv+xgU7FHgTOCYmQ0f5/Rs3XDOwVMB6yeVMW VR5pcOlk5bJ4CN6hdkKCNKrSZrOmrtNidVw8sDMTuU+KQHJWLae/H+W671ieMjM7 t2N/RA== -----END CERTIFICATE-----Generated at Fri Jun 20 08:36:07 2025 by rpki-client